Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/e75e41-a828-4dc5-8ed3-9fc36411accc/1/4EDprolbj0rshB6He3Hjjh0CUog.roa
File: 4EDprolbj0rshB6He3Hjjh0CUog.roa (raw, json)
Hash identifier: 0NmmYBw29x4Q3QQeHjLMGSLVr8r4dMcXNeQ8y4Q1YWM=
Subject key identifier: E0:40:E9:AE:89:5B:8F:4A:EC:84:1E:87:7B:71:E3:8E:1D:02:52:88
Certificate issuer: /CN=3939f92b825ce110903c31d522b0f50cafd74a6f
Certificate serial: 018E9DC56C175483D4C80D310BBAF7ED1C1E
Authority key identifier: 39:39:F9:2B:82:5C:E1:10:90:3C:31:D5:22:B0:F5:0C:AF:D7:4A:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTn5K4Jc4RCQPDHVIrD1DK_XSm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/e75e41-a828-4dc5-8ed3-9fc36411accc/1/4EDprolbj0rshB6He3Hjjh0CUog.roa
Signing time: Tue 02 Apr 2024 07:45:44 +0000
ROA not before: Tue 02 Apr 2024 07:45:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34285
IP address blocks: 185.197.244.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 03 Apr 2024 07:56:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9d:c5:6c:17:54:83:d4:c8:0d:31:0b:ba:f7:ed:1c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3939f92b825ce110903c31d522b0f50cafd74a6f
Validity
Not Before: Apr 2 07:45:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e040e9ae895b8f4aec841e877b71e38e1d025288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bb:e3:f2:70:01:4f:89:ea:61:26:ff:5d:21:
5a:fd:7d:bc:e6:82:bd:e2:bf:e8:37:af:96:57:43:
af:25:a1:c6:31:da:12:f5:dd:34:35:2d:4b:c8:15:
8f:45:9a:2d:50:77:74:8b:f4:a1:0b:fd:0d:77:6f:
72:27:d9:59:64:68:e2:b0:6f:40:59:42:00:6b:35:
d8:46:15:99:50:ba:fa:ae:54:46:bf:90:63:0b:45:
49:fc:81:26:44:16:a1:21:cb:bd:be:3b:0f:68:2b:
88:75:db:e2:9d:52:3d:07:66:ea:1d:66:b5:03:53:
ad:96:a1:74:24:c8:12:b9:a8:af:bf:d1:c5:a3:1a:
03:b9:c1:0b:0c:78:52:a0:3f:e3:43:32:5a:c8:59:
3e:0b:3e:dd:78:33:35:72:50:d4:63:b2:a7:1f:c8:
ad:a5:bf:8b:2d:15:a6:d4:18:e7:ea:09:f0:55:48:
66:c1:a3:57:b6:b8:00:42:8e:9c:20:98:64:cb:d5:
ce:7d:10:f0:a2:11:d5:92:be:56:05:db:f0:09:31:
65:50:d7:19:b0:b0:ec:29:be:e2:27:c0:6c:ac:6d:
49:1d:30:3c:0b:78:d2:1e:44:a9:48:36:1d:9e:f2:
9c:95:8d:88:83:ef:68:b9:77:02:be:51:6d:79:67:
82:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:40:E9:AE:89:5B:8F:4A:EC:84:1E:87:7B:71:E3:8E:1D:02:52:88
X509v3 Authority Key Identifier:
keyid:39:39:F9:2B:82:5C:E1:10:90:3C:31:D5:22:B0:F5:0C:AF:D7:4A:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTn5K4Jc4RCQPDHVIrD1DK_XSm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/e75e41-a828-4dc5-8ed3-9fc36411accc/1/4EDprolbj0rshB6He3Hjjh0CUog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/e75e41-a828-4dc5-8ed3-9fc36411accc/1/OTn5K4Jc4RCQPDHVIrD1DK_XSm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.244.0/22
Signature Algorithm: sha256WithRSAEncryption
44:79:bc:d2:b6:65:49:4b:73:a1:bc:3e:47:27:f1:45:6f:2b:
0a:4f:8b:5e:fa:e2:14:ab:93:e2:c5:fb:ee:10:b7:d4:20:2a:
06:6e:fe:39:d9:b9:7b:a1:e2:33:22:44:e0:a9:08:58:5d:14:
d2:69:fb:36:4f:2a:fc:46:6d:7f:bd:5c:e3:5e:47:50:1e:e3:
a8:b0:e4:b6:34:f5:79:1a:ed:49:1e:6e:89:7a:f5:1d:99:1a:
77:99:e2:79:9a:7b:83:50:48:d0:6f:bc:07:8b:8d:1e:38:35:
85:af:ff:10:90:b6:05:23:13:80:4c:62:96:36:0e:22:a8:b6:
a7:7a:f4:6d:0c:a8:55:ad:98:21:92:74:78:62:1c:cb:18:15:
5e:15:3f:3a:69:72:07:6e:12:62:de:e4:1b:d6:aa:76:9b:29:
eb:bc:ca:6b:7d:ce:75:f1:0f:4b:83:bc:14:db:00:e7:29:be:
34:36:d7:32:6d:7c:82:05:2d:5e:f7:39:66:ad:07:53:d1:26:
0c:82:7b:bf:62:5c:34:18:b5:a2:1c:60:33:27:32:5d:ef:dc:
f0:ac:f2:22:da:30:58:86:b4:4c:76:62:e0:8b:40:03:c6:86:
55:77:d4:16:fc:0c:44:10:60:c9:bd:de:8e:a8:a3:30:e4:6b:
45:0c:c1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:17 2025 by rpki-client