Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/c253e3-4133-4a16-9061-b79cfc24d3b7/1/3qd4DmBRSQKY0Mr7v_1DW7bAYwM.roa
File: 3qd4DmBRSQKY0Mr7v_1DW7bAYwM.roa (raw, json)
Hash identifier: 3M5Ou/+VVBbBtkQd5B3l8Uc1PlKbAG4DvRXCm3tGngE=
Subject key identifier: DE:A7:78:0E:60:51:49:02:98:D0:CA:FB:BF:FD:43:5B:B6:C0:63:03
Certificate issuer: /CN=d6c269f9e93b0fb8bc4b1c947abc5b21f21f2305
Certificate serial: 018E2D64D0748D14E5BE3D30D0086A419018
Authority key identifier: D6:C2:69:F9:E9:3B:0F:B8:BC:4B:1C:94:7A:BC:5B:21:F2:1F:23:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1sJp-ek7D7i8SxyUerxbIfIfIwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/c253e3-4133-4a16-9061-b79cfc24d3b7/1/3qd4DmBRSQKY0Mr7v_1DW7bAYwM.roa
Signing time: Mon 11 Mar 2024 12:02:45 +0000
ROA not before: Mon 11 Mar 2024 12:02:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 185.149.156.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 15:07:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:64:d0:74:8d:14:e5:be:3d:30:d0:08:6a:41:90:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6c269f9e93b0fb8bc4b1c947abc5b21f21f2305
Validity
Not Before: Mar 11 12:02:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dea7780e6051490298d0cafbbffd435bb6c06303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b9:38:74:3c:ad:86:34:c9:cc:e6:a9:7f:a0:
3e:dd:ae:3d:c6:47:31:57:86:1e:15:ff:33:9a:04:
09:3a:97:41:95:f7:3b:5f:e4:00:d4:ad:1f:f9:61:
d0:f2:05:fd:83:ba:03:b6:88:8c:4a:15:fc:1b:ca:
fa:46:2b:9e:d3:c8:89:b2:d1:ac:20:4e:d4:98:b1:
3c:b2:62:79:b6:0d:84:85:21:df:a3:5a:fb:27:9b:
85:92:aa:c7:c4:97:17:0c:ae:dd:36:07:ba:01:8b:
ed:2c:78:47:16:5d:5a:72:51:cd:09:d0:39:26:22:
4c:87:f8:8c:de:40:55:0e:25:e2:e6:31:f0:81:77:
b0:a6:52:ac:b2:d7:ca:a8:e0:33:8e:fc:51:59:32:
f2:f5:d6:f8:c6:4a:71:3f:dd:6e:0f:bf:ae:44:5b:
7c:25:d5:f1:92:9c:31:b7:17:42:61:ed:92:a1:78:
04:10:4a:fe:d2:5f:ea:d7:2a:95:ca:56:6e:ea:c7:
27:8b:23:c8:6f:b6:34:88:83:ee:15:63:f7:89:c0:
0f:76:99:5a:19:88:70:d9:1a:47:6c:7d:c2:c4:ce:
b6:07:2b:20:41:ff:3d:cb:5d:b1:01:1e:60:30:6b:
59:d8:a5:ab:5f:01:d8:7a:57:7f:1a:ac:0d:c2:68:
08:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A7:78:0E:60:51:49:02:98:D0:CA:FB:BF:FD:43:5B:B6:C0:63:03
X509v3 Authority Key Identifier:
keyid:D6:C2:69:F9:E9:3B:0F:B8:BC:4B:1C:94:7A:BC:5B:21:F2:1F:23:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1sJp-ek7D7i8SxyUerxbIfIfIwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c253e3-4133-4a16-9061-b79cfc24d3b7/1/3qd4DmBRSQKY0Mr7v_1DW7bAYwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c253e3-4133-4a16-9061-b79cfc24d3b7/1/1sJp-ek7D7i8SxyUerxbIfIfIwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.156.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:55:77:93:1c:17:49:0c:dd:44:9f:18:1e:88:c7:9c:74:05:
0e:91:fa:63:d9:5b:67:5f:8b:73:9c:a3:db:59:f4:39:dd:9f:
b1:44:f3:20:7d:c0:7b:11:bf:6a:71:e2:8e:3d:6f:17:3a:c9:
33:8c:02:f9:f3:4f:2d:58:87:e9:27:fd:1b:57:01:0d:58:e7:
61:42:38:03:73:68:14:85:e9:85:f2:1d:f6:f9:76:cb:d5:02:
11:79:a0:40:77:b7:d4:03:cc:61:b3:4b:3c:36:44:c3:cd:df:
ab:57:ed:eb:cd:1d:66:83:a0:45:8f:bd:56:a3:4a:0b:39:80:
d0:f7:15:3b:63:39:5f:03:2d:fa:a3:44:73:c5:e9:c0:a6:9f:
17:04:98:32:47:c6:33:8f:6d:2c:ef:d6:bc:9d:bc:25:5a:7b:
66:56:b9:fd:76:50:1b:71:d2:3d:c6:0b:fb:7e:ae:eb:23:94:
71:0b:5e:45:96:c7:f4:77:90:50:e4:63:e2:83:81:58:77:fc:
41:b5:80:37:5f:e9:f6:c2:33:2d:12:71:06:77:18:45:94:e3:
ab:48:d2:6b:6e:1b:43:13:24:44:d2:a8:56:5e:93:a9:e9:2c:
56:9a:a0:c2:92:0a:50:e5:f5:62:ec:f9:b7:da:c3:31:b0:ef:
a7:8a:56:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:30 2025 by rpki-client