Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/dSig4eqTWOk4UN59OlNBOkPVCTY.roa
File: dSig4eqTWOk4UN59OlNBOkPVCTY.roa (raw, json)
Hash identifier: gEHItfeQ48woI4z5i6ZXiH1tqm51N2mXTVnHc0CYbPE=
Subject key identifier: 75:28:A0:E1:EA:93:58:E9:38:50:DE:7D:3A:53:41:3A:43:D5:09:36
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 018D51207CAB48AC2C2410E59CBC9DB4785C
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/dSig4eqTWOk4UN59OlNBOkPVCTY.roa
Signing time: Sun 28 Jan 2024 17:31:39 +0000
ROA not before: Sun 28 Jan 2024 17:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57974
IP address blocks: 185.169.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 11:13:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:51:20:7c:ab:48:ac:2c:24:10:e5:9c:bc:9d:b4:78:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Jan 28 17:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7528a0e1ea9358e93850de7d3a53413a43d50936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0f:b9:c1:70:9d:c1:21:0e:7e:c6:8d:28:cc:
e3:91:f6:ce:c8:db:81:6b:87:30:bf:5f:a8:bf:0c:
84:c8:0b:90:29:9d:9e:fc:d3:0a:8c:d6:b0:a0:38:
cf:68:19:cd:99:d2:cd:43:5a:e7:aa:44:1c:86:37:
1b:59:2c:37:ac:b9:b5:e1:cb:fc:3d:c9:bb:88:9c:
4f:2a:28:08:ea:7e:69:f5:0b:50:d8:94:02:07:4a:
77:ec:7d:77:52:a9:09:e6:37:a0:2c:f2:85:0d:05:
c8:13:9a:7c:6e:f3:a3:f3:8b:0b:05:28:96:ee:81:
ce:c3:95:a5:c5:9a:ab:62:a7:df:9a:6e:ce:6d:8a:
39:91:4f:0f:cc:4e:96:7f:0b:99:00:f8:5e:f3:13:
c8:63:25:72:76:77:28:06:5a:71:8f:ec:ea:ce:6e:
22:21:69:54:89:66:eb:60:a9:11:9d:08:fd:1f:16:
f7:7a:59:12:55:b8:9f:ed:83:d9:5e:f6:ab:59:2b:
64:c8:8e:59:22:be:37:c6:23:8e:de:a8:da:56:5f:
9f:62:5b:3c:7d:4c:a1:4a:26:36:ed:63:fc:d6:43:
c8:a4:1e:de:3f:28:2c:39:25:d1:e5:a2:78:1b:0a:
14:d1:42:e8:00:ae:09:8c:11:cf:32:8d:3d:dd:05:
e1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:28:A0:E1:EA:93:58:E9:38:50:DE:7D:3A:53:41:3A:43:D5:09:36
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/dSig4eqTWOk4UN59OlNBOkPVCTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.220.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:0c:89:75:ef:53:a7:37:85:e6:83:dc:1f:0a:d2:a3:cf:93:
91:8a:66:3c:02:cb:49:9c:92:d3:37:ff:42:88:7a:6f:29:e3:
e5:e7:55:66:5a:e8:62:4c:8e:6d:22:8e:24:a7:15:49:c0:99:
e2:11:19:80:1c:f1:4f:f8:ea:8e:ac:b8:c8:c9:86:7d:04:8a:
ef:0b:80:97:db:7e:3b:a9:f8:8f:50:b8:34:15:ca:b9:66:d3:
15:d6:33:6f:85:56:d7:3a:dd:e3:ee:15:64:e8:83:d7:94:16:
97:ad:bc:26:fb:fe:29:b5:5b:52:b8:63:c7:93:58:44:c8:04:
c1:46:1c:59:fc:27:0f:45:24:61:54:46:e6:9f:e4:30:1f:1b:
e0:10:2f:28:5f:c5:2a:ef:05:ec:53:16:90:61:d5:c4:15:d6:
dd:51:12:f6:6b:b4:a9:c2:58:65:36:a5:54:e1:90:61:de:05:
29:af:9e:55:05:9c:14:ab:ea:6b:1a:0c:a4:fa:1a:47:5d:75:
49:3e:75:b6:f8:22:f8:cc:e7:02:bb:ab:bb:ab:71:be:3d:6d:
66:d6:dc:cb:f9:6b:67:bf:07:5d:4c:7b:91:2d:d9:71:07:5a:
b6:87:26:6d:1a:3a:20:89:5e:03:e2:62:93:57:25:26:b6:09:
c4:4a:1f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 14:15:17 2025 by rpki-client