Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/oDuN4qu4TEBekcI3MioqFmrkPTA.roa
File: oDuN4qu4TEBekcI3MioqFmrkPTA.roa (raw, json)
Hash identifier: nRjnxx4AgRHidLdsKPCxWN2zMJUlSN9ovIpyy5AHh10=
Subject key identifier: A0:3B:8D:E2:AB:B8:4C:40:5E:91:C2:37:32:2A:2A:16:6A:E4:3D:30
Certificate issuer: /CN=123c3de61011de07101e14dc0727395171cb03ab
Certificate serial: 018EAF3B2D3C4D7B744E17FD8A9F6C49F557
Authority key identifier: 12:3C:3D:E6:10:11:DE:07:10:1E:14:DC:07:27:39:51:71:CB:03:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ejw95hAR3gcQHhTcByc5UXHLA6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/oDuN4qu4TEBekcI3MioqFmrkPTA.roa
Signing time: Fri 05 Apr 2024 17:07:54 +0000
ROA not before: Fri 05 Apr 2024 17:07:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203811
IP address blocks: 185.122.252.0/24 maxlen: 24
185.122.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Oct 2024 14:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:af:3b:2d:3c:4d:7b:74:4e:17:fd:8a:9f:6c:49:f5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=123c3de61011de07101e14dc0727395171cb03ab
Validity
Not Before: Apr 5 17:07:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a03b8de2abb84c405e91c237322a2a166ae43d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a0:aa:db:4c:fc:f4:c1:d0:b4:23:62:8c:e0:
a8:f5:57:16:64:db:55:df:9a:58:d0:6a:33:b8:74:
1b:6e:87:dd:37:11:50:c6:88:b5:83:22:71:78:3c:
df:ce:f3:37:b8:7a:de:c8:6b:39:61:f6:a5:00:b3:
44:bb:c4:b5:69:ae:b9:56:a8:2d:e3:72:3d:8a:0d:
e1:d7:99:bb:f9:1a:ce:01:02:e7:31:5a:d3:7d:a5:
43:31:5c:99:c4:80:42:cb:ad:1e:10:49:f1:27:2e:
59:60:a4:fd:01:98:7c:b8:aa:fb:bb:50:9e:fb:4a:
b2:88:3d:a1:84:cc:d8:25:e4:27:8b:5c:c2:2e:3a:
2c:80:cb:f3:58:15:b0:0f:ff:d4:70:b2:01:89:8c:
14:d1:a9:f8:68:c1:53:a3:d9:15:b4:fb:a6:5c:83:
65:4e:fb:00:23:1e:69:ac:18:2b:8c:5b:83:fb:1e:
24:64:48:b0:d7:09:38:1e:44:77:66:59:61:81:06:
0a:43:65:19:3d:43:3f:5d:ac:9d:7c:6f:5f:53:00:
5c:71:ec:01:f0:f3:78:53:ae:88:3b:d7:ed:3e:7d:
62:c0:39:e0:f1:97:90:08:00:73:70:bd:75:12:16:
38:18:57:33:d5:54:33:67:07:b9:d7:c0:52:88:97:
33:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3B:8D:E2:AB:B8:4C:40:5E:91:C2:37:32:2A:2A:16:6A:E4:3D:30
X509v3 Authority Key Identifier:
keyid:12:3C:3D:E6:10:11:DE:07:10:1E:14:DC:07:27:39:51:71:CB:03:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ejw95hAR3gcQHhTcByc5UXHLA6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/oDuN4qu4TEBekcI3MioqFmrkPTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/229650-8a01-4370-991e-b504c9ae9bbc/1/Ejw95hAR3gcQHhTcByc5UXHLA6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.252.0/24
185.122.254.0/24
Signature Algorithm: sha256WithRSAEncryption
88:b6:b9:e7:5d:74:73:70:9b:b6:2c:36:de:8a:da:16:e7:e8:
26:21:49:81:47:9c:81:d9:3f:50:42:45:ad:f0:d3:93:fa:dd:
b7:93:ff:bc:c7:e4:90:67:57:3f:e2:91:9e:29:3a:5b:12:55:
6f:95:94:0f:73:76:a7:55:d9:d6:15:ba:9a:e7:98:ea:c2:42:
3e:a2:16:80:d1:d4:78:e7:b1:66:5c:23:9b:77:c4:a0:4b:2a:
db:b8:38:aa:cd:6e:1b:4c:dc:0c:65:9a:cc:d2:ce:5a:94:be:
79:35:29:3b:ae:6c:fb:d0:81:d8:83:8d:c5:e9:04:21:5c:39:
9c:65:90:9c:10:e9:3d:f4:ba:f0:53:31:80:1f:f8:71:af:8d:
60:e4:54:92:4c:45:43:3e:86:2d:7d:b9:ad:1b:74:25:48:e8:
ce:61:53:68:5f:0f:9e:5d:9c:f8:de:d7:b9:a7:a0:d8:8c:42:
57:d2:b7:02:54:8e:46:f9:40:0b:6b:33:fd:5f:f4:b1:6d:76:
38:5a:e4:bd:56:7e:77:1e:1b:10:47:c9:e7:dd:8f:89:c5:cf:
52:d4:e7:87:d3:9f:35:a7:7a:99:7f:e3:ee:6c:62:e5:53:87:
71:ca:d2:29:3b:d0:b1:a2:5a:ed:b9:91:f5:be:06:3c:cc:a9:
bd:2a:9d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:12:41 2025 by rpki-client