Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Q4l6KZmE4x2DVZiOATnxk_pLjn0.roa
File: Q4l6KZmE4x2DVZiOATnxk_pLjn0.roa (raw, json)
Hash identifier: kGNsq1Sd+wnNRl7lq633zQA1A8mMoXq+WK7X8oZ4xcY=
Subject key identifier: 43:89:7A:29:99:84:E3:1D:83:55:98:8E:01:39:F1:93:FA:4B:8E:7D
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0191EA5119140771A77B50406CEFAB9A0B6A
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Q4l6KZmE4x2DVZiOATnxk_pLjn0.roa
Signing time: Fri 13 Sep 2024 07:37:48 +0000
ROA not before: Fri 13 Sep 2024 07:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 185.34.160.0/23 maxlen: 23
185.34.162.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 17 Sep 2024 05:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ea:51:19:14:07:71:a7:7b:50:40:6c:ef:ab:9a:0b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Sep 13 07:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43897a299984e31d8355988e0139f193fa4b8e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:08:d1:a2:d2:fb:97:56:c6:fe:9a:38:6f:e0:
8f:49:68:74:bf:18:d4:17:32:f1:db:ca:26:40:13:
7b:86:2e:18:49:0a:2e:f9:57:67:f8:1b:d3:a4:97:
60:52:9d:46:90:7f:73:4c:cf:33:b8:be:5b:f3:8b:
72:4e:d1:70:a2:70:1a:e2:e0:72:78:c8:aa:04:ac:
df:3c:c1:34:96:74:60:76:89:29:af:92:ea:89:8f:
38:e4:ed:85:2f:b9:b0:26:5f:74:35:31:8a:17:b3:
d1:72:e2:84:b3:ed:7e:24:e3:b5:ff:50:a9:78:eb:
87:91:01:b3:23:23:fa:03:61:a1:83:49:19:55:57:
41:66:19:d3:78:31:0f:4e:5c:2f:d3:4d:b5:1e:c5:
92:d8:d0:1e:23:87:cb:21:50:be:ac:2d:3b:3b:fe:
22:fa:f3:4c:d4:80:f2:94:73:f8:b8:12:61:ee:33:
43:f3:70:c7:00:0d:b0:5b:07:62:0c:cf:95:89:b9:
5a:5e:7b:c0:fc:9e:5c:5e:5e:cf:53:1d:e7:49:7b:
8f:2d:45:b0:55:f9:e5:99:14:8a:b8:21:57:dc:64:
3a:fa:34:e4:b2:8e:97:37:e7:5a:4a:fd:c1:69:be:
82:6a:3d:2c:98:f9:67:e2:40:9f:0c:a1:ba:7f:92:
d4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:89:7A:29:99:84:E3:1D:83:55:98:8E:01:39:F1:93:FA:4B:8E:7D
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Q4l6KZmE4x2DVZiOATnxk_pLjn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.160.0/22
Signature Algorithm: sha256WithRSAEncryption
39:9b:3d:de:25:55:41:d8:08:c5:fd:b9:dc:2d:51:e9:d0:ca:
c9:57:c6:3d:da:fa:03:cd:16:d0:a6:43:8b:c8:ff:93:7d:bc:
87:13:8d:e5:07:02:9d:37:4c:6a:4e:93:ff:21:98:2a:f5:3e:
78:ff:49:ec:60:f6:5a:83:58:ea:f2:1c:29:2e:50:65:09:c5:
70:04:27:27:8d:92:ef:d4:a1:7d:1a:ea:88:1b:b6:d7:ef:f5:
d8:c6:56:b4:0b:de:18:ce:84:83:e4:76:17:ed:5c:a4:f5:d7:
65:8a:00:83:1b:73:97:56:86:f7:b0:8f:96:0e:66:34:5b:a4:
7b:86:19:37:87:56:03:66:ad:f6:a4:04:59:3b:b3:b7:14:6d:
8c:e7:3d:e7:87:23:f8:4f:6d:07:71:b0:71:7e:9a:4a:72:26:
87:25:24:71:fb:2f:78:82:52:8f:2b:7d:47:86:13:fc:91:a0:
c6:f2:0d:da:c9:02:39:9d:8e:cb:92:3b:01:cd:33:10:f0:c2:
ba:70:af:ba:f7:8d:a0:28:57:7b:2f:b5:0b:aa:39:bf:ed:39:
55:6f:33:71:a9:8e:6f:90:a3:e4:d8:1d:f6:7b:4b:fc:02:2c:
33:ac:3d:63:93:ba:b8:9f:1f:7a:0c:32:d8:c7:f5:3f:4f:d1:
ae:e3:43:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:30 2025 by rpki-client