Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/OdRlvRThVqtUOPnrWUbN0Sw5suc.roa
File: OdRlvRThVqtUOPnrWUbN0Sw5suc.roa (raw, json)
Hash identifier: 4qkGZCeCgWuQLgHUssa1QmwENMJDvAamh4TvwhwvfME=
Subject key identifier: 39:D4:65:BD:14:E1:56:AB:54:38:F9:EB:59:46:CD:D1:2C:39:B2:E7
Certificate issuer: /CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Certificate serial: 018CC34916173846A46A273786640DA0A19D
Authority key identifier: 0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/OdRlvRThVqtUOPnrWUbN0Sw5suc.roa
Signing time: Mon 01 Jan 2024 04:29:56 +0000
ROA not before: Mon 01 Jan 2024 04:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9002
IP address blocks: 185.212.88.0/23 maxlen: 23
185.212.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:16:17:38:46:a4:6a:27:37:86:64:0d:a0:a1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a77196340d2144b8ca7b0778984bb04bc1cb378
Validity
Not Before: Jan 1 04:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39d465bd14e156ab5438f9eb5946cdd12c39b2e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c5:3b:46:cf:c8:99:b6:ab:b8:f6:f7:c3:0e:
de:63:b7:b7:24:26:57:3d:3d:f8:a0:0e:0f:56:77:
4e:a7:a6:79:44:95:68:41:26:70:40:f2:16:0f:27:
21:17:0c:c7:2a:be:41:0b:ce:08:f6:71:4d:5e:0d:
3c:4a:d0:98:d8:93:d5:5e:7d:62:2d:9c:c6:d8:2a:
37:fe:bd:14:08:a9:84:84:d4:92:58:af:20:f8:7b:
b9:86:0c:49:2b:42:55:a5:e2:76:b7:bb:5f:03:10:
63:c4:ab:66:04:b8:5a:d6:fa:f1:f6:59:42:76:6b:
d5:09:77:82:c4:c8:1d:db:e3:68:df:a1:1f:fd:89:
94:15:73:e2:ec:81:d7:fb:aa:27:6d:49:cb:a8:82:
af:b1:5e:4a:10:8a:11:f3:80:c6:bd:cd:a1:2e:42:
07:02:0f:a4:6a:e1:42:12:49:52:92:26:84:88:5a:
2f:fc:ec:f1:16:39:93:92:43:e5:04:4e:99:16:bd:
04:34:11:e1:aa:eb:9e:96:8c:ee:6c:61:24:ad:5b:
40:d8:81:cb:f9:08:f0:c6:7e:5c:7d:8a:d7:e8:d4:
db:86:1c:08:3b:f7:96:88:ad:d0:45:e7:f8:cd:a2:
8c:3d:10:74:f1:ab:4a:b2:2e:3b:b0:b2:bb:25:84:
75:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D4:65:BD:14:E1:56:AB:54:38:F9:EB:59:46:CD:D1:2C:39:B2:E7
X509v3 Authority Key Identifier:
keyid:0A:77:19:63:40:D2:14:4B:8C:A7:B0:77:89:84:BB:04:BC:1C:B3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CncZY0DSFEuMp7B3iYS7BLwcs3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/OdRlvRThVqtUOPnrWUbN0Sw5suc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4989ba-9af3-4e3d-845d-eb977164a7e4/1/CncZY0DSFEuMp7B3iYS7BLwcs3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.88.0-185.212.90.255
Signature Algorithm: sha256WithRSAEncryption
29:69:e1:07:9b:5b:fa:cb:2f:88:eb:12:ac:ca:1c:f1:29:0e:
db:6a:ce:a4:88:d3:16:ce:ca:15:8f:7f:e7:f1:1a:c5:d1:41:
3f:d2:8d:e9:65:7a:02:1f:06:b5:c6:e8:64:43:a4:b1:52:b3:
9a:16:60:58:d5:72:6a:a6:2c:cb:18:20:a6:9d:d8:2d:9a:46:
49:1d:e2:b0:f0:cc:d8:92:cc:2c:3c:2f:d6:26:ce:64:9f:b2:
fc:7a:16:b5:c8:9e:4e:53:20:31:e5:06:49:cb:c6:a4:9b:08:
42:ba:a6:85:fa:57:0b:68:84:57:12:33:51:bb:91:d2:79:b6:
34:2e:09:da:5d:e4:6d:d8:5f:f1:fc:d3:7d:91:49:43:32:26:
0c:05:a9:81:58:e0:c0:d3:aa:f4:cf:59:11:0d:5e:aa:ff:69:
b7:06:83:a4:6e:e1:4f:e6:f6:bf:ed:c7:e7:78:26:19:ed:da:
e0:ce:99:66:55:e5:38:43:6e:49:5f:37:0a:8c:43:bb:61:99:
bf:cf:85:8c:0b:4d:f5:3b:d2:b9:2c:7a:8a:d3:e1:7d:1a:af:
1b:e6:33:eb:e2:a8:f9:89:bf:a3:45:bd:5c:93:ca:51:75:25:
bb:50:7f:a8:0c:f3:bb:98:c1:58:b0:74:df:a4:48:38:c5:d9:
f6:22:76:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:57 2025 by rpki-client