Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/eCr1QAjDqibS5g-_1T1rGcJx7oU.roa
File: eCr1QAjDqibS5g-_1T1rGcJx7oU.roa (raw, json)
Hash identifier: SF3N4lnKxoQD+DUfmVtZmtEcp7TJHq5DFEKBOkdOqZM=
Subject key identifier: 78:2A:F5:40:08:C3:AA:26:D2:E6:0F:BF:D5:3D:6B:19:C2:71:EE:85
Certificate issuer: /CN=fcde8ca3e2ce52bbcce53c4a2926d3c9c410c04b
Certificate serial: 018DACC66D9B20734970D570507EC0AE40AC
Authority key identifier: FC:DE:8C:A3:E2:CE:52:BB:CC:E5:3C:4A:29:26:D3:C9:C4:10:C0:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_N6Mo-LOUrvM5TxKKSbTycQQwEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/eCr1QAjDqibS5g-_1T1rGcJx7oU.roa
Signing time: Thu 15 Feb 2024 12:38:21 +0000
ROA not before: Thu 15 Feb 2024 12:38:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206782
IP address blocks: 185.176.148.0/22 maxlen: 22
2a0a:1980::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 13 May 2024 11:21:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ac:c6:6d:9b:20:73:49:70:d5:70:50:7e:c0:ae:40:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcde8ca3e2ce52bbcce53c4a2926d3c9c410c04b
Validity
Not Before: Feb 15 12:38:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=782af54008c3aa26d2e60fbfd53d6b19c271ee85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:e0:0b:46:85:ab:6d:19:68:d0:79:31:86:
85:e1:34:c6:49:19:19:8a:5d:fe:ba:96:00:c4:25:
ba:1f:04:63:9d:c7:e9:45:34:2d:04:31:98:52:33:
5d:e0:19:74:03:98:fc:55:cc:dc:32:b8:8c:6a:a6:
b7:f5:5b:ca:0a:04:8b:cd:11:42:ae:6d:5f:30:2d:
7c:fe:f0:86:ee:1a:8b:16:d6:f1:7a:df:b4:82:36:
2c:81:84:fc:71:75:b5:69:07:08:00:82:34:e7:d3:
89:02:16:6f:72:05:72:f1:95:d8:df:dd:e5:a9:7a:
c8:ca:cb:90:93:44:4c:62:14:ec:bd:ce:68:1e:38:
16:0d:aa:53:48:a8:17:36:ef:2f:dd:04:5b:c5:3e:
d3:2a:ed:d3:66:d3:5a:44:83:87:41:11:1c:0d:eb:
08:d9:01:09:ec:92:d6:a2:f4:95:47:a2:55:dc:73:
c2:a7:44:2a:85:fa:16:84:02:59:d7:cd:81:99:95:
01:13:a2:43:a0:71:92:3c:2a:fa:e2:25:09:56:c8:
f0:de:3a:46:3b:63:13:17:f0:92:2a:6e:be:a8:c0:
72:99:95:2c:4d:8c:b4:18:b3:f1:8b:e7:d9:ff:9d:
dc:a3:d2:35:eb:89:91:dd:1b:eb:50:80:56:d8:21:
2f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2A:F5:40:08:C3:AA:26:D2:E6:0F:BF:D5:3D:6B:19:C2:71:EE:85
X509v3 Authority Key Identifier:
keyid:FC:DE:8C:A3:E2:CE:52:BB:CC:E5:3C:4A:29:26:D3:C9:C4:10:C0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_N6Mo-LOUrvM5TxKKSbTycQQwEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/eCr1QAjDqibS5g-_1T1rGcJx7oU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/_N6Mo-LOUrvM5TxKKSbTycQQwEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.148.0/22
IPv6:
2a0a:1980::/29
Signature Algorithm: sha256WithRSAEncryption
13:97:df:e7:3a:5f:ff:5e:6b:d0:75:dd:c7:fb:36:60:22:6a:
fd:8a:8b:a5:3a:ef:b3:7b:0e:41:98:7a:1d:92:0c:7b:6c:a9:
9c:da:83:d7:ef:ef:27:9d:ca:43:35:4a:18:03:0e:c5:38:6a:
37:9e:a1:1a:74:e7:58:38:f0:8c:8d:46:f0:9f:e0:dd:91:11:
69:84:1f:02:ef:10:22:0f:ae:85:40:40:3a:60:6b:8f:7b:c3:
8c:56:f1:06:72:e9:4b:18:f9:44:4a:35:bf:50:f5:12:96:42:
9c:19:0f:1d:02:be:5c:bf:aa:98:4d:0c:fb:38:67:58:e5:c6:
c3:21:8b:00:ef:42:bb:91:4a:c1:94:02:81:9a:f2:2d:84:e9:
97:62:f8:5a:b5:bb:68:78:2e:77:04:83:46:a8:df:cf:78:25:
f7:c4:fc:b2:09:9a:23:a5:85:0c:69:fe:0b:c0:69:7d:2e:2a:
44:f0:b6:de:4c:cb:93:b9:3e:9f:1c:25:4e:e8:01:48:40:81:
74:0b:4e:5e:34:3c:40:65:ae:40:31:fc:6a:d2:61:38:0f:9a:
5d:4f:2f:d4:10:2b:69:3b:1e:d6:9a:be:d8:1c:34:a8:c9:a2:
d6:8c:e5:8b:f8:ac:90:7a:44:0a:ec:b4:11:26:3b:5a:c1:01:
ca:b2:e1:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:39 2025 by rpki-client