Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/b993c7-fa8d-43c0-9374-1d31a1960147/1/GiahuR85krzHvZLqL7wXn8fG3dY.roa
File: GiahuR85krzHvZLqL7wXn8fG3dY.roa (raw, json)
Hash identifier: xlz++BGeaW3/dHUrbgS11KyArx8eTFbjzk7vKybipYU=
Subject key identifier: 1A:26:A1:B9:1F:39:92:BC:C7:BD:92:EA:2F:BC:17:9F:C7:C6:DD:D6
Certificate issuer: /CN=adbd8e99f827ff95d281d4ff7bc27f045fabf105
Certificate serial: 019302519591450C6C3829ECF2B771257C0E
Authority key identifier: AD:BD:8E:99:F8:27:FF:95:D2:81:D4:FF:7B:C2:7F:04:5F:AB:F1:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rb2Omfgn_5XSgdT_e8J_BF-r8QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/b993c7-fa8d-43c0-9374-1d31a1960147/1/GiahuR85krzHvZLqL7wXn8fG3dY.roa
Signing time: Wed 06 Nov 2024 16:32:01 +0000
ROA not before: Wed 06 Nov 2024 16:32:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214229
IP address blocks: 185.117.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:02:51:95:91:45:0c:6c:38:29:ec:f2:b7:71:25:7c:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adbd8e99f827ff95d281d4ff7bc27f045fabf105
Validity
Not Before: Nov 6 16:32:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a26a1b91f3992bcc7bd92ea2fbc179fc7c6ddd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:77:7c:4b:89:50:e1:d4:15:7c:ed:88:f5:c3:
96:8d:90:1c:17:0f:a4:5a:b0:f4:ef:33:b9:6a:7f:
18:ad:47:b3:f2:8b:0f:94:85:8e:30:8f:f0:17:60:
2e:31:b8:39:3f:4d:f1:38:e7:ad:bc:9d:67:6e:03:
fc:7d:ae:34:21:d9:84:72:c7:2c:a3:9d:7d:40:4c:
08:9d:80:8d:37:fc:b2:0c:a4:d0:65:c2:da:9f:c7:
6a:1a:c2:a3:50:46:ce:ac:12:a5:07:d9:7b:bf:77:
91:6b:49:4d:9b:ff:fd:c0:3d:9c:7a:31:76:21:93:
06:db:9c:c5:19:14:8d:08:bf:59:9f:a1:2a:86:df:
4e:e4:0a:06:11:2e:eb:18:aa:4f:e6:e6:6a:b7:3b:
09:24:7c:f1:f5:d9:b0:b0:3f:33:46:94:77:73:2d:
22:af:8f:08:3d:8d:3b:da:80:c2:e3:6c:cd:0b:cf:
d4:d9:c3:95:24:40:e2:a1:d0:0e:5e:13:0b:ea:20:
44:4b:7a:0c:7e:d3:41:eb:ce:3d:b0:2c:8c:af:19:
67:e3:a8:78:58:1c:21:2b:d1:13:4a:79:31:4e:28:
e9:4a:19:3b:b5:75:b5:1f:54:75:08:98:28:59:23:
80:99:21:63:90:21:af:c4:5d:9a:c9:2a:a6:41:d2:
05:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:26:A1:B9:1F:39:92:BC:C7:BD:92:EA:2F:BC:17:9F:C7:C6:DD:D6
X509v3 Authority Key Identifier:
keyid:AD:BD:8E:99:F8:27:FF:95:D2:81:D4:FF:7B:C2:7F:04:5F:AB:F1:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rb2Omfgn_5XSgdT_e8J_BF-r8QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/b993c7-fa8d-43c0-9374-1d31a1960147/1/GiahuR85krzHvZLqL7wXn8fG3dY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/b993c7-fa8d-43c0-9374-1d31a1960147/1/rb2Omfgn_5XSgdT_e8J_BF-r8QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.242.0/24
Signature Algorithm: sha256WithRSAEncryption
06:fe:f1:c1:ea:a4:b2:2e:ac:fc:2e:15:ea:d1:02:ed:65:6f:
01:bc:e9:12:7c:ea:a6:fe:88:cb:87:20:0d:0d:25:10:03:84:
b2:69:9c:6c:e9:c4:8e:7c:6c:02:3f:61:f9:71:c1:6c:f5:7a:
40:ed:ba:55:b7:af:0b:31:c6:3b:7a:e5:66:3e:c3:12:83:6d:
ac:26:be:07:e2:16:9b:a4:15:33:c5:a9:5b:50:84:c7:4b:19:
88:e7:b4:12:82:dc:68:29:c1:e0:9b:b7:46:5f:75:3e:fe:a5:
97:33:8c:dd:72:e0:3e:c0:72:b6:29:4e:ad:3f:53:82:13:bc:
24:40:d7:bd:80:a4:bc:33:58:c6:42:67:21:f4:45:14:99:19:
71:63:c3:dd:a6:61:13:56:31:21:d2:7f:52:04:cb:be:4e:d1:
ea:fe:f4:fe:5b:de:1a:94:e3:6a:25:08:46:9f:ce:fa:85:1a:
96:10:5a:6f:0d:46:77:13:37:4d:39:c2:3a:4e:6d:e8:a9:2b:
43:86:54:4d:f7:29:49:6e:fa:45:56:d5:f5:7a:70:af:32:f6:
bb:6f:f7:b6:dc:35:4f:5c:af:fa:aa:05:ca:6a:d5:fa:ae:7d:
3b:29:17:c9:50:28:9c:a4:3c:6e:a1:fd:ec:1f:1c:21:0f:1f:
6d:7f:2e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 14:01:21 2025 by rpki-client