Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/svsv0WAm_j_kmIPAQnjWZFvObwM.roa
File: svsv0WAm_j_kmIPAQnjWZFvObwM.roa (raw, json)
Hash identifier: LXHrpHR0G3gOKpMjbHJfrgltzjBrLYpyZ/lqjImH4ZE=
Subject key identifier: B2:FB:2F:D1:60:26:FE:3F:E4:98:83:C0:42:78:D6:64:5B:CE:6F:03
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 01942747EE36D0861F1FB7849AE1C40D6665
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/svsv0WAm_j_kmIPAQnjWZFvObwM.roa
Signing time: Thu 02 Jan 2025 13:50:12 +0000
ROA not before: Thu 02 Jan 2025 13:50:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7117502
IP address blocks: 185.210.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Jan 2025 06:13:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:ee:36:d0:86:1f:1f:b7:84:9a:e1:c4:0d:66:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Jan 2 13:50:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2fb2fd16026fe3fe49883c04278d6645bce6f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:21:a0:cc:07:50:f7:a4:19:63:e1:3c:cc:
a9:cb:fd:ca:65:55:5b:42:cc:86:89:ed:f6:52:71:
c2:c6:b1:f2:15:ad:75:74:40:03:6d:6c:d1:d0:3e:
01:4b:21:64:99:a0:c2:1b:7e:3d:64:54:98:c7:c1:
be:ad:fc:1a:94:0a:90:f7:55:5e:8e:9b:e8:36:92:
21:3e:53:55:80:a7:cc:fb:e9:6b:1a:bb:da:b6:63:
8b:ef:26:ff:88:ce:c9:fc:96:de:00:7b:9b:c1:77:
67:8c:54:2c:20:83:1b:9a:fc:0b:8c:f7:ca:73:0c:
e7:08:3a:9f:b0:e1:1a:46:73:a0:f5:7d:92:10:38:
48:a7:11:1a:4c:d5:50:34:a5:ba:dd:4f:75:55:75:
04:48:a9:08:78:56:69:b0:31:c9:57:de:d2:75:29:
cf:3a:07:c9:34:82:7d:01:a6:af:e6:86:65:3c:73:
76:21:e6:67:bd:bc:bd:4b:9a:6b:7b:88:3e:a5:07:
e2:b6:88:28:43:e6:06:c2:b1:01:c1:9b:99:ba:40:
53:5e:27:85:b9:c7:19:fe:8d:cb:f1:4c:6d:9e:26:
db:fe:b6:72:c7:1b:df:cf:71:9b:83:73:33:9f:8c:
65:e7:85:e5:02:ba:65:f9:ba:d0:ea:6f:e4:39:b0:
e6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FB:2F:D1:60:26:FE:3F:E4:98:83:C0:42:78:D6:64:5B:CE:6F:03
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/svsv0WAm_j_kmIPAQnjWZFvObwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.157.0/24
Signature Algorithm: sha256WithRSAEncryption
27:ee:52:2e:3f:f2:c7:45:b2:cc:2b:bc:66:d7:72:34:a1:a6:
b5:e3:ac:c9:5c:dd:82:d4:e7:c2:8b:d3:a8:0a:8d:24:00:00:
5a:79:17:1f:32:7f:e8:6a:c0:96:6a:97:05:eb:26:0d:19:64:
92:7f:da:a1:a4:53:fb:18:62:f9:30:92:93:0a:97:0b:2b:6e:
86:62:19:40:bd:f4:d0:62:b7:2c:93:e7:10:9e:54:88:d5:e1:
8f:b3:5b:4c:f8:cb:af:b9:4f:a9:fb:9e:fb:06:a1:32:7b:46:
f3:6e:b9:2f:ca:5d:43:bb:cc:40:1a:3c:3a:df:f0:e2:79:41:
a3:3d:e7:42:c2:ac:51:01:af:af:3b:8b:4a:57:d6:fa:ea:78:
7d:33:60:68:4f:b2:d1:6d:4d:f7:10:64:50:90:05:64:44:6d:
e8:a6:44:39:1d:1e:a8:46:4a:0c:82:79:20:8a:0d:af:6e:ff:
7d:2b:5c:54:57:10:10:b0:53:e6:cf:fd:2e:ef:01:19:82:15:
46:79:d5:06:d5:c2:0b:17:4f:57:2a:00:d7:b3:73:d9:80:f4:
fd:57:a8:f3:7d:41:16:92:94:45:e7:39:e6:79:57:d5:4f:72:
5f:c8:14:3d:04:ff:f2:88:cd:53:60:ff:5e:4a:75:12:ec:14:
bd:e9:0c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:30:09 2025 by rpki-client