Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/sZD2uiksEgouUq3vi19r0AQqiUw.roa
File: sZD2uiksEgouUq3vi19r0AQqiUw.roa (raw, json)
Hash identifier: /0qOOpP1yXRG7gGHeimJwbpqOSYqmsm0qB860xNu9pc=
Subject key identifier: B1:90:F6:BA:29:2C:12:0A:2E:52:AD:EF:8B:5F:6B:D0:04:2A:89:4C
Certificate issuer: /CN=6d85061361b19f212efe90c2d8cf3eee617f20e5
Certificate serial: 018CC86F44F464562179926FC3C601497740
Authority key identifier: 6D:85:06:13:61:B1:9F:21:2E:FE:90:C2:D8:CF:3E:EE:61:7F:20:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYUGE2GxnyEu_pDC2M8-7mF_IOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/sZD2uiksEgouUq3vi19r0AQqiUw.roa
Signing time: Tue 02 Jan 2024 04:29:44 +0000
ROA not before: Tue 02 Jan 2024 04:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202513
IP address blocks: 185.249.148.0/22 maxlen: 24
185.98.16.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:47:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:44:f4:64:56:21:79:92:6f:c3:c6:01:49:77:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d85061361b19f212efe90c2d8cf3eee617f20e5
Validity
Not Before: Jan 2 04:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b190f6ba292c120a2e52adef8b5f6bd0042a894c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f0:c5:65:35:82:a7:89:28:59:23:2d:85:df:
47:d8:b6:83:8e:a2:aa:95:5f:13:94:df:f2:18:ed:
69:b2:7e:17:a3:be:5f:75:f7:79:89:c4:d2:63:4c:
2e:b7:e0:b6:e3:60:f9:e5:ef:14:7c:6b:10:4d:66:
f4:a0:1e:e0:6b:24:3b:11:98:50:50:ae:40:a6:49:
d7:69:4d:fd:a5:aa:f6:d9:b0:8f:23:2f:c8:18:54:
fc:d2:ce:7c:80:c1:6d:ff:bd:1d:7f:29:ae:4e:3d:
1f:bb:fe:de:67:48:02:cd:40:c0:8f:c5:0e:f7:8c:
47:35:2d:16:fa:2b:56:bf:64:75:ed:9f:6a:e7:5b:
24:4f:83:01:d1:dd:4a:7b:27:08:87:12:b6:35:bb:
78:52:96:8b:83:f4:58:14:ef:5f:78:4b:72:e1:e7:
e9:d4:32:b0:ab:3a:0a:c7:b1:dc:63:83:46:47:fb:
89:2a:f1:3f:f8:a6:0c:1a:42:53:5b:02:9f:4a:31:
f8:12:a6:58:fd:f9:13:05:ff:8d:24:b2:54:a6:af:
44:dd:36:74:ee:62:fc:4f:8e:05:d8:e6:d0:02:91:
26:12:9f:8c:c2:5b:82:a0:c6:15:a3:5e:43:f1:d0:
7f:58:5e:dd:2a:1a:c4:60:61:a2:e5:97:62:e6:a5:
1f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:90:F6:BA:29:2C:12:0A:2E:52:AD:EF:8B:5F:6B:D0:04:2A:89:4C
X509v3 Authority Key Identifier:
keyid:6D:85:06:13:61:B1:9F:21:2E:FE:90:C2:D8:CF:3E:EE:61:7F:20:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYUGE2GxnyEu_pDC2M8-7mF_IOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/sZD2uiksEgouUq3vi19r0AQqiUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7e7b8b-79e0-4f51-b866-67ad60d386dd/1/bYUGE2GxnyEu_pDC2M8-7mF_IOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.16.0/22
185.249.148.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:e3:47:59:6e:a4:bb:35:65:1a:b0:36:17:07:1c:56:69:18:
56:e4:21:c1:d1:87:f7:81:41:a8:4e:a0:df:bb:39:40:e7:4d:
a5:8d:d1:9b:c3:52:df:2b:29:db:b3:a4:3f:f9:59:1a:d5:f7:
25:8e:5d:a9:8d:75:3f:f1:f6:6e:71:06:ab:eb:2c:32:6f:05:
c1:de:f3:f3:93:22:5d:dc:cd:f2:96:26:22:42:16:31:b5:ed:
04:29:78:55:25:f3:ec:2e:53:39:68:84:d7:72:29:22:55:e2:
49:eb:c9:ee:ad:53:47:75:b7:8e:81:84:7c:84:5b:0f:79:d2:
f6:de:2e:5b:d9:c7:c9:c5:49:28:99:ff:4a:d1:91:2e:57:1c:
3a:3b:db:e5:d8:ff:63:fc:e8:70:aa:1e:d0:76:a7:45:de:98:
ae:51:78:f7:24:c6:22:1f:66:8b:c5:c5:54:f3:f1:c5:06:7b:
3c:84:db:e8:77:45:cb:1b:3c:24:22:e7:ee:32:bd:b5:6a:65:
a8:54:2a:ec:f6:20:0e:a1:d0:ec:ca:43:d6:98:89:ed:f9:b8:
f5:08:7d:cc:a1:83:4f:32:59:6f:82:6b:03:c4:09:37:95:1b:
8c:f6:34:ea:18:c3:4e:55:ae:4e:b1:db:7c:0c:85:c6:ee:a4:
89:8d:10:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:46 2025 by rpki-client