Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/V3Qi788ejutzr4j5NmPkzkNmTqc.roa
File: V3Qi788ejutzr4j5NmPkzkNmTqc.roa (raw, json)
Hash identifier: n2vy3i7oa655Okja1N2E0HnsgzsRogNW/QcYKmOcyDo=
Subject key identifier: 57:74:22:EF:CF:1E:8E:EB:73:AF:88:F9:36:63:E4:CE:43:66:4E:A7
Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Certificate serial: 018CC64AA45960A9ABE108E2DE8706D96E5F
Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/V3Qi788ejutzr4j5NmPkzkNmTqc.roa
Signing time: Mon 01 Jan 2024 18:30:29 +0000
ROA not before: Mon 01 Jan 2024 18:30:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19527
IP address blocks: 66.22.229.0/24 maxlen: 24
66.22.228.0/24 maxlen: 24
66.22.228.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 07:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:a4:59:60:a9:ab:e1:08:e2:de:87:06:d9:6e:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Validity
Not Before: Jan 1 18:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=577422efcf1e8eeb73af88f93663e4ce43664ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b4:57:1b:6a:9e:42:68:e5:79:fb:50:cd:f0:
2c:8b:05:63:d8:bb:ad:1d:26:fb:25:f4:83:2a:1b:
ed:ad:0d:53:56:35:af:80:5a:9c:94:b6:bb:8e:d7:
20:7e:8a:2f:52:5c:a0:6f:77:cc:fc:03:6f:e2:bc:
da:d2:61:92:56:f1:dc:b4:eb:e6:8a:ce:99:22:63:
a9:95:f7:de:62:bf:35:0d:3d:76:98:10:20:5a:d3:
c3:ba:ca:20:5a:61:b9:78:cd:4f:0f:37:f9:10:fe:
91:eb:80:5b:3b:8d:ae:e4:2b:6e:65:18:91:36:4f:
fb:a8:da:17:34:f0:b8:34:6d:63:fc:a8:34:c4:23:
a0:64:a0:6a:4f:68:c2:c1:f7:1c:3a:27:32:b2:5f:
eb:7f:91:5b:fb:92:00:84:a8:b0:32:a6:a5:fd:40:
28:74:8c:c5:22:81:4d:f4:77:81:0f:6a:70:cb:cf:
6a:56:10:4d:4b:2a:c5:cf:f4:a9:5b:d0:7d:4a:7f:
f9:c7:f2:a3:5d:61:73:19:36:4d:13:4f:46:ea:ad:
98:30:c7:de:88:47:e7:4f:ee:8f:8e:d9:76:15:6c:
a3:3b:8f:65:50:e2:be:8e:74:e5:0c:a5:48:20:fb:
16:d6:5a:75:3c:ab:a0:d0:79:67:33:02:94:4d:30:
f7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:74:22:EF:CF:1E:8E:EB:73:AF:88:F9:36:63:E4:CE:43:66:4E:A7
X509v3 Authority Key Identifier:
keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/V3Qi788ejutzr4j5NmPkzkNmTqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.22.228.0/23
Signature Algorithm: sha256WithRSAEncryption
62:d5:72:e2:96:bd:42:4b:51:8e:5c:e2:27:6d:0e:d7:c3:d5:
a3:d1:61:45:0b:ef:f3:e0:bf:10:4b:99:79:80:da:dd:4f:9c:
a8:7e:92:93:15:a6:e8:b0:39:25:48:2f:1a:b7:d6:58:5f:53:
6b:44:9d:b7:fb:a4:10:1e:d2:6d:de:7e:a1:73:10:aa:b2:1c:
43:8e:0d:af:42:1c:3c:bd:a1:4e:3c:9b:1c:a7:3e:78:f1:95:
f3:07:d0:d0:bc:68:ae:9f:99:0d:8b:ee:2c:91:a8:d1:75:a4:
2f:12:49:d9:64:5b:d6:38:3d:85:be:21:5c:83:48:a4:9b:0c:
40:90:b5:47:4e:1e:17:f0:b8:28:8e:34:16:5b:c0:04:96:de:
7c:3a:35:c0:0b:ba:96:56:df:1d:90:4a:7f:f0:8c:81:79:a2:
fc:a1:98:63:91:d5:37:de:eb:d3:52:35:cc:5a:8f:67:24:d5:
0f:30:6a:07:a4:c6:d4:af:a2:c7:f9:8a:40:9a:4d:c6:63:c3:
48:97:69:85:d0:17:3c:d9:31:a9:a9:a9:00:95:ed:0f:31:95:
d5:bd:68:f8:33:de:22:b9:c5:5b:58:96:b0:2e:84:49:95:07:
29:51:f5:3c:9a:ad:30:1c:07:ef:6c:94:42:3a:37:ea:91:13:
55:09:1d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:14 2025 by rpki-client