Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/4Hyo-A_MthDv0vr7wxsiYUnBhVY.roa
File: 4Hyo-A_MthDv0vr7wxsiYUnBhVY.roa (raw, json)
Hash identifier: za3w+/3dpIJC5YhGssdr6Rqxm8HFLp1+9wCruM8MnuI=
Subject key identifier: E0:7C:A8:F8:0F:CC:B6:10:EF:D2:FA:FB:C3:1B:22:61:49:C1:85:56
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 0191A9608D27D3ACE5186192BBC48C610EF3
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/4Hyo-A_MthDv0vr7wxsiYUnBhVY.roa
Signing time: Sat 31 Aug 2024 16:59:22 +0000
ROA not before: Sat 31 Aug 2024 16:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199239
IP address blocks: 185.100.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 15:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a9:60:8d:27:d3:ac:e5:18:61:92:bb:c4:8c:61:0e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Aug 31 16:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e07ca8f80fccb610efd2fafbc31b226149c18556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cc:c9:c5:f6:10:da:24:06:50:94:95:69:05:
30:74:6a:3c:cb:0e:0d:c2:ec:7b:b5:3c:c5:88:b1:
e7:2c:d7:24:1a:40:0d:09:a1:06:95:8f:64:b9:30:
d8:e0:38:f8:36:12:e2:64:a1:cc:57:13:de:67:96:
28:66:05:5c:46:a3:3d:82:df:45:f4:6e:e9:30:61:
2f:63:41:11:82:66:4c:b5:b0:25:70:5c:70:fb:1b:
4d:fa:9d:67:5d:6c:58:e2:15:77:78:d5:bd:51:5f:
9e:03:6c:bd:85:2a:81:aa:1d:b0:fb:25:80:5d:8d:
2e:19:88:8b:9e:15:a3:20:b0:11:bb:53:67:f5:35:
e8:b4:a7:8b:76:fa:12:96:8c:40:cc:11:a3:77:98:
68:8b:2e:11:37:53:12:d1:4e:fb:a9:b9:f0:d5:2d:
b1:4e:f9:d7:c0:df:0d:a7:23:09:88:a5:bc:09:c5:
a7:c9:9a:d9:ac:6e:e5:6a:dc:da:04:4b:c1:a1:b7:
20:59:76:e7:bd:77:4e:71:b9:76:b0:a3:d5:eb:65:
b9:28:31:ae:57:a5:00:4f:02:ec:de:d8:c2:09:87:
13:12:24:f4:1e:86:ef:c3:a8:0a:f8:70:30:80:9d:
cf:57:a4:de:ae:e5:17:90:e2:e2:53:9a:d8:82:ab:
58:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:7C:A8:F8:0F:CC:B6:10:EF:D2:FA:FB:C3:1B:22:61:49:C1:85:56
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/4Hyo-A_MthDv0vr7wxsiYUnBhVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.171.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:41:13:12:d2:fb:7e:85:bc:ee:44:aa:b2:0a:6b:8e:51:00:
db:56:17:d6:e6:f5:4a:82:35:37:23:0a:99:16:6c:38:2c:10:
a4:be:11:b7:cc:63:9e:ea:b4:47:11:3a:50:89:35:a3:3a:7f:
7e:06:a6:11:00:47:d5:52:37:cf:f0:71:11:9f:3f:f4:31:f9:
8e:6b:4f:c3:c9:2e:bb:b5:16:09:34:74:15:59:1b:b7:10:68:
0b:f5:df:d7:57:2f:46:ad:40:1c:b8:86:e1:d1:22:e8:6b:c5:
42:8a:67:d4:5b:4f:ed:f6:26:ae:ec:a7:9a:40:9b:0f:16:5a:
a0:e2:d9:f8:b2:be:63:8c:0e:49:fb:a8:a5:5b:2a:a3:0b:20:
d7:4e:1e:31:56:eb:b0:53:87:28:50:28:2b:f8:9f:50:65:e7:
4c:58:05:98:f4:7a:34:b6:53:f0:96:26:3a:32:35:70:8e:12:
f6:f4:ba:81:af:8b:46:af:a6:74:56:43:d5:74:ef:44:e9:cc:
6d:c7:59:f1:f5:0b:f2:76:0b:43:e2:38:ec:43:88:52:07:12:
32:78:61:2c:50:5a:3e:10:12:71:9a:9b:df:05:b5:9f:3f:83:
43:b7:38:c7:47:54:3b:d9:0b:fa:4d:bf:10:6a:18:b6:5a:1e:
75:a7:95:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:18:29 2025 by rpki-client