Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/G_wq0Pvxcb3tjlz1FXU7IQ7TU8Y.roa
File: G_wq0Pvxcb3tjlz1FXU7IQ7TU8Y.roa (raw, json)
Hash identifier: w5kbxHoTzOV4ov+AOPbSss2NIBdV2vnI9JYrMUcieT4=
Subject key identifier: 1B:FC:2A:D0:FB:F1:71:BD:ED:8E:5C:F5:15:75:3B:21:0E:D3:53:C6
Certificate issuer: /CN=a757f87f86e93b25ef4c0433664bbe72da98fbfe
Certificate serial: 01907869CF091604800446B404EC88526EC4
Authority key identifier: A7:57:F8:7F:86:E9:3B:25:EF:4C:04:33:66:4B:BE:72:DA:98:FB:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p1f4f4bpOyXvTAQzZku-ctqY-_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/G_wq0Pvxcb3tjlz1FXU7IQ7TU8Y.roa
Signing time: Wed 03 Jul 2024 11:45:18 +0000
ROA not before: Wed 03 Jul 2024 11:45:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24806
IP address blocks: 81.2.192.0/18 maxlen: 32
185.28.100.0/22 maxlen: 32
185.129.136.0/22 maxlen: 32
195.181.208.0/20 maxlen: 32
2001:15e8::/32 maxlen: 127
Validation: Failed, certificate revoked on Thu 04 Jul 2024 10:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:78:69:cf:09:16:04:80:04:46:b4:04:ec:88:52:6e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a757f87f86e93b25ef4c0433664bbe72da98fbfe
Validity
Not Before: Jul 3 11:45:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1bfc2ad0fbf171bded8e5cf515753b210ed353c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:76:3e:d3:4b:54:bd:4f:7c:4d:c6:5c:ac:7e:
2f:e7:f9:8e:7c:39:88:c9:ec:7a:59:4b:f0:8c:0d:
c9:ae:53:89:a1:4f:80:49:ec:18:69:14:4e:fc:a9:
7a:3c:45:bc:1f:79:be:d2:04:08:af:71:44:37:d7:
f9:59:ac:c4:85:e7:d2:e1:50:4c:b1:51:4e:1b:68:
bb:a1:9f:49:16:78:8b:52:38:b5:03:8e:2d:3b:bd:
94:e9:af:19:fb:98:b6:0e:c5:34:35:c1:84:92:92:
35:69:7b:65:0d:49:70:39:fa:b0:8b:5a:7e:53:3d:
f6:72:6f:57:12:59:13:60:0a:07:e8:67:2b:9d:7a:
55:8f:52:fb:db:bb:88:11:f7:80:1e:59:cd:0f:39:
1d:d5:17:89:a3:9c:83:88:5d:35:72:de:01:70:cd:
42:6e:c3:d8:3f:19:da:b8:bc:56:69:22:a1:6a:c1:
1f:02:48:b7:49:e4:8e:a6:6e:e6:6d:8a:7f:78:42:
82:53:1b:4e:1b:6d:a8:eb:ec:12:9a:67:cd:e9:f7:
54:8d:43:c9:d3:9a:07:f5:2b:37:45:f7:c0:9e:15:
8b:59:da:37:4e:19:99:2a:15:f7:dc:71:4c:3f:bc:
ab:8b:35:4a:fe:b5:d9:03:17:57:99:dd:ba:66:47:
7c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:FC:2A:D0:FB:F1:71:BD:ED:8E:5C:F5:15:75:3B:21:0E:D3:53:C6
X509v3 Authority Key Identifier:
keyid:A7:57:F8:7F:86:E9:3B:25:EF:4C:04:33:66:4B:BE:72:DA:98:FB:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p1f4f4bpOyXvTAQzZku-ctqY-_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/G_wq0Pvxcb3tjlz1FXU7IQ7TU8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/p1f4f4bpOyXvTAQzZku-ctqY-_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.2.192.0/18
185.28.100.0/22
185.129.136.0/22
195.181.208.0/20
IPv6:
2001:15e8::/32
Signature Algorithm: sha256WithRSAEncryption
6f:45:21:b1:bd:11:1d:d7:4c:aa:ab:e8:a6:00:72:16:16:64:
18:4b:86:f1:30:f3:bf:37:40:63:0d:cb:cb:be:4e:da:f2:6a:
0b:00:9d:85:31:68:10:9c:58:6e:e5:5c:44:a2:32:c7:92:e9:
d6:5f:65:ac:96:51:10:9d:f3:07:57:f9:07:d9:80:fd:46:1b:
72:48:e2:13:94:f2:f7:5a:a1:f0:e5:83:97:c0:de:c0:91:a6:
8e:3f:f0:86:10:57:c9:5d:39:59:34:06:79:c5:76:99:85:ab:
57:8d:96:1c:2e:6c:37:0e:7f:d6:59:ca:61:85:ca:35:07:d7:
03:ad:6d:da:94:b0:59:13:50:41:2d:3a:a7:b7:ca:a5:a6:39:
60:3b:2e:95:75:ba:1b:a8:13:ab:99:17:05:22:f5:48:54:10:
78:c9:39:a1:d1:7d:42:61:3f:5c:ae:67:8f:19:cf:a6:0e:18:
b1:d4:26:39:39:78:06:fe:c6:70:0a:a5:fd:b1:0c:11:39:63:
41:e3:60:b3:51:60:aa:8c:5d:49:96:fa:21:3d:65:6c:56:01:
fa:35:de:c0:15:a0:6b:a3:ea:66:ef:dc:3b:d5:84:0a:89:9d:
43:c6:22:af:ed:89:0f:bc:c6:1e:94:db:ea:c9:7f:4d:c8:46:
c0:bc:15:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:36 2025 by rpki-client