Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/92lHgiF0yMgWMqZn_KAZ9mrG7WE.roa
File: 92lHgiF0yMgWMqZn_KAZ9mrG7WE.roa (raw, json)
Hash identifier: m8/y+09cauz3+uq5O5cbRCPCelHqR35inzQLQl21mQ4=
Subject key identifier: F7:69:47:82:21:74:C8:C8:16:32:A6:67:FC:A0:19:F6:6A:C6:ED:61
Certificate issuer: /CN=331706b915bab8dac2b5547fbc87adeb61e6aede
Certificate serial: 01946911F33A2AF5416B001702077E43B35F
Authority key identifier: 33:17:06:B9:15:BA:B8:DA:C2:B5:54:7F:BC:87:AD:EB:61:E6:AE:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxcGuRW6uNrCtVR_vIet62Hmrt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/92lHgiF0yMgWMqZn_KAZ9mrG7WE.roa
Signing time: Wed 15 Jan 2025 08:26:11 +0000
ROA not before: Wed 15 Jan 2025 08:26:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47297
IP address blocks: 185.7.68.0/24 maxlen: 32
Validation: Failed, certificate revoked on Thu 10 Apr 2025 11:41:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:69:11:f3:3a:2a:f5:41:6b:00:17:02:07:7e:43:b3:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331706b915bab8dac2b5547fbc87adeb61e6aede
Validity
Not Before: Jan 15 08:26:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f76947822174c8c81632a667fca019f66ac6ed61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:80:b2:45:ee:0f:d9:58:a6:f2:e3:28:b6:
e7:71:f4:13:4c:96:86:74:fe:d9:25:6e:02:0b:ee:
b4:b1:e4:af:08:8d:2c:0a:a4:ac:e5:28:38:78:64:
64:58:c4:e2:c0:b1:8b:0d:8a:8c:26:5e:c7:93:e5:
99:5d:d7:3f:a4:87:6a:ba:88:5b:ee:6e:f1:27:6d:
13:7b:3d:0f:0e:58:9c:a7:bb:cb:2c:6c:cb:08:28:
d6:2c:de:2f:27:b2:8a:e4:0f:90:e0:3a:84:76:84:
af:92:b3:37:b5:84:82:90:b9:e0:8d:64:32:d6:77:
18:78:43:e1:1f:bb:32:ce:fd:fb:27:f8:96:08:db:
e3:28:8d:0d:3b:10:0f:18:d1:0f:74:f1:bc:87:c6:
34:97:f5:52:f2:eb:c1:18:df:b8:e5:37:8c:25:b9:
70:b7:45:0e:96:bf:0c:c4:36:c3:f8:07:06:32:92:
e6:50:2a:0b:95:3a:a6:c9:ed:2a:88:7d:85:f6:f5:
65:b3:ec:0d:ec:a1:4a:ae:ee:76:68:20:5f:1c:7c:
07:99:3e:8f:dd:7c:c9:44:17:a2:19:88:32:d2:90:
57:b0:ea:18:82:e6:83:e3:9b:ab:83:ea:41:f6:6b:
26:8c:5a:82:a9:1c:f5:20:a9:e8:2f:96:5b:73:f5:
73:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:69:47:82:21:74:C8:C8:16:32:A6:67:FC:A0:19:F6:6A:C6:ED:61
X509v3 Authority Key Identifier:
keyid:33:17:06:B9:15:BA:B8:DA:C2:B5:54:7F:BC:87:AD:EB:61:E6:AE:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxcGuRW6uNrCtVR_vIet62Hmrt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/92lHgiF0yMgWMqZn_KAZ9mrG7WE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/MxcGuRW6uNrCtVR_vIet62Hmrt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.68.0/24
Signature Algorithm: sha256WithRSAEncryption
59:18:bb:ec:04:c6:be:7e:21:de:1d:ec:d1:02:05:f9:2b:59:
18:eb:7e:1d:d3:d3:14:a0:f0:d7:c1:c5:e3:7b:84:f6:cc:01:
ec:e3:30:25:d4:88:48:e8:43:9a:65:62:ae:2c:fd:f2:8c:0d:
29:76:16:3b:78:4e:66:fa:ab:60:56:c2:48:50:83:3b:e4:2b:
eb:42:dc:74:79:4d:00:4b:ed:28:d1:16:07:8d:b3:97:1f:93:
3e:26:09:40:d3:c3:32:d7:f7:78:7e:92:d2:96:d3:80:0d:cd:
a6:11:18:5a:84:49:88:d1:05:38:ba:9d:cd:6c:83:2b:56:00:
15:ba:ea:83:1f:3f:1d:94:63:cf:d4:c3:e0:e5:f4:4e:84:75:
32:51:2c:3e:b9:bc:ea:f5:da:14:e3:2b:0b:0f:5b:e5:4a:c3:
09:a1:4a:b0:9d:43:a9:67:91:9c:da:ea:9b:7c:bb:e0:bf:96:
2b:b4:ea:95:39:ba:56:03:00:87:74:a6:85:40:cd:78:b5:7a:
f9:69:b2:35:3e:74:52:13:da:8a:6f:21:9c:e8:56:5e:fb:c4:
84:f7:a9:48:96:57:11:76:39:f1:4f:44:f1:1e:1e:50:f7:9e:
97:eb:dd:e7:61:f8:9d:f1:53:ec:d8:a3:fe:83:d4:d1:c7:0c:
bf:db:6d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:58:38 2025 by rpki-client