Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/bd8cf6-1db8-4ac0-8dd6-17be417e94dc/1/Ym2GQ2e2wFL1lD-ovqfMxYI_EtQ.roa
File: Ym2GQ2e2wFL1lD-ovqfMxYI_EtQ.roa (raw, json)
Hash identifier: dy+QQ5toetCmTiXT6hLn6XVM1ha4QpZYMhJ21EAPbis=
Subject key identifier: 62:6D:86:43:67:B6:C0:52:F5:94:3F:A8:BE:A7:CC:C5:82:3F:12:D4
Certificate issuer: /CN=32bca329cd4e2565ff0d13e8355a6ec4cc1794e1
Certificate serial: 018CC34964D95B92D17907D038A2931F752D
Authority key identifier: 32:BC:A3:29:CD:4E:25:65:FF:0D:13:E8:35:5A:6E:C4:CC:17:94:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MryjKc1OJWX_DRPoNVpuxMwXlOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/bd8cf6-1db8-4ac0-8dd6-17be417e94dc/1/Ym2GQ2e2wFL1lD-ovqfMxYI_EtQ.roa
Signing time: Mon 01 Jan 2024 04:30:16 +0000
ROA not before: Mon 01 Jan 2024 04:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211669
IP address blocks: 185.251.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:64:d9:5b:92:d1:79:07:d0:38:a2:93:1f:75:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32bca329cd4e2565ff0d13e8355a6ec4cc1794e1
Validity
Not Before: Jan 1 04:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=626d864367b6c052f5943fa8bea7ccc5823f12d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:21:56:6c:01:20:a1:7b:61:aa:7f:da:ed:32:
e7:02:ce:f2:0f:1d:79:8e:0e:a6:86:25:8f:8f:59:
24:6d:e6:c0:a5:39:e4:37:9d:ab:75:7a:a8:7a:a4:
d2:f9:02:25:c7:24:93:18:d3:56:8d:ff:42:78:b6:
34:bc:eb:87:f9:09:8b:67:86:d8:7c:de:79:fd:0b:
fa:68:27:a4:b7:a2:f6:13:a8:99:10:d3:bc:7c:f9:
44:48:db:56:28:a6:ce:b9:5e:b5:1b:34:88:f2:d8:
83:38:85:ad:64:88:cf:d0:69:5d:ef:6a:b5:e4:80:
79:94:76:9f:2f:67:56:9b:81:ed:6e:1d:8c:fd:21:
e2:f2:85:9f:05:f5:78:39:94:2b:91:d5:57:66:7d:
1e:df:e4:11:09:55:8f:39:9d:5d:99:3a:36:43:be:
30:55:c0:88:eb:6b:da:21:a2:4f:ff:e8:13:47:59:
35:d3:fc:00:5b:27:36:8b:2b:a3:e0:59:21:e3:0d:
43:08:c5:48:5b:89:dd:32:57:40:49:13:09:b8:23:
d4:1e:8a:36:53:75:aa:75:63:6b:86:b2:b7:56:71:
28:8f:5d:8b:00:fe:b8:f5:6e:1b:29:e4:b2:d4:cb:
26:cb:dd:61:f7:99:49:ba:9d:c8:82:e8:5e:19:6a:
47:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6D:86:43:67:B6:C0:52:F5:94:3F:A8:BE:A7:CC:C5:82:3F:12:D4
X509v3 Authority Key Identifier:
keyid:32:BC:A3:29:CD:4E:25:65:FF:0D:13:E8:35:5A:6E:C4:CC:17:94:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MryjKc1OJWX_DRPoNVpuxMwXlOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bd8cf6-1db8-4ac0-8dd6-17be417e94dc/1/Ym2GQ2e2wFL1lD-ovqfMxYI_EtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bd8cf6-1db8-4ac0-8dd6-17be417e94dc/1/MryjKc1OJWX_DRPoNVpuxMwXlOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.15.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:c9:87:9d:a4:66:ae:e2:af:0b:c9:9b:5d:51:d5:27:df:8c:
25:50:27:24:16:4e:e5:e2:95:c9:62:6b:af:4f:cb:d7:ce:3c:
38:e9:e5:24:77:87:ea:df:a3:ec:10:da:08:75:7c:a8:27:3d:
60:1a:d3:a3:3d:c7:32:91:75:9e:11:6d:97:12:0c:27:bd:1e:
65:64:46:ba:02:ab:0a:ec:c1:e0:51:a8:b9:44:1a:49:ed:ee:
fb:0b:a7:a5:27:dc:e4:9f:e9:60:e9:9b:db:60:5b:ed:52:77:
09:b3:97:d7:c3:31:69:c2:d3:8f:cd:2c:ac:bd:ab:e7:6b:30:
f7:1e:ea:18:71:4a:88:31:9e:56:2c:dd:d1:32:0a:4a:ee:41:
33:8c:d7:65:2a:ac:c6:95:51:c2:53:99:d1:24:60:c3:a3:0e:
21:cf:26:5c:13:60:60:93:79:2b:88:7f:30:2e:5a:c7:45:be:
fe:3a:ee:3e:1e:94:76:92:67:2b:65:83:bd:3a:ca:a5:fb:da:
2a:51:31:50:38:60:ac:94:37:d4:88:a5:20:49:d2:f2:44:b6:
b2:cc:66:4f:4b:f1:84:14:34:4e:1d:6f:82:19:08:1b:47:82:
ed:95:29:d4:24:5c:03:57:ba:e4:b3:90:a7:4d:00:b5:27:07:
43:bd:ba:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:26:03 2025 by rpki-client