Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/dc46ec-6428-4e5f-9a19-4f54ad755b20/1/lCY5fftujikox-aHrQzLWQi2PU0.roa
File: lCY5fftujikox-aHrQzLWQi2PU0.roa (raw, json)
Hash identifier: HHs7ttyIjBsaRcg3WxdrKlgOYRUPe9oqbs5IWiWHk/w=
Subject key identifier: 94:26:39:7D:FB:6E:8E:29:28:C7:E6:87:AD:0C:CB:59:08:B6:3D:4D
Certificate issuer: /CN=445df13d20f3b571a4ba610b81e6303db6d099c0
Certificate serial: 018571FA2B3FE91B53BBA99299D56375EA91
Authority key identifier: 44:5D:F1:3D:20:F3:B5:71:A4:BA:61:0B:81:E6:30:3D:B6:D0:99:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RF3xPSDztXGkumELgeYwPbbQmcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/dc46ec-6428-4e5f-9a19-4f54ad755b20/1/lCY5fftujikox-aHrQzLWQi2PU0.roa
Signing time: Mon 02 Jan 2023 10:14:58 +0000
ROA not before: Mon 02 Jan 2023 10:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34263
IP address blocks: 185.225.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:2b:3f:e9:1b:53:bb:a9:92:99:d5:63:75:ea:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=445df13d20f3b571a4ba610b81e6303db6d099c0
Validity
Not Before: Jan 2 10:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9426397dfb6e8e2928c7e687ad0ccb5908b63d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b0:61:34:b1:2c:62:52:30:60:28:25:00:27:
13:3c:03:83:c1:f8:1a:23:9a:4e:1b:cf:9d:00:22:
6f:c4:33:83:ab:44:34:f6:09:13:2b:a9:2c:1b:f3:
69:09:8a:74:c5:35:7a:f1:91:e4:83:82:46:d9:63:
4c:fc:41:53:c5:2d:80:41:6c:81:b7:89:1f:06:bc:
a3:c0:94:76:93:31:67:08:74:2a:96:54:6f:0d:78:
fc:d9:76:f6:34:b3:54:80:fa:c9:ff:35:b8:e3:89:
78:fd:96:c5:81:d1:ea:51:b3:ff:69:2c:00:d4:cd:
7c:46:f8:93:fa:27:48:f9:f1:73:e0:52:2d:1b:cf:
96:e9:15:7f:f6:87:3a:0c:7c:cc:a5:0d:c0:75:5a:
59:d0:c6:3d:bd:d1:65:27:2b:1c:aa:3d:fa:83:41:
80:ef:47:de:f2:91:37:16:b0:c9:03:41:1c:2c:ca:
41:ca:6e:38:d6:b9:c6:94:8e:ee:7c:c0:35:09:b3:
a3:d2:9d:e7:80:5d:46:d0:55:f2:ec:89:9a:ab:eb:
65:57:ea:94:b9:70:7e:44:6a:e2:79:5f:06:c0:c4:
24:24:ad:e7:55:5a:55:a2:54:70:f7:f0:3a:eb:4a:
ff:65:a6:25:1d:bf:da:be:17:7e:cf:67:7d:9f:7a:
2b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:26:39:7D:FB:6E:8E:29:28:C7:E6:87:AD:0C:CB:59:08:B6:3D:4D
X509v3 Authority Key Identifier:
keyid:44:5D:F1:3D:20:F3:B5:71:A4:BA:61:0B:81:E6:30:3D:B6:D0:99:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RF3xPSDztXGkumELgeYwPbbQmcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/dc46ec-6428-4e5f-9a19-4f54ad755b20/1/lCY5fftujikox-aHrQzLWQi2PU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/dc46ec-6428-4e5f-9a19-4f54ad755b20/1/RF3xPSDztXGkumELgeYwPbbQmcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.225.0/24
Signature Algorithm: sha256WithRSAEncryption
24:4d:5c:b8:ee:78:54:cf:05:b4:48:63:56:58:3e:32:0e:b7:
82:b8:98:45:79:8d:37:95:8e:73:a4:f5:73:b5:c1:2e:8f:80:
b5:38:39:7e:f5:ab:30:eb:39:88:37:bd:9c:5f:1b:99:22:8f:
c4:0e:cb:bb:46:f0:40:63:6c:68:87:37:c7:b4:21:f0:73:c3:
b5:63:07:b8:ff:17:99:c2:f3:00:03:64:b7:9a:3d:22:84:d5:
25:4a:5c:dc:90:0d:7c:f6:2e:24:12:06:f7:86:2f:90:f1:d0:
2f:cb:db:21:b9:e8:6a:de:69:5a:82:8b:9a:e7:97:cd:6b:b2:
10:fd:2b:47:b3:50:24:77:3b:0c:05:4c:63:b0:7f:0d:07:fe:
13:d7:e2:57:3a:96:8d:97:c7:73:d3:4d:40:b8:87:ca:0b:4f:
04:5a:83:c7:de:8b:42:19:85:ab:8f:a1:5d:97:d5:46:ed:a3:
84:76:e9:c2:c1:82:28:a8:81:38:fa:f5:50:93:3e:d6:5a:a7:
e1:32:35:da:0d:05:e4:7e:93:67:18:50:05:f3:4c:1f:39:47:
96:6d:ff:6a:6c:cb:d9:d3:d0:a5:90:92:99:30:4f:d1:36:6f:
63:d5:ff:4f:9f:f8:e5:6a:eb:ff:9d:72:41:45:53:30:c6:33:
4e:60:e9:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org