Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/7UEMH8pQDLpf9X0tea6CQ84mGhY.roa
File: 7UEMH8pQDLpf9X0tea6CQ84mGhY.roa (raw, json)
Hash identifier: JFF00jHiayruEJTk5t36tVqHRjCbVuCpPdyAbW6Q7PQ=
Subject key identifier: ED:41:0C:1F:CA:50:0C:BA:5F:F5:7D:2D:79:AE:82:43:CE:26:1A:16
Certificate issuer: /CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Certificate serial: 018CC4251D71A80C8E9CE6917F8362682C40
Authority key identifier: 4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/7UEMH8pQDLpf9X0tea6CQ84mGhY.roa
Signing time: Mon 01 Jan 2024 08:30:15 +0000
ROA not before: Mon 01 Jan 2024 08:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197248
IP address blocks: 185.130.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:1d:71:a8:0c:8e:9c:e6:91:7f:83:62:68:2c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Validity
Not Before: Jan 1 08:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed410c1fca500cba5ff57d2d79ae8243ce261a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:84:1a:14:78:ea:a8:cd:af:f3:b0:e3:90:aa:
e0:35:6a:9a:95:6f:cd:04:98:5d:fe:52:34:82:35:
01:8d:82:af:9d:8b:45:48:0c:ef:5c:e3:d7:20:d9:
fb:59:b5:a9:13:2e:d9:64:97:08:1d:0d:45:2b:69:
bf:18:fc:9c:c6:8f:19:97:5e:03:a1:7d:b9:43:bc:
36:22:52:5d:29:bf:61:44:7b:75:24:1e:10:0b:5f:
6e:b3:7f:6f:2c:c8:88:58:27:fb:e2:da:90:da:b5:
05:a4:3f:6c:63:df:3d:fb:dc:a3:c1:f7:51:e4:67:
c9:41:0e:c0:87:9d:81:1b:7b:b6:1a:bb:8f:5f:18:
8e:86:6b:85:d2:96:0f:a4:90:35:c3:3c:d0:8c:ba:
5f:c8:8a:3e:fe:e1:e7:78:06:75:46:01:a4:8e:d2:
30:8b:fc:0a:c9:db:8e:95:30:7c:f8:2c:47:a7:c6:
c5:c7:85:db:51:9d:36:e0:9b:f2:25:0b:55:83:c5:
7a:a2:07:eb:a0:1f:21:1e:45:99:65:80:80:43:09:
87:e9:d2:dc:20:fe:8e:21:a9:53:ac:d7:b3:7a:e8:
88:1b:1d:05:02:0d:dc:65:b4:d3:e6:60:20:ea:f0:
b6:ac:54:cb:24:15:eb:12:ee:51:31:62:a5:2e:54:
57:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:41:0C:1F:CA:50:0C:BA:5F:F5:7D:2D:79:AE:82:43:CE:26:1A:16
X509v3 Authority Key Identifier:
keyid:4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/7UEMH8pQDLpf9X0tea6CQ84mGhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.193.0/24
Signature Algorithm: sha256WithRSAEncryption
17:b4:58:ba:4f:85:c3:50:4d:fe:9c:57:1f:93:4c:68:09:12:
1f:64:22:58:e7:72:40:66:75:a3:46:c4:02:67:63:42:27:ef:
6a:9a:a8:ff:6b:67:63:48:aa:29:66:b9:87:45:d6:a5:73:7e:
0f:bd:ad:b2:8a:c0:8f:ac:c8:e9:c6:e0:7d:7e:53:72:d5:ea:
8f:dc:9e:c6:7d:cf:d3:57:36:84:2f:e8:b8:54:1e:78:ac:4c:
83:27:46:1e:1a:fc:18:00:d0:d7:92:ed:ec:50:72:0e:3e:30:
d5:f2:e3:4e:43:27:d6:65:ea:3c:f5:59:74:3d:fa:ee:54:8d:
c0:67:80:16:44:30:3b:3c:3c:98:f4:66:59:72:50:d4:98:fa:
78:f9:fb:ec:3c:9b:bc:b0:b8:a3:ae:19:07:17:43:16:ba:15:
3b:cb:a0:99:2a:f9:52:9e:91:52:a8:86:55:0e:f4:b7:18:18:
9e:66:50:29:93:d9:27:17:00:3a:30:0d:07:60:16:eb:29:69:
61:07:2b:87:fc:1f:54:b1:a9:fc:de:4a:da:06:1c:b6:8a:23:
70:a3:3a:61:c2:95:b3:eb:91:7d:15:58:03:c4:7e:d0:e0:f9:
92:f5:c1:1d:8b:b6:a5:f6:1d:e2:93:4c:2e:6a:12:10:d2:fe:
18:16:57:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:10 2025 by rpki-client