Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d1da6a-4919-499a-9a41-2bbb48efb0ed/1/H0SjEXam69vjYkT_YyOIR59y_mY.roa
File: H0SjEXam69vjYkT_YyOIR59y_mY.roa (raw, json)
Hash identifier: m4mdBYx8yvu93rnjK/aMAHfvkmMcTXuU/MaH1EnF2bo=
Subject key identifier: 1F:44:A3:11:76:A6:EB:DB:E3:62:44:FF:63:23:88:47:9F:72:FE:66
Certificate issuer: /CN=79a295c80b54c2dbe77ba47de7daec6b986021b4
Certificate serial: 0194E0A385CD52C767D3CDC486E5876DCBEF
Authority key identifier: 79:A2:95:C8:0B:54:C2:DB:E7:7B:A4:7D:E7:DA:EC:6B:98:60:21:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaKVyAtUwtvne6R959rsa5hgIbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d1da6a-4919-499a-9a41-2bbb48efb0ed/1/H0SjEXam69vjYkT_YyOIR59y_mY.roa
Signing time: Fri 07 Feb 2025 13:40:00 +0000
ROA not before: Fri 07 Feb 2025 13:40:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43858
IP address blocks: 185.103.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Mar 2025 14:39:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e0:a3:85:cd:52:c7:67:d3:cd:c4:86:e5:87:6d:cb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a295c80b54c2dbe77ba47de7daec6b986021b4
Validity
Not Before: Feb 7 13:40:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1f44a31176a6ebdbe36244ff632388479f72fe66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d3:66:a2:9d:af:24:90:99:1c:79:eb:c4:81:
d7:b9:cd:d0:12:9a:d8:ef:b1:5e:67:7e:88:2c:f6:
ad:8c:44:a0:2e:4c:f4:1e:97:31:c9:d6:f9:6c:29:
d9:fa:36:32:23:ca:41:72:3c:1b:46:20:2d:ba:82:
04:22:7d:ae:6d:5a:8e:58:3a:54:55:82:3c:8e:10:
f9:35:ce:96:13:08:bb:fb:c9:e4:81:fe:21:8f:6b:
52:61:d4:70:f8:f4:0d:c3:81:57:e6:49:48:b9:9f:
21:f9:ad:79:17:2c:3b:37:3d:7b:18:ce:63:f7:c0:
b1:36:7c:55:7f:77:50:ce:16:06:22:e6:cb:02:5b:
a3:06:fc:5d:3a:2a:c1:a1:13:84:6f:90:db:b4:4d:
61:66:66:9c:e9:98:a4:4b:b1:5a:fe:cc:91:34:8d:
2d:f4:d3:69:5f:11:0b:aa:9b:19:10:63:8e:61:9a:
fa:24:66:6f:aa:1c:06:55:23:3b:46:5b:11:58:c5:
50:6b:1e:46:d3:e3:0b:1d:3a:da:c7:89:a3:a0:b5:
ff:b2:cc:cb:ff:84:62:0e:c0:d0:87:64:d2:75:78:
92:23:ec:fb:ec:91:55:54:d4:0e:e2:31:d8:77:10:
0e:53:8c:11:4c:8c:45:66:3b:fe:b0:bb:b9:e8:91:
5a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:44:A3:11:76:A6:EB:DB:E3:62:44:FF:63:23:88:47:9F:72:FE:66
X509v3 Authority Key Identifier:
keyid:79:A2:95:C8:0B:54:C2:DB:E7:7B:A4:7D:E7:DA:EC:6B:98:60:21:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaKVyAtUwtvne6R959rsa5hgIbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d1da6a-4919-499a-9a41-2bbb48efb0ed/1/H0SjEXam69vjYkT_YyOIR59y_mY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d1da6a-4919-499a-9a41-2bbb48efb0ed/1/eaKVyAtUwtvne6R959rsa5hgIbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.118.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:ea:47:7a:6f:9c:e7:7a:31:49:b5:cc:3a:bc:6e:16:ef:4d:
64:5c:80:39:ca:8a:96:53:72:6c:59:3e:94:3b:27:61:ad:f2:
b7:8a:7e:a7:bf:52:b9:bd:58:45:2e:18:29:22:a7:a2:f5:96:
e9:f7:43:42:70:44:f6:ba:28:ee:4e:7a:3d:08:d4:91:c1:a7:
07:57:18:fa:61:ec:1f:3a:80:a0:ae:91:b9:7f:f5:b9:ba:9e:
2c:da:7e:67:be:5d:e2:0e:14:6c:1b:66:2c:09:fc:67:75:6c:
2e:ef:4e:4d:76:49:1b:1b:8b:d1:15:5c:54:d3:3b:14:77:e1:
8e:b2:6d:ad:f0:6c:fc:ab:96:fd:0a:3a:28:57:06:90:80:5a:
fe:ae:f0:00:3f:9b:17:f8:b2:2a:ca:20:33:65:1e:70:6b:66:
b2:ad:ff:91:40:91:21:5e:a2:68:88:78:d3:81:6a:c8:a4:61:
bb:e6:1e:0a:47:ba:11:89:d2:35:c0:21:0f:8e:4d:d4:21:66:
69:2f:52:d5:67:45:e7:fb:1c:d7:5b:61:f8:52:e1:47:f6:ce:
45:51:02:c2:eb:fe:78:12:79:dc:86:5c:2e:b0:af:be:d2:5b:
5a:70:bc:2d:77:f2:f0:e3:cd:63:64:69:67:ec:00:67:b5:0f:
ad:2b:bc:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:15:56 2025 by rpki-client