Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/20ee43-0462-4822-845f-9c76a4bdb523/1/texnL2gnMBqhRIJB3Asv2YkgH6c.roa
File: texnL2gnMBqhRIJB3Asv2YkgH6c.roa (raw, json)
Hash identifier: CGPyrZDOg7Ht01XXzUwXaoiJVMvSaCIVRje2rPQL6YM=
Subject key identifier: B5:EC:67:2F:68:27:30:1A:A1:44:82:41:DC:0B:2F:D9:89:20:1F:A7
Certificate issuer: /CN=8e7dc7f298bb774a726edc433cf6b03994148b54
Certificate serial: 018CC86F7C2BAE286F7C2B821CD385F1C616
Authority key identifier: 8E:7D:C7:F2:98:BB:77:4A:72:6E:DC:43:3C:F6:B0:39:94:14:8B:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jn3H8pi7d0pybtxDPPawOZQUi1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/20ee43-0462-4822-845f-9c76a4bdb523/1/texnL2gnMBqhRIJB3Asv2YkgH6c.roa
Signing time: Tue 02 Jan 2024 04:29:58 +0000
ROA not before: Tue 02 Jan 2024 04:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206294
IP address blocks: 145.22.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:7c:2b:ae:28:6f:7c:2b:82:1c:d3:85:f1:c6:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e7dc7f298bb774a726edc433cf6b03994148b54
Validity
Not Before: Jan 2 04:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5ec672f6827301aa1448241dc0b2fd989201fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:38:a6:64:17:4f:ba:8a:d9:10:01:78:92:e6:
3b:1a:6a:79:12:df:c0:b5:48:b8:79:50:67:0b:2b:
41:18:96:63:d0:03:49:a0:d0:38:f8:ac:69:77:f5:
94:49:f9:c1:25:dc:43:cd:ab:4e:ee:f8:6c:6e:be:
89:13:75:34:22:0b:60:5c:df:3a:fb:e7:c4:5f:6f:
46:88:ff:35:55:f6:aa:3c:a4:3f:a0:6b:2a:9d:ea:
fd:c4:36:14:a8:f9:d3:b4:08:c8:c1:d7:d8:d1:81:
7b:1e:84:3d:e3:97:55:e9:3b:d6:ca:98:dc:8d:18:
a7:48:bf:88:03:cf:90:34:a0:ca:06:a7:b2:77:f1:
2a:e3:6b:71:de:da:d5:3b:e8:72:17:23:5e:8b:f8:
9b:8b:dd:d4:d8:a1:c7:ed:a8:1f:bc:b4:85:b4:53:
23:fa:d4:fd:9c:97:92:96:4e:db:6e:13:50:66:04:
b3:77:08:cb:a0:bf:1c:fc:9d:4d:5c:fd:ff:d7:c7:
9b:3a:db:e2:62:5d:fd:ab:55:77:75:71:89:78:10:
1f:d4:ef:09:b8:96:3d:ac:d4:a8:19:fc:cf:24:d7:
f8:b1:b2:be:90:03:61:2a:74:13:59:1c:52:83:2f:
34:a8:f2:be:eb:79:86:0b:88:8d:c0:d9:3d:06:01:
43:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EC:67:2F:68:27:30:1A:A1:44:82:41:DC:0B:2F:D9:89:20:1F:A7
X509v3 Authority Key Identifier:
keyid:8E:7D:C7:F2:98:BB:77:4A:72:6E:DC:43:3C:F6:B0:39:94:14:8B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jn3H8pi7d0pybtxDPPawOZQUi1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/20ee43-0462-4822-845f-9c76a4bdb523/1/texnL2gnMBqhRIJB3Asv2YkgH6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/20ee43-0462-4822-845f-9c76a4bdb523/1/jn3H8pi7d0pybtxDPPawOZQUi1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.22.254.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e1:71:45:9a:45:f7:a6:37:68:59:38:81:05:1a:7a:b6:57:
0e:39:99:15:b1:bf:76:60:b3:84:40:b2:e6:d1:92:02:bd:d8:
cd:60:54:dc:74:e0:25:50:6c:23:c9:77:68:1e:f5:79:6a:98:
c6:42:fc:71:3f:e2:72:63:f0:04:33:28:1c:7e:7b:56:89:76:
52:eb:38:11:be:77:67:18:b3:33:f6:87:31:05:1b:23:f1:12:
66:67:60:55:24:64:34:33:61:88:22:96:92:88:56:39:38:5f:
ab:b1:24:b2:1b:2c:4d:ba:8f:90:bc:ed:6a:00:da:2d:d2:15:
6f:72:c4:8e:28:82:fe:58:eb:2a:c8:e6:b6:d8:3d:82:35:6a:
8e:b5:4a:16:fe:17:98:05:ab:04:73:56:d8:ed:b4:ad:62:8f:
40:2c:3c:20:da:82:88:c6:5e:62:f7:73:5d:43:8e:ca:ee:4b:
0b:f0:c9:c0:1a:70:8d:67:b4:2a:f2:24:77:b9:94:e9:fe:50:
67:10:0c:c8:ef:ea:4a:df:06:60:4b:f5:9f:aa:7e:f1:ce:eb:
5a:41:c0:d5:8a:d1:0e:0a:cf:f3:a9:c0:f0:e1:53:76:8a:e8:
00:24:48:94:35:54:60:d4:a6:a4:ec:77:01:71:08:07:53:14:
d5:03:9c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:34:22 2025 by rpki-client