Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/6OHRPgeifclR-sQC4fugv8s_Vdk.roa
File: 6OHRPgeifclR-sQC4fugv8s_Vdk.roa (raw, json)
Hash identifier: 9ms/24GOH/dvkFj05SjI9iuZc0orkOzTTkOJ0godVy4=
Subject key identifier: E8:E1:D1:3E:07:A2:7D:C9:51:FA:C4:02:E1:FB:A0:BF:CB:3F:55:D9
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 0194222022AC7845FDA1CF3FCE10D58E6446
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/6OHRPgeifclR-sQC4fugv8s_Vdk.roa
Signing time: Wed 01 Jan 2025 13:48:38 +0000
ROA not before: Wed 01 Jan 2025 13:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31727
IP address blocks: 185.207.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Feb 2025 19:55:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:22:ac:78:45:fd:a1:cf:3f:ce:10:d5:8e:64:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Jan 1 13:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e8e1d13e07a27dc951fac402e1fba0bfcb3f55d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:31:12:21:8f:0d:2d:5a:e4:66:2e:03:d5:82:
0f:6b:05:45:c3:4f:cd:33:3a:34:a9:df:d5:46:e2:
e9:b9:1f:70:8b:c1:ba:1c:69:5b:1a:30:dc:88:39:
a2:eb:9c:f9:c4:33:37:05:4e:62:80:94:ba:22:fb:
e9:81:76:31:12:89:0f:a9:5b:52:89:e8:f9:72:94:
e6:2b:a4:9c:00:44:43:0a:28:21:8c:6a:47:66:96:
b3:aa:61:47:9d:01:4f:e3:93:b3:67:b3:9c:a6:b2:
b9:78:be:60:35:fa:dd:1c:ad:49:3a:72:c0:65:bf:
67:2d:83:36:46:24:12:da:30:3d:b9:22:dc:20:9c:
bc:b3:b0:22:ce:35:ae:73:81:11:46:76:4b:2b:6f:
a0:07:26:09:5e:3d:0d:31:84:30:1a:eb:ab:4e:b5:
39:36:5b:2a:12:ac:67:88:aa:1b:b1:3c:6e:a8:5a:
a4:32:3c:e4:67:69:22:b0:2a:74:89:88:a9:1f:c6:
15:39:ee:3e:1e:95:c3:be:f0:66:1b:11:a0:42:32:
a1:37:9e:b9:cc:f4:07:63:a6:13:fa:5d:c5:5e:9a:
1d:a1:ab:20:ee:92:a5:f1:c8:bb:f0:7e:76:22:7c:
e5:4f:69:4d:60:44:9f:e4:fc:3c:f4:f5:27:f6:90:
f0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E1:D1:3E:07:A2:7D:C9:51:FA:C4:02:E1:FB:A0:BF:CB:3F:55:D9
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/6OHRPgeifclR-sQC4fugv8s_Vdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.134.0/24
Signature Algorithm: sha256WithRSAEncryption
50:0b:5d:c1:1b:8a:58:9a:f7:c6:f9:ac:34:51:33:d0:72:7b:
d7:48:32:3a:fc:b5:c0:a8:a3:47:6d:79:5d:20:17:72:ea:2d:
28:51:50:04:67:06:64:90:e4:95:67:7e:74:cc:fb:0c:8f:6c:
23:68:02:a0:33:04:36:39:92:df:4d:b8:0f:1d:eb:bd:22:8a:
84:3a:bc:0d:3d:d1:ae:7e:cc:7e:1b:85:90:79:12:03:91:1a:
18:08:5f:06:17:50:90:4f:a1:a5:50:ef:d2:15:e0:d3:da:61:
02:41:49:4f:31:d3:ff:01:90:10:be:05:50:4f:fb:0a:6e:a2:
19:29:76:b7:5b:4b:6a:cc:d4:6a:a0:50:38:40:8a:87:2e:da:
19:f0:8c:9f:27:a3:9a:2e:cb:bd:84:e7:d3:68:2b:fc:6b:77:
87:fd:36:45:39:3d:3a:28:8e:f6:1c:4e:63:a4:dc:ca:f2:e9:
f3:b2:db:02:db:97:bc:61:14:b4:aa:e8:f9:f0:15:c2:57:89:
76:fe:41:e4:35:a1:ef:82:5f:b5:10:1a:86:4c:cb:2e:e5:79:
57:7e:d3:b5:62:e7:30:38:11:ec:0b:1e:62:bf:2f:96:3c:a0:
88:6c:44:b2:30:8c:a9:82:a6:58:34:2a:a6:65:e3:89:bb:83:
d6:aa:bf:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:58:31 2025 by rpki-client