Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/c54214-52d5-46dc-9939-c1402d261432/1/bF9prDB8pytc6geG9nQnPnEmaNw.roa
File: bF9prDB8pytc6geG9nQnPnEmaNw.roa (raw, json)
Hash identifier: e52JAtW0dHCApX+f0QYNiKoUiR1bCJ7KTlNVeOBKaFI=
Subject key identifier: 6C:5F:69:AC:30:7C:A7:2B:5C:EA:07:86:F6:74:27:3E:71:26:68:DC
Certificate issuer: /CN=1a885c37e747bce23ee9097e5ff7e983bcba0db4
Certificate serial: 018CC86F385795902CF36F85EF53936EB625
Authority key identifier: 1A:88:5C:37:E7:47:BC:E2:3E:E9:09:7E:5F:F7:E9:83:BC:BA:0D:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GohcN-dHvOI-6Ql-X_fpg7y6DbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/c54214-52d5-46dc-9939-c1402d261432/1/bF9prDB8pytc6geG9nQnPnEmaNw.roa
Signing time: Tue 02 Jan 2024 04:29:41 +0000
ROA not before: Tue 02 Jan 2024 04:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210162
IP address blocks: 194.180.44.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 23 Feb 2024 15:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:38:57:95:90:2c:f3:6f:85:ef:53:93:6e:b6:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a885c37e747bce23ee9097e5ff7e983bcba0db4
Validity
Not Before: Jan 2 04:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c5f69ac307ca72b5cea0786f674273e712668dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:de:5a:fc:ea:c7:c3:54:1d:a9:8a:aa:56:60:
ce:58:59:07:c5:6f:4b:0e:bf:43:6e:0c:2b:bc:bf:
92:a2:27:39:c6:70:3d:37:13:47:41:07:a3:b1:32:
f9:3b:b0:42:5b:29:bf:13:62:51:83:b6:c2:37:ab:
e4:98:e4:74:f1:b3:83:43:5f:e6:35:67:2c:5d:a0:
69:f3:e8:37:e4:20:30:c2:fb:82:70:67:96:e2:89:
bf:3b:7f:9d:4d:d7:c5:ee:e2:8f:61:ee:6b:6c:b3:
71:18:a0:cb:b0:31:6a:15:e8:83:63:f6:2e:ff:a3:
fa:c9:29:50:32:f9:34:1b:b7:71:67:ab:aa:79:a3:
15:99:23:5e:3f:b6:be:40:c1:67:03:b6:81:d5:64:
47:ba:19:52:4c:bb:8b:7d:56:4f:65:4c:7d:b0:df:
b2:5a:e3:79:f0:27:ff:92:68:49:f5:22:49:91:48:
4d:fa:46:48:8d:95:a0:a3:35:0f:86:4f:fe:7e:f6:
fa:50:33:ec:08:78:c7:d9:8a:43:c0:d3:a3:ca:0d:
82:cd:ac:b4:04:c9:27:49:dc:63:c9:f8:89:29:eb:
ab:d5:33:b8:fa:eb:6e:82:45:20:aa:8e:f9:6a:b4:
87:96:ed:7c:31:63:2e:cc:62:ab:f5:0a:b7:5c:17:
80:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5F:69:AC:30:7C:A7:2B:5C:EA:07:86:F6:74:27:3E:71:26:68:DC
X509v3 Authority Key Identifier:
keyid:1A:88:5C:37:E7:47:BC:E2:3E:E9:09:7E:5F:F7:E9:83:BC:BA:0D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GohcN-dHvOI-6Ql-X_fpg7y6DbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c54214-52d5-46dc-9939-c1402d261432/1/bF9prDB8pytc6geG9nQnPnEmaNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c54214-52d5-46dc-9939-c1402d261432/1/GohcN-dHvOI-6Ql-X_fpg7y6DbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.44.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:a7:c4:bd:b5:ae:98:bf:d4:c0:19:09:a1:5f:89:dc:4e:0f:
e5:0b:5b:88:b8:ca:1d:1a:87:5d:75:e9:c9:ea:04:1b:9c:6f:
94:26:fa:07:d3:51:5c:cc:a5:c1:fa:60:29:dd:07:36:3c:df:
5a:59:c0:8d:14:0d:17:a8:ee:2f:9e:f6:e7:fc:df:92:56:21:
06:fc:79:31:28:f9:f1:12:94:d6:87:a0:72:da:f4:c7:07:87:
57:ba:1a:44:88:3b:ae:c8:12:84:cd:1a:cb:aa:2e:66:00:fc:
86:31:9a:74:5c:c6:5f:5d:5d:93:bd:4c:4e:5e:fc:67:71:27:
ee:a6:7f:8c:d3:46:9d:71:d2:a6:46:21:05:99:db:4c:60:b5:
fa:13:18:e2:80:05:19:56:81:40:3a:c4:d3:45:8d:33:aa:c2:
17:fc:e7:54:8c:f2:99:6c:a7:96:11:f6:df:97:ed:6c:ca:1c:
0e:65:f5:92:6d:6d:1d:71:45:c6:2d:f3:29:1a:31:14:ba:00:
8f:3f:e5:7c:d2:83:c1:23:1c:72:f5:bd:99:75:e9:46:2b:48:
92:cb:99:d5:70:67:4a:5f:0f:04:29:35:16:3f:de:c2:1e:9d:
84:7a:9b:ac:d1:21:c0:85:fe:6a:a1:34:ae:73:73:af:ba:47:
8f:ec:a9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:50:22 2025 by rpki-client