Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/r80lYiODBjCzGD8xCTkBdGs8Axw.roa
File: r80lYiODBjCzGD8xCTkBdGs8Axw.roa (raw, json)
Hash identifier: VuBLO56hEJnLD1ETFn9CwhRywOO6hCYjr8gtamR8aRI=
Subject key identifier: AF:CD:25:62:23:83:06:30:B3:18:3F:31:09:39:01:74:6B:3C:03:1C
Certificate issuer: /CN=1339b9a8946d26be2d8fffe6c1e3c22cb93e0486
Certificate serial: 018CC8019CCBEF6BE853CCA0F0557EB92D35
Authority key identifier: 13:39:B9:A8:94:6D:26:BE:2D:8F:FF:E6:C1:E3:C2:2C:B9:3E:04:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ezm5qJRtJr4tj__mwePCLLk-BIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/r80lYiODBjCzGD8xCTkBdGs8Axw.roa
Signing time: Tue 02 Jan 2024 02:29:57 +0000
ROA not before: Tue 02 Jan 2024 02:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210938
IP address blocks: 185.211.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:9c:cb:ef:6b:e8:53:cc:a0:f0:55:7e:b9:2d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1339b9a8946d26be2d8fffe6c1e3c22cb93e0486
Validity
Not Before: Jan 2 02:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afcd256223830630b3183f31093901746b3c031c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:83:61:00:86:b7:5c:6a:ce:9c:8b:48:50:7f:
e5:b0:a0:68:fd:39:33:1d:b7:32:51:e1:7c:f1:83:
8e:f6:64:a0:0a:be:72:72:04:d1:ce:c3:54:4d:ee:
74:4d:7e:c2:77:62:f2:bb:c7:43:a4:fd:52:81:a0:
26:99:78:1e:d7:74:3e:a8:90:63:1b:b5:57:61:34:
c1:fd:6c:f1:15:1d:0c:00:e5:0f:93:41:37:d7:1a:
ec:a5:e5:d8:8f:e6:31:a9:f5:2b:3c:85:b5:54:79:
e4:d5:07:17:15:91:2e:3b:75:c1:5f:65:ef:97:96:
ec:5d:e7:94:1e:6c:5c:ff:7b:6e:35:18:19:34:68:
73:23:b1:b9:14:9f:e5:fa:50:a9:f1:27:dd:e4:c5:
4f:34:3f:5c:e2:5d:c7:7d:93:6c:05:1b:9d:24:ea:
ca:f5:73:be:b2:ee:24:de:dc:b2:7c:11:f8:e6:cf:
30:38:e7:39:80:c1:57:b4:dc:d7:77:11:2a:32:b6:
13:02:dd:41:0d:4a:4a:7e:5f:f8:16:10:1d:48:a3:
47:a8:9f:02:2d:54:ba:d0:db:7f:7f:ec:6b:9b:1f:
3b:a4:72:56:ca:67:83:fa:12:ab:3b:c7:b9:82:67:
cc:f0:a0:bb:ed:3c:17:13:97:3b:5c:c2:e8:bc:55:
e2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CD:25:62:23:83:06:30:B3:18:3F:31:09:39:01:74:6B:3C:03:1C
X509v3 Authority Key Identifier:
keyid:13:39:B9:A8:94:6D:26:BE:2D:8F:FF:E6:C1:E3:C2:2C:B9:3E:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ezm5qJRtJr4tj__mwePCLLk-BIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/r80lYiODBjCzGD8xCTkBdGs8Axw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/Ezm5qJRtJr4tj__mwePCLLk-BIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.77.0/24
Signature Algorithm: sha256WithRSAEncryption
80:44:c2:86:47:fb:da:7a:4d:58:e3:87:b8:20:93:6a:c3:a5:
20:50:cf:9e:b3:ea:62:80:8c:b3:95:10:94:5e:47:33:49:a6:
d6:23:53:28:0b:55:14:c9:06:f0:86:95:7f:53:57:65:fa:dc:
f5:6d:73:4e:fa:b3:33:23:b5:91:ea:97:69:59:82:01:c5:66:
f8:d2:bb:93:29:c7:e0:d2:5f:88:b9:84:f4:54:21:74:12:83:
cb:32:70:78:53:31:f4:c1:95:42:33:42:0a:6e:0a:c9:ae:6c:
c4:ce:74:50:b6:5b:fa:9a:03:7e:46:94:bf:1f:72:b2:88:5d:
52:23:77:33:07:41:db:46:54:86:48:7c:d1:df:f9:58:d8:96:
5e:a6:7c:78:20:8d:13:de:a2:b1:40:65:3c:98:e9:cd:65:5c:
40:26:5b:62:47:8a:e8:be:83:c4:a1:03:d5:64:90:0c:1a:3f:
9d:f2:1b:13:d4:59:31:05:bb:51:ae:b5:c5:c6:06:d7:bf:db:
30:56:93:07:08:2b:d2:18:17:eb:e8:34:d3:d2:bc:cd:40:4a:
30:42:71:a8:2c:b3:3e:ca:da:91:8d:a2:e5:4b:06:a0:eb:50:
11:df:a5:06:cd:31:94:d1:73:71:9c:71:7c:d5:ba:6b:9c:24:
6d:86:b9:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:36:31 2025 by rpki-client