Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/uhyuYlecdjFTFV-LKrD0k5rFH40.roa
File: uhyuYlecdjFTFV-LKrD0k5rFH40.roa (raw, json)
Hash identifier: byYUbfyGx0QCIESXId4BIjiPi5D+O1ZA60YDEDVlZrk=
Subject key identifier: BA:1C:AE:62:57:9C:76:31:53:15:5F:8B:2A:B0:F4:93:9A:C5:1F:8D
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 0194266BB5F9EE0F662EBDEB9CFE959D1ECD
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/uhyuYlecdjFTFV-LKrD0k5rFH40.roa
Signing time: Thu 02 Jan 2025 09:49:40 +0000
ROA not before: Thu 02 Jan 2025 09:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208492
IP address blocks: 185.54.94.0/24 maxlen: 25
2a00:8640:b000::/36 maxlen: 48
Validation: Failed, certificate revoked on Sun 05 Jan 2025 19:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:b5:f9:ee:0f:66:2e:bd:eb:9c:fe:95:9d:1e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Jan 2 09:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba1cae62579c763153155f8b2ab0f4939ac51f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ee:3d:44:1b:02:df:df:5e:20:4a:ac:80:ff:
a4:01:c5:03:bf:c9:7f:72:97:e5:6f:93:0f:58:93:
e7:8f:48:54:63:12:89:8b:19:6f:e5:fd:46:dd:e2:
a5:77:c1:82:dd:35:44:59:21:0a:12:75:02:ff:a1:
e2:56:93:85:8f:43:83:b3:79:59:db:91:49:76:c5:
bf:78:f3:4e:87:09:4c:b5:2e:7c:dc:7c:ee:a3:14:
33:7c:b2:47:77:28:5c:9e:37:6e:a4:ff:9e:0f:c2:
6b:6a:63:62:d4:84:d6:15:21:57:2b:c5:47:20:4d:
62:70:6c:9f:9e:79:19:da:81:dc:1d:c4:44:ee:34:
8b:13:49:f8:7e:67:83:25:2e:0e:32:c0:d3:ec:68:
80:a7:fa:4b:0a:10:0a:5a:8a:47:90:91:3a:d1:d4:
7f:ca:e7:ac:78:dd:b4:44:6b:b0:7b:bc:a1:97:de:
9a:18:40:38:07:ea:d3:d0:05:ae:62:9e:07:04:4f:
b7:12:26:cf:a6:c0:66:08:6a:6c:2c:06:4a:81:d1:
52:d8:38:7f:8b:b3:db:dd:9d:d4:ca:ab:b5:5f:99:
b9:b0:e8:9f:c5:92:29:d5:d7:6c:47:6b:0f:54:08:
e4:65:43:fb:9a:83:d1:ee:fb:16:b4:1a:df:12:1f:
a9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1C:AE:62:57:9C:76:31:53:15:5F:8B:2A:B0:F4:93:9A:C5:1F:8D
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/uhyuYlecdjFTFV-LKrD0k5rFH40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.94.0/24
IPv6:
2a00:8640:b000::/36
Signature Algorithm: sha256WithRSAEncryption
a2:fb:78:05:60:c3:01:ef:4e:33:ce:da:cb:ee:46:07:56:4b:
91:1b:40:14:57:1d:19:79:95:a3:cb:d0:51:3d:4c:ee:fa:59:
40:b2:da:8d:2e:0e:04:76:24:71:16:4d:a2:bc:56:68:57:03:
f8:22:26:16:e8:01:b5:2d:e8:36:9b:6c:0b:c4:40:1d:cc:b3:
7a:26:3d:c7:05:65:d0:7d:9a:79:e7:77:bd:7c:ac:52:13:b4:
6b:21:07:31:d1:55:31:37:53:c1:15:7f:4d:4d:0d:f0:6f:5c:
3b:b0:68:7d:e6:95:5e:f4:30:72:2b:25:92:ef:04:91:7b:70:
e9:c2:84:92:e9:31:6b:e5:3a:56:67:b3:6f:17:a7:35:8f:ba:
63:e3:34:9d:ed:3e:f7:1b:b7:73:55:01:9e:87:8f:25:d5:ff:
a5:bf:a7:5f:3f:53:ba:75:9b:f6:e7:30:5c:39:1c:90:26:61:
d5:cf:c6:78:20:1e:2d:0f:08:e1:ee:ac:0f:95:77:2d:4d:30:
f1:79:63:92:ce:b4:f9:be:95:19:be:cb:4c:e4:b1:13:56:0d:
be:04:eb:c7:a1:0e:26:a9:1a:90:23:0f:3a:7a:6c:f8:02:0e:
e7:7c:a6:d6:9d:d5:0b:5c:ae:4f:70:7a:64:58:12:f6:74:c7:
6b:38:b4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:23:41 2025 by rpki-client