Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ItVNQ3gb1Rvf9kK9KSbnf_REo5A.roa
File: ItVNQ3gb1Rvf9kK9KSbnf_REo5A.roa (raw, json)
Hash identifier: sn2fMcvAuSa5pLP7dDAeZsnL6m/4djWNMeR0U0GJD3Q=
Subject key identifier: 22:D5:4D:43:78:1B:D5:1B:DF:F6:42:BD:29:26:E7:7F:F4:44:A3:90
Certificate issuer: /CN=64757185472f16d53eeb68a140e3513fa31c31d8
Certificate serial: 018CC26D6341F09DB48DCD3037AD30704E41
Authority key identifier: 64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ItVNQ3gb1Rvf9kK9KSbnf_REo5A.roa
Signing time: Mon 01 Jan 2024 00:29:57 +0000
ROA not before: Mon 01 Jan 2024 00:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208923
IP address blocks: 185.70.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:63:41:f0:9d:b4:8d:cd:30:37:ad:30:70:4e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64757185472f16d53eeb68a140e3513fa31c31d8
Validity
Not Before: Jan 1 00:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22d54d43781bd51bdff642bd2926e77ff444a390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:04:dd:33:c9:a1:20:14:57:f4:2d:a3:f3:21:
ff:cd:14:6a:b7:6a:72:d3:2c:22:8c:5c:72:00:31:
05:6b:34:5a:f1:f2:9a:5e:34:2b:2e:9f:75:1e:51:
62:ce:e1:4e:2e:ad:7e:f9:3d:a0:be:a1:db:31:6d:
31:8d:fe:b0:be:83:02:f7:76:48:19:63:3b:53:df:
b7:97:7c:19:6f:d4:73:fd:85:17:ac:9c:b9:e6:8b:
8c:41:8a:3a:e0:d5:11:05:e5:ba:2d:5c:c6:b5:f0:
4f:03:33:14:f0:da:59:1c:0b:a3:0e:73:a9:26:09:
7b:63:1b:52:1e:62:1e:19:0b:e7:3d:04:f1:21:32:
60:48:9f:cd:96:a5:0f:92:1e:ca:66:29:24:21:97:
95:87:08:f3:33:23:db:4a:bd:21:e4:28:e1:af:02:
1d:d0:93:53:43:3a:ce:b0:f8:08:b4:03:e4:32:b6:
2c:37:24:7b:9e:13:3c:3b:48:f0:d8:f2:07:e6:9c:
dd:bc:0f:01:ec:76:d9:ff:dc:c8:bf:97:e8:0a:07:
78:de:c6:d8:b5:01:75:54:8f:6e:ea:fa:f7:46:c8:
b1:a9:5d:23:d9:03:e9:ab:2d:8b:dd:ae:a0:dd:5b:
d8:13:67:e2:22:bf:04:00:1e:e0:9a:6b:ef:d8:16:
5d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D5:4D:43:78:1B:D5:1B:DF:F6:42:BD:29:26:E7:7F:F4:44:A3:90
X509v3 Authority Key Identifier:
keyid:64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ItVNQ3gb1Rvf9kK9KSbnf_REo5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.227.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:22:7e:34:96:50:e2:11:a9:e4:ff:3d:c1:08:a1:fa:dd:35:
dd:4a:83:eb:a4:9a:d8:2c:d7:39:d0:ad:fd:cb:8a:82:38:52:
df:0b:4c:cb:a5:36:22:6e:bf:09:b9:6c:bc:dd:a3:8d:ef:a4:
ca:64:62:ea:74:ac:17:fb:7c:e7:7a:2a:43:07:29:d1:26:47:
79:63:0b:42:4a:29:00:a0:fe:03:6e:d3:cf:cb:0b:ea:60:47:
9b:f2:f7:77:be:b0:13:20:85:3d:55:e1:c5:78:91:b2:b6:49:
a8:98:68:af:a0:0a:c8:14:56:12:ca:0d:eb:26:53:e3:3e:ea:
fe:64:df:71:2e:02:48:57:b8:19:36:a3:68:df:78:9e:a5:a2:
de:b8:24:e7:6c:4c:a7:71:f5:f1:2d:0d:4d:15:04:a3:a1:6d:
68:2c:de:c8:a7:dc:4a:18:59:a9:69:b6:bb:f1:d3:e8:eb:30:
62:d4:a3:84:c9:d9:38:41:ed:94:d0:5a:aa:b8:2a:4c:1d:7c:
71:99:67:35:10:40:e1:9b:be:00:f7:a4:72:6b:fd:55:c5:a0:
0a:d2:35:e8:b6:67:2b:7e:44:97:f6:a2:0f:24:b2:fa:ac:a0:
66:e9:47:83:b0:a6:23:c6:cd:8f:73:bb:5d:20:8f:48:15:ad:
82:58:b1:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:05:12 2025 by rpki-client