Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/HfQ0qhqFY0kBpqOx3MPTbhrdxDs.roa
File: HfQ0qhqFY0kBpqOx3MPTbhrdxDs.roa (raw, json)
Hash identifier: Fau3SJenGMLAJCwCpXfpHD89T/il17WbB+oQt4tFP8c=
Subject key identifier: 1D:F4:34:AA:1A:85:63:49:01:A6:A3:B1:DC:C3:D3:6E:1A:DD:C4:3B
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0193BACAA4915D5827962BDED2AA3C1B2D0A
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/HfQ0qhqFY0kBpqOx3MPTbhrdxDs.roa
Signing time: Thu 12 Dec 2024 12:14:22 +0000
ROA not before: Thu 12 Dec 2024 12:14:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213722
IP address blocks: 185.254.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ba:ca:a4:91:5d:58:27:96:2b:de:d2:aa:3c:1b:2d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Dec 12 12:14:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1df434aa1a85634901a6a3b1dcc3d36e1addc43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:56:d6:79:33:f2:a5:4b:3e:42:71:4b:de:9e:
35:38:77:6b:7a:b8:dc:98:b8:1f:20:7f:d9:f0:33:
58:7b:93:a9:03:20:fb:91:dc:5a:79:ca:1e:b1:13:
3d:bf:62:47:5f:96:20:dc:09:bd:ee:ba:e9:18:d2:
d3:f6:27:d0:35:d3:f9:8f:b2:b3:71:96:53:2c:b5:
52:67:9b:56:bc:b3:f2:88:70:a6:ee:9c:c4:cf:b2:
ef:40:3a:8c:a5:c4:bd:1f:3c:74:88:39:9d:48:42:
bc:d3:82:95:a2:6d:76:5e:c9:a7:f8:39:88:af:4d:
ad:3e:57:69:a1:a1:69:0b:a0:50:a0:98:ac:e9:18:
29:36:4e:48:43:14:46:76:7a:e0:6f:60:08:29:3a:
f5:96:7a:55:49:63:93:80:fa:58:12:d3:ff:b8:9e:
8e:3c:7a:3e:2f:fd:2e:90:6a:d0:3b:2f:28:8c:26:
92:12:fd:23:9c:0b:c5:f3:32:a7:d1:4b:66:c2:0b:
06:cb:3f:8b:b0:73:2f:32:95:c2:37:97:e5:a4:34:
6b:e3:10:ac:a7:c8:1b:b1:b7:cd:af:8a:f5:5b:d8:
ed:19:45:ea:c3:ab:6c:a7:53:bd:a1:f7:20:1b:7a:
67:49:c8:82:8e:52:bc:66:e6:8f:25:f7:ef:76:5e:
e6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F4:34:AA:1A:85:63:49:01:A6:A3:B1:DC:C3:D3:6E:1A:DD:C4:3B
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/HfQ0qhqFY0kBpqOx3MPTbhrdxDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.30.0/24
Signature Algorithm: sha256WithRSAEncryption
46:96:3e:42:74:3c:43:df:ec:51:00:ad:c5:90:e5:41:5e:bf:
9d:d1:15:da:16:10:26:30:73:ba:d0:e2:2e:e0:1c:b7:03:07:
89:82:37:96:cf:69:0a:29:ee:60:bb:27:d9:0a:05:49:61:c6:
61:df:6c:ff:97:c1:a0:b6:50:b2:95:79:32:d8:31:97:e1:c6:
bf:48:43:cb:a0:3c:76:f8:67:e2:7b:eb:b5:3c:b8:f1:27:38:
48:b4:04:59:7d:5e:70:70:fb:0a:51:d8:58:37:1d:48:47:29:
a8:5f:2c:43:29:fe:71:a8:ea:4b:63:b1:00:28:e8:1e:9f:52:
67:fb:eb:7d:6e:1b:d3:ee:2f:94:f2:38:e6:32:e2:6f:ab:ee:
bf:84:dc:d5:25:73:42:22:2a:4b:38:76:78:76:5d:9d:7f:ba:
b5:6f:68:31:06:53:18:00:bd:9f:ef:5c:67:9e:ad:a7:76:da:
74:79:c9:5d:67:ad:81:8f:f3:97:d2:32:7c:cd:68:17:1d:66:
36:bd:02:b1:c5:5c:ba:75:40:c8:6b:8f:76:55:2d:7d:73:38:
1f:93:2e:d4:4b:b0:e4:1d:5f:3b:f5:d4:d7:3a:13:c7:8c:0d:
f2:4b:58:33:fc:6a:82:97:bb:83:38:c5:5f:ed:09:40:f5:02:
ad:04:83:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:04:26 2025 by rpki-client