Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/d6dc9d-eb33-4ca4-aa82-4d19a8de0aba/1/latc43hmwGB_TPN2nyJGCd4H_po.roa
File: latc43hmwGB_TPN2nyJGCd4H_po.roa (raw, json)
Hash identifier: Y9wc7wMIZ1/vOe9juYAaX4LBO0l0xuMO7E7IlBB9qSU=
Subject key identifier: 95:AB:5C:E3:78:66:C0:60:7F:4C:F3:76:9F:22:46:09:DE:07:FE:9A
Certificate issuer: /CN=032b9d2de53710b3158e42f22889109e2c40f43b
Certificate serial: 019426D97205B53AA4488B213029880B40FA
Authority key identifier: 03:2B:9D:2D:E5:37:10:B3:15:8E:42:F2:28:89:10:9E:2C:40:F4:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyudLeU3ELMVjkLyKIkQnixA9Ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/d6dc9d-eb33-4ca4-aa82-4d19a8de0aba/1/latc43hmwGB_TPN2nyJGCd4H_po.roa
Signing time: Thu 02 Jan 2025 11:49:32 +0000
ROA not before: Thu 02 Jan 2025 11:49:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210022
IP address blocks: 185.158.21.0/24 maxlen: 24
185.158.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Feb 2025 19:25:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:72:05:b5:3a:a4:48:8b:21:30:29:88:0b:40:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032b9d2de53710b3158e42f22889109e2c40f43b
Validity
Not Before: Jan 2 11:49:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95ab5ce37866c0607f4cf3769f224609de07fe9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:33:01:31:f3:2f:8c:92:42:a0:54:4f:6b:be:
d9:7b:ef:ea:a0:bf:04:f6:78:03:cd:e4:67:fb:78:
80:67:f6:12:30:2e:9a:e4:d5:b2:37:67:47:a8:0e:
74:c5:53:8e:44:2d:49:f3:37:8e:15:5b:51:76:92:
f5:fd:68:2e:6e:04:e1:40:22:df:19:0e:dc:44:56:
5e:95:30:35:c2:ac:55:e7:6f:52:f2:c8:b4:ee:79:
1e:ae:45:58:b4:cd:28:99:1d:fe:44:1b:5c:fd:6a:
a6:a7:3a:68:fc:4b:23:f2:44:0d:80:88:4e:6b:bc:
4f:67:7a:2d:ee:20:ae:55:e7:b3:17:ba:f9:1e:70:
e6:4d:68:4c:c1:9a:5d:ce:63:01:de:34:6b:50:aa:
bc:ef:2c:e8:95:fc:b6:b9:ce:ac:4e:1c:fa:eb:ac:
7b:be:32:8c:77:4c:2a:49:c7:c1:bc:11:a7:ac:98:
d4:ac:28:e3:76:52:01:18:ef:cb:5c:dc:65:db:68:
72:1f:10:38:e6:39:01:e9:14:e0:9c:23:3d:b6:ed:
be:e8:4f:56:0f:fe:6b:6e:28:99:bd:4f:bd:82:65:
79:a5:cb:6d:6e:5e:b8:bf:54:48:d7:31:7b:25:02:
d2:eb:2f:97:c3:ad:6d:cc:1a:e3:d1:15:05:15:41:
29:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AB:5C:E3:78:66:C0:60:7F:4C:F3:76:9F:22:46:09:DE:07:FE:9A
X509v3 Authority Key Identifier:
keyid:03:2B:9D:2D:E5:37:10:B3:15:8E:42:F2:28:89:10:9E:2C:40:F4:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyudLeU3ELMVjkLyKIkQnixA9Ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/d6dc9d-eb33-4ca4-aa82-4d19a8de0aba/1/latc43hmwGB_TPN2nyJGCd4H_po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/d6dc9d-eb33-4ca4-aa82-4d19a8de0aba/1/AyudLeU3ELMVjkLyKIkQnixA9Ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.21.0-185.158.22.255
Signature Algorithm: sha256WithRSAEncryption
35:66:6b:41:76:c5:8f:d6:13:25:30:76:77:09:38:fe:fb:a8:
2b:5f:fa:5d:a3:fd:6d:fc:ae:af:f4:6f:c5:a0:38:37:43:91:
51:66:e3:c4:ce:8f:e1:2c:61:c2:23:ae:8b:ca:3e:2f:cf:b7:
f1:d7:57:f9:6e:da:6f:ee:99:09:c6:c4:c7:7c:cf:e4:06:77:
55:0a:44:e6:ed:ed:1f:46:94:c2:9b:d5:a0:93:ef:4a:dc:bb:
da:2a:9b:c9:24:02:da:37:52:1d:fe:bc:75:83:43:9a:17:33:
13:11:b7:a9:b1:c0:55:a0:94:17:62:41:0f:20:8f:b5:70:e3:
70:16:ee:80:06:ec:b8:42:0f:ae:f2:d2:d3:09:f9:1a:aa:38:
e9:da:bc:cf:a5:40:89:36:4a:32:58:31:9f:f3:b8:a6:dc:41:
dd:08:8a:54:2a:0e:1c:8d:06:c7:24:d4:be:fb:59:0e:74:f2:
8b:9a:8e:83:dc:d6:0f:95:c9:06:43:42:76:f7:20:2f:75:5d:
21:ff:c6:f4:a3:da:2e:3f:a3:13:ac:a8:28:b3:af:9e:aa:eb:
0d:e2:9f:b7:67:35:18:60:47:db:e7:54:cc:95:3a:13:d0:fb:
e3:4c:c3:ef:0a:d9:2c:56:5a:cf:3c:98:0d:b6:c5:4f:97:eb:
56:2f:2f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:23:40 2025 by rpki-client