Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/i12plN6GNePbs2AjK0knp-Uk5b4.roa
File: i12plN6GNePbs2AjK0knp-Uk5b4.roa (raw, json)
Hash identifier: 08L8tgPr5kLkoeXW6/tkvqV8BYKAdwQnS7ix9QWLWLQ=
Subject key identifier: 8B:5D:A9:94:DE:86:35:E3:DB:B3:60:23:2B:49:27:A7:E5:24:E5:BE
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 01940E897D1CB7FC1A70260B4146A37259D6
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/i12plN6GNePbs2AjK0knp-Uk5b4.roa
Signing time: Sat 28 Dec 2024 18:31:18 +0000
ROA not before: Sat 28 Dec 2024 18:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 185.169.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:0e:89:7d:1c:b7:fc:1a:70:26:0b:41:46:a3:72:59:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Dec 28 18:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b5da994de8635e3dbb360232b4927a7e524e5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f1:52:34:42:cf:06:12:8c:c7:a7:97:7a:67:
15:e5:20:a6:56:7e:82:d9:92:7a:f1:3d:85:12:52:
9a:ad:66:45:dc:9a:0d:2f:fb:f6:9f:8b:d8:92:fb:
a2:07:c5:7a:3b:43:42:32:6e:94:96:a6:fa:63:7b:
61:c3:a1:9e:e7:70:10:a2:80:c9:d7:0d:58:94:b9:
d3:a0:98:ed:b7:45:0f:d3:0c:96:0d:65:84:98:b5:
92:e0:e2:6e:aa:38:f9:8f:df:c3:45:93:73:93:c1:
49:99:67:14:90:48:0c:b2:b9:44:b6:5c:05:ac:d8:
e0:74:3a:b8:33:a3:6b:c9:78:ea:c8:eb:29:24:f5:
c3:65:d0:b3:07:95:52:f7:78:03:13:73:9e:d6:19:
5b:4b:58:94:60:2d:4a:c8:fa:a3:15:96:36:4d:b4:
74:9e:d6:8d:e9:1c:47:9c:97:02:4c:eb:9c:4e:4d:
90:b0:73:bb:fd:6b:89:59:4f:0d:b0:59:9e:4a:db:
28:ab:fb:90:cb:33:0b:28:ab:84:f3:b0:9b:9c:88:
e2:79:01:77:6b:28:42:b9:26:70:d7:9a:30:2c:7e:
3d:d2:7e:5e:92:8e:27:76:f5:3e:65:05:fe:5a:a7:
5d:55:69:d7:1a:b9:2e:e8:04:88:0d:04:bd:10:88:
91:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5D:A9:94:DE:86:35:E3:DB:B3:60:23:2B:49:27:A7:E5:24:E5:BE
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/i12plN6GNePbs2AjK0knp-Uk5b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.220.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:4c:f8:22:18:f9:ea:46:61:1f:a6:f8:e9:85:a6:96:1f:28:
f3:18:8b:53:3c:45:b4:4a:a3:33:cc:c8:4b:c3:6d:79:06:3e:
de:f1:ce:a9:ab:2b:48:ee:9d:29:36:6b:90:93:ec:5d:7b:61:
80:c4:74:67:40:bc:ed:48:cb:17:a2:0e:5b:c9:fd:c6:5a:31:
be:fd:c5:57:9a:65:67:50:ab:a4:34:b6:c8:f4:d0:70:3d:51:
8a:5e:0b:d9:bc:a1:c4:59:40:a5:b0:ac:9f:9a:8d:6d:30:9f:
ab:54:5e:69:4e:5d:2a:70:af:24:99:f2:ce:28:56:44:8b:61:
1c:eb:1f:38:54:83:ea:84:27:36:4d:7e:a5:db:b8:bf:71:19:
bb:83:8e:27:ec:50:08:c7:45:e7:b9:c5:10:df:7d:31:2a:a0:
72:5f:00:85:50:99:1c:39:2d:83:6f:ba:02:b5:07:f9:a4:a0:
1f:1e:fa:81:bd:bf:ad:01:54:0f:7b:37:67:2a:53:3c:4e:0d:
6b:60:8c:00:e5:af:8d:f1:b8:43:67:45:80:5c:7d:1f:68:d9:
d5:21:20:ce:99:ca:2c:a9:51:68:de:51:f3:44:14:86:07:a3:
09:9f:81:49:08:1b:26:f2:67:ca:34:f0:f9:e2:30:57:36:a3:
66:02:ae:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:10:26 2025 by rpki-client