Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/2YRnWSlUUla2QOxsBN1d6uHtVcY.roa
File: 2YRnWSlUUla2QOxsBN1d6uHtVcY.roa (raw, json)
Hash identifier: e+jx3T17uOj47hk2zbCZWKJodPR3+Xsw46dghxZwa0k=
Subject key identifier: D9:84:67:59:29:54:52:56:B6:40:EC:6C:04:DD:5D:EA:E1:ED:55:C6
Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728
Certificate serial: 0193BF6D2A3E62AC42002C31C93391CFDB28
Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/2YRnWSlUUla2QOxsBN1d6uHtVcY.roa
Signing time: Fri 13 Dec 2024 09:50:22 +0000
ROA not before: Fri 13 Dec 2024 09:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62395
IP address blocks: 185.151.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:6d:2a:3e:62:ac:42:00:2c:31:c9:33:91:cf:db:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c7844abef711c232c84f83c807a420af3804728
Validity
Not Before: Dec 13 09:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d984675929545256b640ec6c04dd5deae1ed55c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ac:e0:3a:20:61:e4:03:9e:8f:20:d8:1d:3f:
ef:aa:c9:20:7b:6e:f0:3f:4c:e5:3d:b8:d4:56:94:
fa:fa:68:96:ad:7c:43:45:9e:1f:09:ae:35:8e:ce:
af:d1:58:4c:75:6f:fe:f2:b5:88:70:58:3e:45:5d:
6e:a0:87:46:48:a3:22:94:58:10:e4:91:e9:fb:fe:
c3:f4:a6:55:f4:26:22:87:c0:e0:aa:c3:f6:a7:48:
e4:9b:95:82:fd:ae:d7:84:81:54:a7:2f:ed:52:6b:
8b:96:61:7a:fc:f3:a5:44:71:f5:de:99:8a:45:5b:
99:3b:01:ab:3b:7f:fb:d7:bc:6b:af:30:af:20:14:
3c:41:59:ae:60:d9:89:79:d7:e6:b5:d5:1a:1a:ab:
c6:ef:f8:b9:a2:cc:09:d2:4c:b2:25:bf:d6:2e:a3:
8a:58:ac:35:83:2b:89:c3:82:5d:a1:34:91:7c:0d:
da:6c:25:0b:00:0a:5c:6e:0f:cd:47:ed:86:44:59:
e1:4e:41:16:17:56:52:53:b6:58:e2:d9:10:d0:32:
4e:01:00:78:24:c9:2d:f7:d6:62:b8:b6:14:a3:53:
7a:5a:92:10:ef:c8:dc:3b:20:1e:ea:1f:17:b3:87:
ad:c2:e0:ac:e3:45:6d:e0:84:e9:4d:87:28:e1:58:
ce:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:84:67:59:29:54:52:56:B6:40:EC:6C:04:DD:5D:EA:E1:ED:55:C6
X509v3 Authority Key Identifier:
keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/2YRnWSlUUla2QOxsBN1d6uHtVcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.8.0/22
Signature Algorithm: sha256WithRSAEncryption
39:09:fc:7e:90:27:5e:45:71:3e:32:08:1f:ae:5d:a6:25:7d:
95:51:10:6c:ff:86:f7:a7:1f:a9:f4:22:b4:40:f6:36:14:93:
cb:1d:65:d3:ae:9c:ad:ed:8e:b5:ba:a1:3b:cc:df:36:f5:d1:
04:d3:ae:4e:90:d0:06:a0:59:cf:c2:48:b2:36:6f:79:71:b5:
ba:55:a2:d5:3d:8b:cf:d8:e2:87:6e:25:bf:12:12:06:53:41:
a5:58:ab:22:cf:7c:c2:ba:98:ca:90:a8:ce:81:4d:56:47:6a:
4c:8e:3b:f6:65:2f:ce:aa:f1:b5:32:d7:05:6f:a2:1d:09:9d:
49:4e:8b:cc:dd:14:39:bf:fc:d4:21:89:e0:e9:42:f5:b8:02:
c9:e4:e7:5d:78:59:90:87:b8:90:02:0f:fc:3f:01:04:46:4d:
5e:7d:6d:3a:c6:54:16:a4:fa:7f:75:ec:1a:10:14:49:fd:e0:
be:ad:fb:cc:ab:1d:93:72:fe:b8:99:cd:1a:5f:e9:eb:c2:95:
af:39:60:2b:66:a3:61:83:83:9e:dd:2c:e4:7c:29:15:4a:a2:
60:e4:ad:c6:b0:ad:2a:ac:04:c1:aa:49:07:3f:6a:86:d0:0b:
15:9a:66:7d:6d:dc:81:a9:68:fc:25:dc:33:92:22:15:9a:ff:
ed:11:72:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:40:29 2025 by rpki-client