Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/XL4muJXdiUy0oaEzIi_AnfLWtv0.roa
File: XL4muJXdiUy0oaEzIi_AnfLWtv0.roa (raw, json)
Hash identifier: wJ6vbgMAYwEmZh2TxfLdjScnqtlpZBCdu/aLHouf1DY=
Subject key identifier: 5C:BE:26:B8:95:DD:89:4C:B4:A1:A1:33:22:2F:C0:9D:F2:D6:B6:FD
Certificate issuer: /CN=cb1bd62beecab0e903b29811241db244bbf52c39
Certificate serial: 019301E1E414C646E51E9D2949AA5E626FD1
Authority key identifier: CB:1B:D6:2B:EE:CA:B0:E9:03:B2:98:11:24:1D:B2:44:BB:F5:2C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxvWK-7KsOkDspgRJB2yRLv1LDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/XL4muJXdiUy0oaEzIi_AnfLWtv0.roa
Signing time: Wed 06 Nov 2024 14:30:01 +0000
ROA not before: Wed 06 Nov 2024 14:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59989
IP address blocks: 185.214.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:01:e1:e4:14:c6:46:e5:1e:9d:29:49:aa:5e:62:6f:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1bd62beecab0e903b29811241db244bbf52c39
Validity
Not Before: Nov 6 14:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5cbe26b895dd894cb4a1a133222fc09df2d6b6fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8a:1a:d5:80:94:2b:db:75:80:ef:76:1e:d1:
8d:a1:c3:be:64:03:cb:4f:ff:c5:6b:d2:3a:9b:46:
9b:6c:82:af:03:00:21:cf:aa:1b:87:4f:24:b9:77:
45:bd:7d:6b:77:9e:07:a0:cb:48:a4:3c:b7:c2:62:
ad:a7:d2:73:f0:d1:86:2b:6f:42:06:43:cd:7d:d2:
56:7f:c1:29:7b:2e:bb:b4:85:e8:61:b2:fd:10:52:
44:95:00:8c:39:bb:07:fc:72:d8:cc:64:35:48:b2:
83:ee:6f:f6:c0:c6:2f:03:fa:89:ba:78:dc:a6:e6:
71:1d:b1:f2:5f:70:7f:f2:dd:24:35:ed:84:cf:cd:
19:9a:fd:b5:c1:a5:a7:c4:44:09:13:9a:b9:54:ca:
a0:f4:af:77:26:14:93:11:21:ba:1a:65:48:67:34:
d9:8f:22:3a:4b:61:94:f2:dd:df:5c:70:15:2b:11:
cf:7e:23:b9:02:1c:b1:c0:f7:67:55:6c:27:8b:06:
58:d5:07:c2:53:47:6f:70:d5:5f:e8:c6:3b:8e:f2:
40:cf:f4:a7:c6:a5:da:81:68:c1:d2:95:c0:e1:9d:
53:8a:0e:dc:9d:ac:32:9c:69:2a:dc:ab:26:bc:9c:
a6:52:bd:63:02:68:1f:80:25:64:4e:84:5d:d8:32:
7a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BE:26:B8:95:DD:89:4C:B4:A1:A1:33:22:2F:C0:9D:F2:D6:B6:FD
X509v3 Authority Key Identifier:
keyid:CB:1B:D6:2B:EE:CA:B0:E9:03:B2:98:11:24:1D:B2:44:BB:F5:2C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxvWK-7KsOkDspgRJB2yRLv1LDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/XL4muJXdiUy0oaEzIi_AnfLWtv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/yxvWK-7KsOkDspgRJB2yRLv1LDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.65.0/24
Signature Algorithm: sha256WithRSAEncryption
25:59:1e:15:37:ef:6b:8e:16:29:a2:b4:5e:fb:6c:5c:52:cb:
8f:db:47:e4:4a:a0:f9:2b:f5:3e:5d:0b:52:7f:e8:16:09:03:
e3:f7:ca:e3:a1:04:33:f5:85:fb:1d:04:42:0f:7d:fc:43:3c:
00:cc:0c:31:e7:90:2a:e1:30:6a:9c:00:bc:8f:ca:72:ba:41:
0a:03:b2:df:24:bb:f6:13:5c:34:96:5a:cf:34:8b:8a:b6:7c:
de:e8:7b:0a:d7:ee:73:fd:34:a3:07:6e:65:d2:57:89:af:9a:
97:5b:9b:1e:fb:d1:94:42:20:87:31:76:93:7e:f0:14:ab:19:
57:09:06:87:a1:43:8e:3e:24:7f:4f:4a:c1:0b:78:62:7b:42:
00:09:19:17:a4:31:d7:d5:f6:1a:e9:01:14:2e:8f:d2:54:69:
c3:83:00:25:b5:85:fc:6b:69:48:3a:c0:dd:0b:41:f8:19:b5:
b4:b2:13:59:52:e6:15:17:b1:a8:c4:60:d5:ab:88:03:58:af:
7b:17:09:62:b7:d6:9e:7a:98:42:81:80:ab:aa:f2:00:70:c3:
b5:3f:51:5b:1d:5f:f9:b9:71:e5:2e:2c:3c:69:b0:86:05:c0:
69:00:af:94:9c:46:cb:86:cb:e9:30:63:d8:6c:24:2b:70:03:
43:6a:28:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:51 2025 by rpki-client