Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a68518-4295-4528-8ee6-fabae8d56fc6/1/D1xPZUE0RlaG7RA-LSj2zjYZsj8.roa
File: D1xPZUE0RlaG7RA-LSj2zjYZsj8.roa (raw, json)
Hash identifier: 0SKR8PXnU8DxnFc7j4jugkh6xMmihDOsExXbz9ILLOM=
Subject key identifier: 0F:5C:4F:65:41:34:46:56:86:ED:10:3E:2D:28:F6:CE:36:19:B2:3F
Certificate issuer: /CN=06930be8c4ca6900eedb2f3260d5dd7850570129
Certificate serial: 018F5AAD976ADE5C7A4CD3E67118C068E23A
Authority key identifier: 06:93:0B:E8:C4:CA:69:00:EE:DB:2F:32:60:D5:DD:78:50:57:01:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpML6MTKaQDu2y8yYNXdeFBXASk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a68518-4295-4528-8ee6-fabae8d56fc6/1/D1xPZUE0RlaG7RA-LSj2zjYZsj8.roa
Signing time: Thu 09 May 2024 00:07:56 +0000
ROA not before: Thu 09 May 2024 00:07:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216329
IP address blocks: 86.104.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5a:ad:97:6a:de:5c:7a:4c:d3:e6:71:18:c0:68:e2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06930be8c4ca6900eedb2f3260d5dd7850570129
Validity
Not Before: May 9 00:07:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f5c4f654134465686ed103e2d28f6ce3619b23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4b:56:87:6f:6b:a6:ec:8b:17:46:e6:3a:d4:
e7:54:f8:26:a9:72:a6:43:fd:60:f6:ec:ac:49:c0:
63:59:19:8e:82:cb:3f:4a:7e:9e:c5:90:23:10:60:
ba:b3:93:52:5c:7c:3f:9b:63:82:4a:93:ac:94:43:
82:5a:35:d7:20:f7:b6:21:aa:2a:27:38:44:20:e3:
1e:3c:93:d1:35:d4:b9:db:07:ef:ef:42:35:72:0c:
c2:6a:55:f8:ab:0f:b4:bc:e4:67:33:3a:06:21:d1:
f1:e6:87:2e:40:d5:e7:b6:ae:02:0b:b0:7b:a0:1b:
77:5c:51:f7:8e:24:19:98:85:0e:27:b6:51:a0:a9:
98:f0:70:2a:19:2e:77:2f:1a:a8:01:f3:8a:11:70:
80:ee:42:54:e7:0a:21:1b:66:eb:c4:f0:a0:fb:82:
25:ba:87:a3:1c:b6:27:cb:a3:e1:e4:a2:69:94:74:
52:b3:e5:79:58:5b:30:53:3a:56:ef:d8:9a:a4:60:
f9:37:5f:8f:b2:67:d6:5f:19:9d:d2:49:44:8c:b3:
e9:e4:e8:64:10:9f:25:7a:1a:b6:9a:b3:17:30:91:
49:d3:8b:96:3d:a3:c6:a4:1a:3d:37:19:ba:5f:c1:
6f:be:24:0b:b2:1e:74:52:3e:ef:db:2a:75:aa:df:
a6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5C:4F:65:41:34:46:56:86:ED:10:3E:2D:28:F6:CE:36:19:B2:3F
X509v3 Authority Key Identifier:
keyid:06:93:0B:E8:C4:CA:69:00:EE:DB:2F:32:60:D5:DD:78:50:57:01:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpML6MTKaQDu2y8yYNXdeFBXASk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a68518-4295-4528-8ee6-fabae8d56fc6/1/D1xPZUE0RlaG7RA-LSj2zjYZsj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a68518-4295-4528-8ee6-fabae8d56fc6/1/BpML6MTKaQDu2y8yYNXdeFBXASk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.181.0/24
Signature Algorithm: sha256WithRSAEncryption
16:72:bf:91:ae:a0:57:a5:8c:4d:cd:b8:cf:bc:7c:68:43:15:
cc:94:5b:2c:a4:d8:a9:b3:a3:3f:72:cf:d5:5b:74:23:7f:a6:
26:e9:f3:df:56:3b:41:91:f0:6d:29:35:3e:f9:ae:e6:a0:42:
b3:75:58:27:47:a5:93:b4:33:63:e2:a5:d2:ed:cb:78:4e:7b:
e9:f7:c1:ad:fe:1a:d2:5d:46:40:5b:03:31:7a:fc:a2:eb:e3:
9f:e9:4d:c4:5c:2c:33:aa:50:93:fa:be:2f:95:a1:7d:d5:ef:
d9:5c:8b:2f:72:b3:05:10:c9:0a:3d:b2:42:52:3b:2f:cf:9d:
30:be:d8:fb:34:52:5e:f1:00:f4:61:df:ba:ce:af:e9:04:52:
38:35:f5:17:88:f3:5c:90:d7:52:62:f1:f4:24:25:2c:a1:ba:
94:20:77:1a:25:9f:43:87:12:30:50:74:4f:fd:9d:8a:93:a7:
8d:de:2f:ff:9f:41:6a:1e:27:fc:62:6a:dd:a1:bc:a8:77:94:
e3:ad:1c:7b:fc:5f:b2:00:00:e2:4a:68:60:11:ec:75:bb:52:
e7:4d:73:8d:86:0b:24:9d:ec:1f:ff:ff:90:e4:46:74:41:52:
9f:df:7b:b9:ae:bf:48:98:0c:41:03:2a:05:c7:15:c6:a3:93:
3a:c5:18:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:57 2025 by rpki-client