Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/d1b6b1-223a-410b-9596-5ae307304b0b/1/WcZRwzAC0jLeQmESzBszBDgvOcw.roa
File: WcZRwzAC0jLeQmESzBszBDgvOcw.roa (raw, json)
Hash identifier: CVaIyRMKJ9VEcpQLvAySxrllIT/pl73LNRclb247uJI=
Subject key identifier: 59:C6:51:C3:30:02:D2:32:DE:42:61:12:CC:1B:33:04:38:2F:39:CC
Certificate issuer: /CN=1693737a01469c95011d697392565916045d3a20
Certificate serial: 0192B44386A6B422EC637C3543455E5836B8
Authority key identifier: 16:93:73:7A:01:46:9C:95:01:1D:69:73:92:56:59:16:04:5D:3A:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FpNzegFGnJUBHWlzklZZFgRdOiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/d1b6b1-223a-410b-9596-5ae307304b0b/1/WcZRwzAC0jLeQmESzBszBDgvOcw.roa
Signing time: Tue 22 Oct 2024 12:46:17 +0000
ROA not before: Tue 22 Oct 2024 12:46:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204475
IP address blocks: 185.155.84.0/22 maxlen: 22
2a0d:ac80::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:47:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b4:43:86:a6:b4:22:ec:63:7c:35:43:45:5e:58:36:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1693737a01469c95011d697392565916045d3a20
Validity
Not Before: Oct 22 12:46:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59c651c33002d232de426112cc1b3304382f39cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ad:0a:35:34:a9:18:cb:34:01:8d:2a:61:04:
f1:c8:ca:9c:f9:bd:7d:df:eb:af:89:26:39:1c:5b:
dc:01:2c:bc:26:0c:e9:ad:31:b0:a5:32:84:b6:a6:
ce:08:60:98:e8:33:f6:ec:6e:89:38:a1:74:ce:0d:
24:b5:e4:76:00:60:e3:16:26:19:97:7c:e2:6a:38:
01:26:df:b0:6d:04:8c:20:de:fd:45:4d:1d:9f:53:
6e:68:1a:e7:94:ab:79:ff:78:41:e4:fd:c6:af:ea:
6b:c9:ba:16:8d:09:7c:eb:bc:87:25:2b:b4:4a:d9:
51:52:be:b5:fb:bb:4d:25:6a:ad:55:cd:34:85:ac:
56:58:d7:f6:1a:2d:87:a3:9f:57:56:01:7e:ae:3c:
fd:7a:4d:8b:ae:50:ae:66:32:c3:4f:94:c2:a6:75:
b8:b2:4f:89:bf:db:ff:0f:59:b5:4d:5c:c2:43:14:
e8:00:69:67:b7:3c:9e:94:33:2d:33:08:c5:ac:39:
f6:d7:23:2d:1b:e4:b7:8f:c0:e5:b3:73:d7:fc:66:
64:0f:1a:d4:02:69:2e:a3:49:12:6d:39:a0:0e:88:
d3:59:95:96:e2:8d:32:23:ef:5a:d4:92:c0:e6:23:
21:39:9d:f4:69:94:4b:06:1f:2a:19:cf:b8:04:5a:
92:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C6:51:C3:30:02:D2:32:DE:42:61:12:CC:1B:33:04:38:2F:39:CC
X509v3 Authority Key Identifier:
keyid:16:93:73:7A:01:46:9C:95:01:1D:69:73:92:56:59:16:04:5D:3A:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FpNzegFGnJUBHWlzklZZFgRdOiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/d1b6b1-223a-410b-9596-5ae307304b0b/1/WcZRwzAC0jLeQmESzBszBDgvOcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/d1b6b1-223a-410b-9596-5ae307304b0b/1/FpNzegFGnJUBHWlzklZZFgRdOiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.84.0/22
IPv6:
2a0d:ac80::/29
Signature Algorithm: sha256WithRSAEncryption
27:d5:c7:2c:da:e8:74:46:28:b9:3e:76:e4:10:b7:63:ba:74:
ea:43:ad:1d:76:a5:ec:95:72:92:cb:c6:12:75:b1:94:c5:59:
46:c0:6e:d3:78:da:4f:65:0c:b8:36:40:5f:1b:10:d1:07:bf:
66:12:dd:72:f6:0a:6e:67:d4:25:c0:23:36:86:c8:2a:a8:29:
b2:ca:1a:af:60:c5:b4:dc:e6:11:97:e1:05:6a:96:88:74:bb:
c7:0f:d3:6c:04:37:65:e5:d5:e7:5b:16:72:7e:74:3f:17:39:
6d:65:bc:a2:98:63:1c:a1:a7:dc:75:14:73:b1:4d:0c:1c:3b:
0f:88:90:39:ee:de:76:09:55:e1:8b:89:81:b5:6c:1b:0c:09:
b6:94:da:0d:86:9d:de:36:5a:7a:21:6c:26:c4:73:65:00:5d:
66:c5:b7:9d:61:24:40:53:82:a2:8a:ea:4a:4a:b6:9f:c6:85:
06:be:b4:47:28:4d:de:95:39:e0:2f:26:4a:d6:9d:bb:e4:06:
38:d3:ce:43:d1:b8:c8:ee:73:d7:36:44:78:3c:8b:db:0e:8b:
4d:33:98:ce:d6:e7:b1:5e:73:d8:0c:f0:bd:bb:3f:df:dc:ce:
04:39:b9:dd:d7:51:d1:dd:52:8c:92:19:d9:67:32:14:ca:37:
78:4b:9b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:43 2025 by rpki-client