Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/owO_Fpj7ES5g2k-xve4j0Jaaswg.roa
File: owO_Fpj7ES5g2k-xve4j0Jaaswg.roa (raw, json)
Hash identifier: oOb341g8oEofIVH7HHp1M+Dk7OmziBrYUGPCh0e6woE=
Subject key identifier: A3:03:BF:16:98:FB:11:2E:60:DA:4F:B1:BD:EE:23:D0:96:9A:B3:08
Certificate issuer: /CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Certificate serial: 018CC3490D524259912E5B9CABD40DBD0CB5
Authority key identifier: B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/owO_Fpj7ES5g2k-xve4j0Jaaswg.roa
Signing time: Mon 01 Jan 2024 04:29:53 +0000
ROA not before: Mon 01 Jan 2024 04:29:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202755
IP address blocks: 185.155.172.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:0d:52:42:59:91:2e:5b:9c:ab:d4:0d:bd:0c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Validity
Not Before: Jan 1 04:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a303bf1698fb112e60da4fb1bdee23d0969ab308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:92:95:df:40:d6:ef:0a:0e:e8:2d:87:25:ab:
07:53:72:10:3c:88:47:0e:20:fd:a7:12:e2:9e:c1:
16:bc:67:9d:42:0f:b4:0c:71:94:c0:db:e1:30:d6:
67:7a:e7:8d:e7:e3:f5:f4:21:e8:c4:74:88:a8:6d:
db:71:49:de:11:96:08:2c:69:dd:7d:0d:96:d7:55:
16:d9:1a:91:14:b6:5a:ee:fc:01:cc:92:bb:ca:6b:
47:8e:f8:40:77:75:35:f1:05:ea:8a:01:4e:87:26:
e8:3d:58:a6:20:2b:cc:97:72:bf:fb:ae:fd:69:60:
00:68:dc:af:5a:e9:82:d9:92:fb:f2:e2:d8:d2:75:
2a:4d:7a:14:2d:a3:c6:78:9f:4e:5e:0f:e8:05:99:
7f:9a:0a:82:99:c6:5e:fb:b0:e1:b3:93:50:8e:61:
8e:3c:cd:9d:3a:e1:ae:d1:1b:22:38:06:51:a3:16:
18:56:28:ce:07:e0:7e:66:ac:e0:17:3d:5e:f0:a1:
d2:86:60:1e:c3:6e:d6:82:09:06:95:6b:55:46:51:
e0:c1:3f:d3:d4:3a:5a:18:65:c3:54:20:70:48:1e:
65:75:83:51:72:b2:29:0c:e5:ad:30:f6:01:d8:e0:
9e:00:c7:74:f8:b6:57:b0:20:e3:8c:ae:84:1e:78:
b9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:03:BF:16:98:FB:11:2E:60:DA:4F:B1:BD:EE:23:D0:96:9A:B3:08
X509v3 Authority Key Identifier:
keyid:B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/owO_Fpj7ES5g2k-xve4j0Jaaswg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/s9XsFRbubcGdHlw5mMt-emRvcVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:93:82:cf:47:05:d8:2f:e7:66:ab:cb:a2:7e:cd:44:18:06:
72:7a:c7:b6:4e:b4:5d:a5:e4:17:5f:0e:44:c2:7b:bc:57:0e:
d3:49:55:7f:02:34:1a:92:13:6f:c8:51:7a:9b:f6:f2:54:a7:
dd:a9:ad:a8:f7:9d:70:ea:bf:70:55:ab:1a:17:6e:af:ee:ed:
ab:b3:44:7e:c9:e5:e9:76:bc:03:0b:8e:bc:7e:19:2e:e7:8d:
f0:d2:a4:0e:65:b7:7a:13:e6:db:5c:1f:c9:c5:02:23:56:59:
6f:36:56:4b:8a:e7:a5:0e:60:ac:1c:c3:0f:e5:55:31:cf:19:
4d:b2:34:65:fd:62:3a:2c:82:08:95:9c:ea:d9:3a:7f:6f:21:
25:49:8a:45:dd:bf:12:75:d7:52:3b:a2:b4:91:c4:d7:2d:57:
ae:3f:b8:4b:c0:3f:c2:0d:4c:23:f9:d7:91:4f:43:40:0e:1f:
b8:85:4e:a2:23:46:10:6d:f0:9b:90:ac:d4:0e:b1:ec:80:cf:
cd:42:c6:18:8f:d3:8c:63:bf:a1:a7:54:dd:11:5c:f4:13:64:
83:fe:89:72:ac:bf:30:9e:02:39:07:79:7c:2e:9d:85:fe:28:
8a:70:13:07:d0:fe:61:c4:77:b1:2e:5b:0c:d9:09:c8:ed:f8:
0b:af:5d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:54 2025 by rpki-client