Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/854e86-51bb-458c-a014-6923a7e61a6b/1/IYzcAOylkCK_uA0fvPBTfE72Jds.roa
File: IYzcAOylkCK_uA0fvPBTfE72Jds.roa (raw, json)
Hash identifier: XQ1t48LGVut2zt47wAPz576NQbtokdUjwVpHgvtQ414=
Subject key identifier: 21:8C:DC:00:EC:A5:90:22:BF:B8:0D:1F:BC:F0:53:7C:4E:F6:25:DB
Certificate issuer: /CN=fc83525d142fbf4b94b3d169445365c66ddfddfd
Certificate serial: 0194316AA111240B0096D945FA8B4BDCD52C
Authority key identifier: FC:83:52:5D:14:2F:BF:4B:94:B3:D1:69:44:53:65:C6:6D:DF:DD:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_INSXRQvv0uUs9FpRFNlxm3f3f0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/854e86-51bb-458c-a014-6923a7e61a6b/1/IYzcAOylkCK_uA0fvPBTfE72Jds.roa
Signing time: Sat 04 Jan 2025 13:04:19 +0000
ROA not before: Sat 04 Jan 2025 13:04:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47603
IP address blocks: 185.84.226.0/24 maxlen: 27
Validation: Failed, certificate revoked on Sat 01 Feb 2025 22:40:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:31:6a:a1:11:24:0b:00:96:d9:45:fa:8b:4b:dc:d5:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc83525d142fbf4b94b3d169445365c66ddfddfd
Validity
Not Before: Jan 4 13:04:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=218cdc00eca59022bfb80d1fbcf0537c4ef625db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5b:9d:54:13:2f:1f:07:96:0b:5a:61:f8:2d:
e7:3a:77:1a:cf:9a:36:eb:ec:b3:f0:d7:59:ca:ca:
90:b3:88:69:99:a2:44:9d:83:c1:52:1a:2b:d2:fe:
74:e3:2c:df:f4:44:21:85:69:a1:90:6e:46:fb:0a:
d7:5f:8c:b0:cd:8f:14:ec:95:2e:d4:d7:5a:2e:4a:
de:f5:55:b1:c2:76:cc:d4:16:75:de:05:a3:11:7c:
e2:55:4c:c5:f2:84:5d:3d:9c:74:7a:2d:33:d3:33:
c3:7b:49:31:5a:51:f1:9e:09:f8:ba:b5:fc:f6:49:
35:4f:01:c4:b4:c9:df:b5:b3:31:e0:5e:2e:34:d2:
e1:1c:59:2b:69:04:79:44:84:8e:28:2d:71:b1:d4:
fc:7a:59:60:ed:d8:ec:99:3d:0f:2d:a2:7e:7f:fa:
a2:de:b9:95:6e:25:91:8d:32:c2:d1:9d:2d:20:db:
29:d4:7f:08:af:b0:4a:22:f4:45:8e:82:c2:14:24:
1d:d3:cd:23:26:d1:56:5e:19:9d:a2:15:19:0c:04:
da:58:91:74:6f:f7:04:fd:23:96:24:30:47:16:95:
11:24:d7:ca:48:b5:d2:68:09:5e:22:29:22:f0:8e:
2c:cd:81:e2:70:83:5f:1c:a0:2b:94:dd:11:9d:4e:
56:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8C:DC:00:EC:A5:90:22:BF:B8:0D:1F:BC:F0:53:7C:4E:F6:25:DB
X509v3 Authority Key Identifier:
keyid:FC:83:52:5D:14:2F:BF:4B:94:B3:D1:69:44:53:65:C6:6D:DF:DD:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_INSXRQvv0uUs9FpRFNlxm3f3f0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/854e86-51bb-458c-a014-6923a7e61a6b/1/IYzcAOylkCK_uA0fvPBTfE72Jds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/854e86-51bb-458c-a014-6923a7e61a6b/1/_INSXRQvv0uUs9FpRFNlxm3f3f0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.226.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:3a:88:4a:d3:cb:ae:1a:05:29:03:2c:2f:99:01:f8:44:4d:
94:c0:2f:bd:e2:6a:21:91:20:8e:e9:34:aa:ea:9f:3b:e5:4f:
b8:6d:44:97:19:1e:1a:e7:d8:bb:6e:9d:81:1a:95:e3:7f:cc:
2d:01:3f:46:7d:e8:33:ab:24:2d:a4:2e:53:73:d1:23:7d:43:
eb:a8:4b:b7:d7:ad:88:cb:c4:a4:ed:98:97:e5:e8:62:01:25:
54:d8:4a:1d:05:68:ca:66:85:0e:3a:e2:1d:ae:69:c6:36:14:
b5:88:37:3d:02:04:72:09:64:6c:0b:2e:ac:af:e0:2e:c2:28:
63:d7:fa:a4:25:6c:da:a3:51:98:33:2b:5a:e2:1a:b9:be:8c:
d4:b3:38:46:99:d2:2c:05:04:6d:a9:13:42:8f:18:53:9a:7e:
71:bf:81:27:98:20:63:68:0a:e8:d7:21:07:e4:d6:f7:0a:31:
6d:bf:8f:2b:66:0a:1d:b4:0b:a4:f6:09:8d:f6:9d:1c:0d:86:
f6:6b:a4:7c:99:da:1f:81:83:f5:83:24:31:f4:f3:80:d2:c2:
40:d1:97:2a:a6:12:c5:d1:bf:6f:c7:1b:5f:a5:d8:e8:e0:d1:
75:c6:74:14:9a:85:80:35:33:c6:7b:7b:99:50:be:50:32:b7:
1d:8d:0c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 12:01:28 2025 by rpki-client