Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bx9fdyIbTea1kxZuXjw1SMXhDGg.roa
File: bx9fdyIbTea1kxZuXjw1SMXhDGg.roa (raw, json)
Hash identifier: N7Dvl41GmK4ST3EsxT10O8yUJMJ1mEsTvwCHS+gDEjI=
Subject key identifier: 6F:1F:5F:77:22:1B:4D:E6:B5:93:16:6E:5E:3C:35:48:C5:E1:0C:68
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0193BBD7CDE9A5327BB98A861F4687D11062
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bx9fdyIbTea1kxZuXjw1SMXhDGg.roa
Signing time: Thu 12 Dec 2024 17:08:22 +0000
ROA not before: Thu 12 Dec 2024 17:08:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214438
IP address blocks: 185.141.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:54:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bb:d7:cd:e9:a5:32:7b:b9:8a:86:1f:46:87:d1:10:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 12 17:08:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f1f5f77221b4de6b593166e5e3c3548c5e10c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:19:14:bc:a0:64:e4:ae:07:62:ad:c0:d0:c2:
d4:48:6c:c4:27:61:25:ce:fe:f9:2e:e9:0b:61:ea:
4a:28:cd:e7:a0:1c:24:a3:1d:70:65:07:a5:f1:d2:
1e:c3:cf:95:7b:16:6d:dd:54:1b:1b:a7:3f:d9:38:
69:30:d0:d6:d0:1d:9e:02:5d:d2:9b:39:9a:ee:74:
aa:b2:42:d5:4d:40:30:3b:7e:95:af:83:ce:d8:b1:
2e:70:49:b1:8a:e1:12:76:16:c1:fa:21:08:78:d6:
68:06:c2:4f:ad:6d:3a:dc:0e:04:69:70:b2:9d:e5:
2a:a5:96:05:7a:df:be:f3:e1:60:d2:4c:a4:32:28:
a9:2f:93:c9:3e:79:cf:43:76:ed:95:c7:25:87:14:
7a:2d:31:5f:9a:17:f3:d2:42:0d:e7:9b:12:42:5d:
4a:61:67:93:41:9d:79:e2:b4:0b:6f:c7:02:ca:59:
1b:df:57:e4:77:31:32:ee:d4:f3:f9:80:f3:56:78:
43:67:7e:b7:4f:25:f7:70:cb:da:9c:ca:4e:0d:c3:
9c:be:ce:4a:56:59:78:56:76:a1:56:9a:c8:d5:19:
ea:4c:de:0b:f2:f9:01:8e:f7:b7:2d:35:69:ab:91:
07:2b:75:99:1a:ad:39:87:76:47:f0:ea:1d:a5:6c:
7b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1F:5F:77:22:1B:4D:E6:B5:93:16:6E:5E:3C:35:48:C5:E1:0C:68
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bx9fdyIbTea1kxZuXjw1SMXhDGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.218.0/24
Signature Algorithm: sha256WithRSAEncryption
85:73:f2:33:33:b9:13:33:07:d4:f2:e9:8b:c8:df:b2:eb:77:
33:35:b3:47:0f:e1:af:44:fb:9b:2b:a6:06:2a:f4:b6:bc:83:
4a:68:d0:2d:c2:35:94:43:1c:66:1c:85:13:25:2d:08:68:e8:
ce:51:63:50:08:70:2d:5b:e1:78:9c:ee:c7:d6:b1:eb:6e:94:
17:50:7e:5e:b7:2b:2b:67:18:78:4a:84:93:bd:a4:af:e0:1c:
71:29:4c:e4:25:2a:1e:eb:8e:0f:35:d3:fe:04:c7:2d:ff:d9:
6a:6d:38:40:b8:c9:bc:b1:63:e5:f1:27:02:29:42:e7:1f:e8:
29:ab:bb:21:3d:68:6f:91:4c:c8:11:bf:7b:f9:c5:17:1b:46:
83:fe:3f:1b:6b:75:a1:b7:23:ca:3d:75:ec:a4:be:02:5d:47:
58:04:69:5b:9d:ee:c8:bc:fc:4e:f2:3d:46:23:32:e5:d6:37:
c4:cd:d3:ba:15:5d:ce:6f:3b:29:3c:c3:43:a4:15:f3:4d:a5:
04:5d:b7:98:8b:37:3b:89:ea:f6:ea:b6:ec:a6:1a:ec:6a:f6:
5f:f4:bc:23:e2:93:87:68:3d:b5:86:2b:d5:fb:f8:0f:ba:0d:
09:cb:af:8f:d4:e9:0c:1b:e1:3e:44:82:ad:d7:ea:66:21:8b:
0f:f6:d0:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:41:23 2025 by rpki-client