Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/vKEwJ99ZTFBRhdAviKQXuGhLmXQ.roa
File: vKEwJ99ZTFBRhdAviKQXuGhLmXQ.roa (raw, json)
Hash identifier: jcWk0sg/jhatCXpqVFgyQMSVgtbVNUKwWDWkwD/rKrE=
Subject key identifier: BC:A1:30:27:DF:59:4C:50:51:85:D0:2F:88:A4:17:B8:68:4B:99:74
Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728
Certificate serial: 0193BF6D2ACFBC057071B4FE8DF9C5CE57EC
Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/vKEwJ99ZTFBRhdAviKQXuGhLmXQ.roa
Signing time: Fri 13 Dec 2024 09:50:22 +0000
ROA not before: Fri 13 Dec 2024 09:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202922
IP address blocks: 185.150.112.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:6d:2a:cf:bc:05:70:71:b4:fe:8d:f9:c5:ce:57:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c7844abef711c232c84f83c807a420af3804728
Validity
Not Before: Dec 13 09:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bca13027df594c505185d02f88a417b8684b9974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:ee:b9:ea:51:35:a3:47:3a:c7:b7:63:0c:
05:69:11:ce:dc:da:75:24:74:60:05:99:56:17:62:
27:87:8c:65:45:b4:21:2a:55:61:b6:85:ae:cd:32:
55:0e:80:35:cb:c1:25:f2:93:45:11:f7:38:e0:23:
9f:84:0b:13:60:b2:e7:fd:d3:68:87:0e:30:03:86:
39:9d:ca:b6:29:35:4d:ee:e6:3d:5d:b5:b7:af:82:
c4:ae:4c:d4:67:4d:89:29:ec:f6:ae:91:72:6a:4f:
ec:cb:c4:b5:ca:7f:27:80:bb:a5:6e:52:4d:27:3b:
42:c3:9a:3e:8f:f7:fb:3b:fd:10:1f:59:a5:55:19:
94:55:56:ee:ca:0d:05:7e:f4:79:06:88:87:c9:9a:
16:ee:d4:75:23:58:77:1a:b8:03:1f:32:d8:43:ac:
7b:dd:89:d2:ac:d1:bf:c2:5f:d9:e4:b4:1d:90:b6:
73:1a:82:28:c0:15:c6:8a:81:e5:ab:9a:97:e2:16:
62:85:51:78:58:61:bc:25:66:8e:95:10:16:13:f0:
e6:1a:90:3f:01:7d:04:20:b2:6c:34:de:31:5d:c4:
42:d9:01:f4:0a:2d:79:58:f4:12:79:8d:05:fd:1f:
75:b2:91:d5:1d:01:73:9b:d3:34:5c:30:cb:47:65:
5c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A1:30:27:DF:59:4C:50:51:85:D0:2F:88:A4:17:B8:68:4B:99:74
X509v3 Authority Key Identifier:
keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/vKEwJ99ZTFBRhdAviKQXuGhLmXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.112.0/22
Signature Algorithm: sha256WithRSAEncryption
15:73:35:13:00:10:e6:be:3f:91:a3:35:18:af:f4:5e:ae:db:
75:c9:71:c0:60:a7:53:f4:ab:c6:50:a7:d8:aa:c7:b9:22:50:
6e:24:88:d5:a4:ba:db:8d:72:07:96:ec:19:23:50:e7:1f:86:
93:36:40:6a:58:dc:09:5d:ec:40:41:00:e3:7e:70:6a:7e:8e:
ee:d1:6d:67:35:fe:36:f7:5b:57:38:4f:47:87:17:d0:2f:75:
07:fa:53:2e:cf:bc:c5:e4:64:df:27:5d:b2:aa:15:c3:77:4c:
22:4e:b0:e9:ee:af:b7:cd:a3:6d:65:58:a9:1d:2f:c9:c1:20:
07:7f:bb:eb:40:97:be:ba:6a:d6:56:6e:bd:6a:09:8e:bd:6d:
9f:20:36:d8:8c:6d:8a:85:61:73:eb:09:ff:59:09:df:b2:e3:
77:81:9c:ce:a0:10:0a:07:ef:5f:d3:a7:a2:42:f0:d3:87:f3:
29:ce:61:f8:51:43:83:05:67:5a:88:95:55:67:07:a4:9a:b2:
0f:05:f0:a7:48:eb:e1:4a:71:54:a2:26:09:0b:ed:4b:0c:94:
d3:7e:62:8c:af:12:8a:ab:f6:36:5b:78:86:ef:29:bb:ec:f3:
cf:cd:cd:a1:e2:24:56:9c:0b:f6:60:f6:94:8f:e2:75:4e:df:
b7:e2:6b:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:50:33 2025 by rpki-client