Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3cFKDAQfTe0dJeknD_2xXx5Mzjk.roa
File: 3cFKDAQfTe0dJeknD_2xXx5Mzjk.roa (raw, json)
Hash identifier: IrLtamBCcgI15T2NnQh0gBRSJddr3RCJPoxU/QY9ImQ=
Subject key identifier: DD:C1:4A:0C:04:1F:4D:ED:1D:25:E9:27:0F:FD:B1:5F:1E:4C:CE:39
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0190BF5322141003983E9E554ED02DAD7602
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3cFKDAQfTe0dJeknD_2xXx5Mzjk.roa
Signing time: Wed 17 Jul 2024 06:13:34 +0000
ROA not before: Wed 17 Jul 2024 06:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24875
IP address blocks: 185.198.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 07:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:53:22:14:10:03:98:3e:9e:55:4e:d0:2d:ad:76:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 17 06:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ddc14a0c041f4ded1d25e9270ffdb15f1e4cce39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c0:90:d4:f9:35:85:3a:50:6d:c2:d0:82:39:
1b:eb:52:d2:60:09:70:26:2f:c7:3a:e9:99:a3:7c:
97:36:9b:d0:ae:77:56:93:49:3e:13:d4:f4:73:82:
c3:a2:1f:26:56:f9:f2:68:4c:23:79:8b:a2:34:a3:
e0:ce:65:1d:25:b0:da:d1:22:d4:bb:b5:dc:5f:90:
a8:a0:01:d8:54:2b:58:95:0d:d8:9d:60:b2:01:e1:
55:40:5b:65:c5:a0:09:dc:7e:de:eb:53:99:f0:df:
dc:9e:97:32:99:62:2d:b8:37:a5:c1:bf:b5:3b:a2:
78:af:3b:26:1f:89:e0:33:26:0e:81:ac:ed:77:d1:
3a:3c:32:df:5c:2e:d7:4b:94:50:7b:7f:32:f6:65:
e6:70:7d:91:6c:df:07:b7:78:5d:15:2b:97:e1:21:
0d:8b:94:f8:5e:e5:f2:9e:15:1b:89:e0:97:9d:53:
58:02:b8:5a:bb:e7:ed:8c:63:8e:4f:66:68:ec:9f:
1c:71:f2:fb:0d:91:33:32:ca:db:c7:c7:3d:89:91:
e0:87:5e:4d:98:79:e2:03:16:fc:0b:d1:ae:21:29:
c4:92:4c:d1:06:cc:1b:e4:74:f9:69:7b:29:22:92:
29:42:6f:30:f2:78:09:7b:5b:1e:92:0c:17:61:23:
0c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C1:4A:0C:04:1F:4D:ED:1D:25:E9:27:0F:FD:B1:5F:1E:4C:CE:39
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3cFKDAQfTe0dJeknD_2xXx5Mzjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.235.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b1:2f:a9:a7:d3:73:25:37:4b:d1:61:d9:b8:80:1e:79:b1:
4c:2d:9d:94:13:1d:69:c3:4d:92:32:94:9e:a7:89:3c:01:a1:
ca:b1:db:5a:e2:78:5d:51:dd:22:85:63:59:b9:b2:a3:e7:10:
4a:1e:ef:7e:be:65:a1:8d:ca:a8:17:24:fe:3c:fa:b4:3c:10:
55:1f:05:c2:4c:6a:85:f0:07:ad:d1:33:ba:0b:fb:ca:18:38:
12:7c:7f:f2:be:1a:16:d0:ab:b2:9a:75:06:4f:e3:c2:a2:45:
aa:22:f2:56:0a:28:3b:ee:06:49:43:a4:05:cc:ee:f0:84:10:
38:3f:b5:32:55:90:05:02:4c:ba:5c:47:d1:5f:17:59:c9:65:
30:d9:8a:92:a5:bf:8b:65:38:7c:5d:25:54:04:54:5c:8f:21:
85:3c:e3:31:f9:20:77:8e:c7:64:2c:20:bd:9c:14:55:4a:a1:
66:86:d7:6c:1c:f9:18:a3:51:26:0c:47:7c:d6:c0:3f:90:f2:
96:fc:20:5e:e7:bc:1a:65:1c:a5:f7:1c:41:86:c9:0a:b1:7b:
7d:cf:31:51:c7:41:91:b7:de:c1:d2:fb:68:9f:4d:b5:aa:26:
1b:04:03:4f:72:dd:bd:16:3f:e8:d6:88:27:f5:25:c4:d4:d3:
df:3d:69:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:29:39 2025 by rpki-client