Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dff2c6-d87c-4d65-a256-1c8225d407b5/1/pM1VIszzUgeuzBrcPm4ecsNOtGM.roa
File: pM1VIszzUgeuzBrcPm4ecsNOtGM.roa (raw, json)
Hash identifier: tYdSM1Sd5XsaRZXK3Me9pnkmYknpxI+z6j+UMM5fUFc=
Subject key identifier: A4:CD:55:22:CC:F3:52:07:AE:CC:1A:DC:3E:6E:1E:72:C3:4E:B4:63
Certificate issuer: /CN=18ca6de1a48a4e8c5b8af1eae9b5e80bfcf92c45
Certificate serial: 0192543080316784C882680ABEBEA04A6874
Authority key identifier: 18:CA:6D:E1:A4:8A:4E:8C:5B:8A:F1:EA:E9:B5:E8:0B:FC:F9:2C:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GMpt4aSKToxbivHq6bXoC_z5LEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dff2c6-d87c-4d65-a256-1c8225d407b5/1/pM1VIszzUgeuzBrcPm4ecsNOtGM.roa
Signing time: Thu 03 Oct 2024 21:01:57 +0000
ROA not before: Thu 03 Oct 2024 21:01:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207388
IP address blocks: 185.115.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:54:30:80:31:67:84:c8:82:68:0a:be:be:a0:4a:68:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18ca6de1a48a4e8c5b8af1eae9b5e80bfcf92c45
Validity
Not Before: Oct 3 21:01:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4cd5522ccf35207aecc1adc3e6e1e72c34eb463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:88:8a:dd:08:51:27:71:7b:60:5e:7c:e3:3a:
40:3d:06:4e:d0:af:cb:b2:c8:3c:56:b9:34:2f:98:
24:94:38:18:a0:2b:4e:e4:48:15:fc:5a:f3:14:c3:
0d:29:80:19:4c:1f:f1:fd:c7:ae:73:a0:0b:78:4b:
b0:c2:38:d6:a7:18:bb:5a:d4:05:1f:03:e5:a3:49:
89:8e:84:6b:ad:8c:bc:05:f0:6c:ce:1f:3f:d3:93:
a9:d7:99:ea:1e:1d:14:65:75:0d:3a:e9:5f:12:7c:
f1:04:4d:8a:7b:b1:94:97:cf:f8:39:11:32:1a:89:
8c:e3:d6:57:82:1c:cd:95:a5:b3:ce:e3:03:ec:53:
ee:74:39:9a:4b:2e:10:d0:09:4d:cb:f6:0c:41:1b:
a8:69:cd:76:0d:7b:cc:7a:88:67:27:24:20:b8:7a:
41:f8:72:cd:b8:b0:8c:32:6d:8c:a4:c1:b5:82:72:
91:1f:22:ef:19:00:b3:a5:31:cd:08:f5:9f:9a:39:
42:37:e2:5d:19:bf:4b:d2:b7:f3:a2:c6:1d:38:0c:
7d:d5:a4:39:ff:ad:75:e4:17:be:48:77:b4:4d:62:
ee:3b:f0:c3:9c:ab:21:0a:ff:c4:d8:6a:fc:f1:16:
5c:a4:ab:ea:a5:51:85:8c:5d:2a:7a:8f:18:43:1b:
a6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CD:55:22:CC:F3:52:07:AE:CC:1A:DC:3E:6E:1E:72:C3:4E:B4:63
X509v3 Authority Key Identifier:
keyid:18:CA:6D:E1:A4:8A:4E:8C:5B:8A:F1:EA:E9:B5:E8:0B:FC:F9:2C:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GMpt4aSKToxbivHq6bXoC_z5LEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dff2c6-d87c-4d65-a256-1c8225d407b5/1/pM1VIszzUgeuzBrcPm4ecsNOtGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dff2c6-d87c-4d65-a256-1c8225d407b5/1/GMpt4aSKToxbivHq6bXoC_z5LEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.163.0/24
Signature Algorithm: sha256WithRSAEncryption
54:dc:db:9c:a6:5f:64:b5:d5:04:8f:0c:c6:56:32:88:8b:a3:
31:bf:0c:5d:d6:d5:b1:e2:25:8d:cd:e2:07:a2:15:e5:6c:a6:
3c:66:1e:c4:03:11:ed:c2:63:61:5f:02:9c:59:33:3c:98:74:
9c:29:82:d1:c8:42:71:af:24:bf:32:ef:63:4f:ec:44:ca:fb:
6b:69:30:50:28:e4:d0:8d:1b:c8:16:ce:32:5e:95:65:71:a1:
5d:8a:1a:bf:68:bd:22:bb:8d:35:ea:a0:d5:89:8b:38:05:02:
31:4a:95:76:6e:d3:3f:bb:fb:6a:cf:71:d4:21:ec:a0:6b:99:
72:21:74:ee:87:de:60:73:b3:37:f5:0e:e1:15:fe:7e:4e:ab:
01:c9:31:9a:a8:d8:7b:27:78:cd:68:31:54:fc:17:96:ee:55:
c5:c4:f1:16:c5:43:50:f6:d1:93:57:60:b5:5d:74:60:cc:a8:
9c:ef:9b:a4:99:2a:a9:c2:19:78:44:64:bb:f8:5d:2e:5c:da:
17:59:00:d6:85:8e:13:47:4c:3a:7c:bf:01:78:fd:99:ad:f9:
90:ce:e2:23:cb:24:c0:7b:59:77:ee:1a:80:c8:75:17:9e:f4:
c6:eb:0a:58:f7:93:84:19:70:7f:5a:5f:fb:8f:cd:9d:48:10:
67:4c:07:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:46:31 2025 by rpki-client