Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/yCtqHXv3KWK0kWiVE54P87mOdgM.roa
File: yCtqHXv3KWK0kWiVE54P87mOdgM.roa (raw, json)
Hash identifier: CzBr0gNtTDq8GqExFnvKQewQfBR7U97KCl0BTLswH9Y=
Subject key identifier: C8:2B:6A:1D:7B:F7:29:62:B4:91:68:95:13:9E:0F:F3:B9:8E:76:03
Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728
Certificate serial: 0193BF6D29807AE0C2C89F2564E25A8DA74A
Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/yCtqHXv3KWK0kWiVE54P87mOdgM.roa
Signing time: Fri 13 Dec 2024 09:50:22 +0000
ROA not before: Fri 13 Dec 2024 09:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51913
IP address blocks: 185.157.88.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:6d:29:80:7a:e0:c2:c8:9f:25:64:e2:5a:8d:a7:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c7844abef711c232c84f83c807a420af3804728
Validity
Not Before: Dec 13 09:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c82b6a1d7bf72962b4916895139e0ff3b98e7603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8a:07:a7:32:ff:d5:85:5f:ee:5a:14:a1:26:
78:90:04:78:be:7b:46:35:46:29:2c:25:e1:04:be:
3a:72:73:c4:e1:52:56:41:5c:6d:0c:56:a3:04:5f:
ab:0e:cc:3d:16:34:b2:bb:da:06:12:0e:57:9c:b8:
be:b8:a9:4f:15:c0:ed:f9:04:04:19:0b:12:e2:f4:
2e:4b:20:32:4d:57:24:a1:8b:04:fe:05:8e:1a:50:
1d:9e:a3:39:75:11:e1:1a:f1:ee:6a:38:8b:dd:38:
4e:3c:9f:08:de:7b:aa:85:8e:60:52:42:8a:6b:07:
e0:af:fb:af:6e:15:a7:9a:1b:57:e8:8f:ab:56:07:
d0:31:ca:99:55:1a:a3:6f:59:e0:c5:e5:75:c7:a9:
ee:57:5b:84:0b:0f:f5:b1:e4:1b:f0:21:b6:bb:2e:
c7:71:67:79:d7:6c:03:a2:f8:42:13:e3:74:7f:21:
df:dd:e3:8b:55:e5:fc:57:6b:1d:b0:59:cc:83:14:
75:fc:ee:42:8e:48:84:8c:7b:86:9b:44:1d:7d:d5:
c3:16:42:a4:d5:72:2f:51:24:b7:38:48:03:7d:de:
76:a3:db:f3:a4:6d:a0:f8:5a:4b:bd:75:6b:e0:7e:
79:50:ac:10:77:07:e3:d2:94:62:86:c9:20:09:59:
e0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:2B:6A:1D:7B:F7:29:62:B4:91:68:95:13:9E:0F:F3:B9:8E:76:03
X509v3 Authority Key Identifier:
keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/yCtqHXv3KWK0kWiVE54P87mOdgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.88.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:86:3d:62:8a:3e:d1:bc:55:ce:07:41:44:a5:5e:6d:61:c5:
98:e8:3a:43:e2:d6:af:9c:4d:e4:df:cf:f0:32:33:4c:ca:03:
ae:7e:d6:60:a7:4f:a6:de:77:15:29:9b:63:0e:02:8c:48:9e:
22:3d:c7:91:e4:60:34:53:7f:82:1d:a4:0a:9a:a3:5e:14:47:
b6:aa:69:f6:88:6a:bf:01:be:aa:8c:e9:2c:62:39:c5:91:cd:
24:49:4d:d2:b4:71:f0:20:68:6c:6e:63:d2:d3:74:ea:95:4b:
4d:16:60:ee:ce:c3:da:b6:89:72:8d:8e:88:ad:35:78:42:b4:
95:dd:91:d2:66:9b:db:06:22:44:1a:85:54:b6:8d:78:99:fd:
8a:50:80:65:1c:11:dd:88:20:62:b1:e7:de:66:67:f7:29:d8:
cd:ee:bb:2a:7e:82:43:03:4a:81:48:ce:cc:12:02:e0:8b:e2:
d3:56:c8:7a:f2:a3:29:55:db:f8:2e:4c:4f:a5:69:1a:63:32:
c5:62:7e:34:72:7a:8f:fa:d7:f8:76:34:eb:57:f4:bd:2e:99:
09:6a:a4:92:8a:c2:8d:cc:15:8e:92:18:f2:0f:af:93:44:93:
4a:df:31:77:60:13:8a:c6:8a:94:19:1d:45:ea:f4:ca:c4:90:
14:a2:56:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:27 2025 by rpki-client