Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/Ymh8kAfKrdl4NKDvmc_FsyzyIuQ.roa
File: Ymh8kAfKrdl4NKDvmc_FsyzyIuQ.roa (raw, json)
Hash identifier: QjKZQbXp3ullbCw4xlCci47bC8qttbd5IZEl6QalVB0=
Subject key identifier: 62:68:7C:90:07:CA:AD:D9:78:34:A0:EF:99:CF:C5:B3:2C:F2:22:E4
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 019469ABB0A0651A217C2FD9613FF9E4D472
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/Ymh8kAfKrdl4NKDvmc_FsyzyIuQ.roa
Signing time: Wed 15 Jan 2025 11:14:06 +0000
ROA not before: Wed 15 Jan 2025 11:14:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 85.8.182.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Feb 2025 14:15:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:69:ab:b0:a0:65:1a:21:7c:2f:d9:61:3f:f9:e4:d4:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Jan 15 11:14:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=62687c9007caadd97834a0ef99cfc5b32cf222e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:17:5e:25:c4:b1:d6:e8:f0:23:c5:d2:32:58:
69:01:ed:6d:05:1f:2e:21:be:e7:0b:ff:53:67:af:
eb:2c:48:b0:1e:1e:78:c8:34:3e:6f:6a:09:69:ea:
44:a4:08:91:50:2f:2e:b4:cd:26:7d:74:fd:0d:f5:
bf:d7:c7:91:20:7b:76:71:6d:02:69:c4:85:b0:f3:
47:a3:9d:f9:96:f0:b5:d0:96:df:6f:5b:1f:ea:29:
7c:85:85:27:c6:03:9c:63:67:32:d2:c4:6f:3b:09:
3e:a8:4d:fc:a9:e8:40:dd:87:0d:74:5c:2e:ae:f2:
d2:f7:7e:ba:d4:05:85:b9:01:49:19:df:b5:ef:bf:
a2:67:9d:c6:aa:88:e5:96:38:af:e3:2d:bc:ec:a4:
64:71:58:e7:90:1c:74:93:67:2b:bb:6e:d5:81:2e:
45:38:61:e0:cf:78:9e:6c:06:6c:1f:42:ee:21:eb:
2b:36:70:87:c5:15:7d:6e:cd:b1:f0:db:69:a4:57:
d0:a3:10:ab:9e:47:5d:e8:51:61:be:ee:f8:75:f5:
4d:63:f7:0a:67:b4:8f:86:76:0c:4f:25:00:0b:25:
69:7c:09:d6:a4:bc:5c:1b:94:b5:8d:5e:18:fe:1d:
28:d1:6a:35:e9:f6:d7:10:a1:12:ff:ba:c7:ea:96:
05:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:68:7C:90:07:CA:AD:D9:78:34:A0:EF:99:CF:C5:B3:2C:F2:22:E4
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/Ymh8kAfKrdl4NKDvmc_FsyzyIuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.182.0/23
Signature Algorithm: sha256WithRSAEncryption
65:32:a2:d0:5f:e1:82:fd:d5:d0:57:0c:c7:81:4b:f5:cc:af:
c4:71:d7:73:c2:9e:e8:4e:5d:68:70:a7:83:8e:d4:5a:33:ce:
52:c8:05:09:d9:39:8f:e4:df:32:e8:89:fb:cd:a5:a7:b0:28:
d6:1d:5f:f4:f3:d7:d4:05:8e:da:6f:8f:e2:da:61:0a:0a:eb:
4c:24:c6:f8:36:a1:03:a7:83:87:ef:1c:d2:99:7c:0d:ce:e7:
12:2f:8d:57:1c:fd:25:b2:5d:a1:b4:3f:e0:96:ff:b3:56:02:
21:14:99:69:3c:c7:ec:d5:a6:1a:15:00:85:6d:f3:1d:fb:70:
b8:ca:99:3f:a0:50:22:08:ee:6c:7b:1a:f7:04:ae:c7:5e:79:
cb:fb:20:d4:4d:e1:60:53:32:dc:5f:28:22:75:78:55:2c:1f:
9d:94:f7:76:e4:d1:84:c1:83:58:b6:63:da:28:ea:d0:1b:89:
a3:60:c6:38:c9:8a:f0:1f:ff:fe:35:bf:54:14:70:de:07:53:
49:40:0b:e5:83:46:60:7a:95:f6:21:6a:70:95:b7:3d:32:41:
2c:20:55:f7:93:3b:25:9c:85:d8:8d:25:4f:05:f0:35:29:58:
6a:51:37:a3:ea:7a:2a:d2:1a:57:9b:c5:4e:73:26:3c:a1:67:
8f:6e:80:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:31 2025 by rpki-client