Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/VRn9-TuzDa_fEUAA1oZfb6AsTKY.roa
File: VRn9-TuzDa_fEUAA1oZfb6AsTKY.roa (raw, json)
Hash identifier: 6fsSgd8jiY1GcBWjYGdfUaZ5TOkKycdLgZn8nAZPhK0=
Subject key identifier: 55:19:FD:F9:3B:B3:0D:AF:DF:11:40:00:D6:86:5F:6F:A0:2C:4C:A6
Certificate issuer: /CN=64757185472f16d53eeb68a140e3513fa31c31d8
Certificate serial: 018CC26D62CE2ED87832FE33DFFF233128A2
Authority key identifier: 64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/VRn9-TuzDa_fEUAA1oZfb6AsTKY.roa
Signing time: Mon 01 Jan 2024 00:29:57 +0000
ROA not before: Mon 01 Jan 2024 00:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39010
IP address blocks: 185.70.226.0/24 maxlen: 24
185.70.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:62:ce:2e:d8:78:32:fe:33:df:ff:23:31:28:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64757185472f16d53eeb68a140e3513fa31c31d8
Validity
Not Before: Jan 1 00:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5519fdf93bb30dafdf114000d6865f6fa02c4ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a6:fb:6d:b3:82:db:55:62:2e:2c:b1:2e:46:
f5:8b:0e:55:73:75:d9:65:82:a4:ff:15:55:af:1e:
09:e5:57:d8:0f:32:f1:79:c2:1b:a2:62:ab:3a:63:
01:a7:9c:d4:53:bb:80:f7:8b:06:a4:6e:9a:89:24:
3a:fa:a0:e1:e7:b3:10:28:83:4a:b9:76:6f:fe:b1:
1d:9f:26:7d:68:52:25:88:e0:75:85:92:1a:06:38:
2a:b1:75:ab:e4:d6:9e:15:f1:e3:4d:5b:cc:80:7b:
1a:a2:70:b3:ba:70:79:dc:38:69:2c:0d:52:60:ad:
70:8d:96:eb:01:c6:a5:0a:16:ff:47:c3:f7:db:e2:
11:71:a4:eb:fc:59:af:dc:a5:87:3a:69:01:8f:d5:
75:86:0d:80:ce:9d:ed:1d:71:23:59:0d:6d:60:ba:
77:30:8d:8c:c8:62:4a:32:8c:88:bc:17:57:ab:73:
24:6d:52:17:b2:dc:b2:aa:e5:73:50:f9:82:30:6f:
3f:c9:2b:c2:9f:82:9f:5a:8b:6e:af:1d:79:82:97:
1a:20:b2:e0:f8:21:66:fa:fc:bc:cc:49:b9:94:62:
d2:bc:0a:3e:9c:4d:3f:fd:a2:12:ae:a6:0b:fc:f1:
82:a1:2e:10:d9:70:0d:58:27:da:dd:02:93:11:1d:
0c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:19:FD:F9:3B:B3:0D:AF:DF:11:40:00:D6:86:5F:6F:A0:2C:4C:A6
X509v3 Authority Key Identifier:
keyid:64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/VRn9-TuzDa_fEUAA1oZfb6AsTKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.225.0-185.70.226.255
Signature Algorithm: sha256WithRSAEncryption
6b:b5:76:25:a5:c7:7a:71:02:2c:c2:00:e6:0b:d9:b6:94:fe:
c0:c9:4e:b9:69:07:c8:c0:88:a2:e9:59:da:b7:f5:9d:d6:6c:
4f:4c:81:df:e2:1b:3e:15:c7:e3:6c:18:c0:bd:7a:5e:b7:26:
2c:ba:89:02:54:c8:4a:14:4c:04:d8:4f:d8:09:b6:6c:a7:3a:
bf:ca:1f:37:5a:c1:05:e3:d1:24:05:a7:57:bc:c8:c9:57:71:
14:e0:e9:cf:f4:7a:59:be:6b:fb:5f:56:eb:f6:9b:5d:0e:55:
3a:e3:7c:90:18:51:47:c4:28:67:22:b8:fd:5a:4d:47:2b:1b:
29:fb:ae:83:df:25:87:57:15:30:f3:5f:ae:a5:bb:b1:27:0b:
f4:46:fd:db:b6:6d:d2:65:a5:d0:a2:e6:58:2d:3c:74:25:94:
43:db:b7:67:9f:7b:de:87:e6:e0:1c:42:24:2e:72:11:38:cd:
a5:73:dd:b7:d2:29:17:3f:e6:59:8b:ef:90:f9:7e:9a:9d:c8:
37:49:d2:67:61:ba:fb:ae:76:5b:db:85:33:c3:50:f3:32:8b:
cd:27:09:ae:7d:26:fe:13:cd:30:5a:39:e3:c0:0d:5b:0a:d9:
53:39:8c:37:2e:67:50:82:1d:73:df:f2:45:cc:46:a4:d8:95:
0f:62:3d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:13:02 2025 by rpki-client