Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9bd098-3820-47ce-8674-7a80ed621781/1/TAECWPHuAsyBJTlwxzpRaVWiRFk.roa
File: TAECWPHuAsyBJTlwxzpRaVWiRFk.roa (raw, json)
Hash identifier: n1yxLNFuDRfhKzsxc9nSUC4hwNAWmvFY8YBAH09nYtU=
Subject key identifier: 4C:01:02:58:F1:EE:02:CC:81:25:39:70:C7:3A:51:69:55:A2:44:59
Certificate issuer: /CN=1924008415ca185b8eddedc2dcdd8d09441a7794
Certificate serial: 0194266C2E07C2662A60F6640C205CB8A218
Authority key identifier: 19:24:00:84:15:CA:18:5B:8E:DD:ED:C2:DC:DD:8D:09:44:1A:77:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GSQAhBXKGFuO3e3C3N2NCUQad5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9bd098-3820-47ce-8674-7a80ed621781/1/TAECWPHuAsyBJTlwxzpRaVWiRFk.roa
Signing time: Thu 02 Jan 2025 09:50:11 +0000
ROA not before: Thu 02 Jan 2025 09:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5607
IP address blocks: 185.110.178.0/23 maxlen: 23
2a01:f8c0::/32 maxlen: 32
2a01:f8c1::/32 maxlen: 32
2a01:f8c2::/32 maxlen: 32
2a01:f8c3::/32 maxlen: 32
2a01:f8c4::/32 maxlen: 32
2a01:f8c5::/32 maxlen: 32
2a01:f8c6::/32 maxlen: 32
2a01:f8c7::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 29 Jan 2025 13:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:2e:07:c2:66:2a:60:f6:64:0c:20:5c:b8:a2:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1924008415ca185b8eddedc2dcdd8d09441a7794
Validity
Not Before: Jan 2 09:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c010258f1ee02cc81253970c73a516955a24459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:40:68:4c:2f:39:b5:66:51:af:81:55:05:1f:
eb:10:10:ef:1a:66:6c:b2:ec:55:d1:91:42:8d:6c:
aa:f5:97:68:92:b3:3d:ad:53:3e:97:3c:95:80:a4:
db:08:04:33:4d:fd:dd:6d:b4:28:92:d0:dc:b5:56:
46:71:83:e6:3a:6f:c2:53:8f:21:25:f5:5c:9c:2e:
ba:0d:7c:c0:08:4b:b8:59:9c:b4:e3:bc:e6:27:55:
f8:4a:a3:88:a9:d5:9f:95:37:3a:a5:88:75:0b:9a:
90:ff:05:33:72:aa:dd:cd:20:d7:be:2b:82:1a:5f:
dd:47:3c:7e:53:96:2a:08:76:c7:16:b8:ba:f8:16:
34:32:31:14:8c:b5:fd:0f:5e:3f:c5:a6:14:6d:d9:
9f:6f:84:52:e2:05:94:b8:1d:09:68:ce:96:d6:2d:
22:82:4d:06:26:5d:87:1c:a6:62:0c:db:1e:46:37:
bf:4b:4f:eb:86:bf:d8:85:94:a5:54:80:0a:83:69:
f0:b0:46:41:3d:ba:b2:44:3c:a2:50:75:03:b3:60:
b5:95:15:c6:c3:d7:9f:1f:a6:8d:40:3c:b1:aa:f0:
33:cf:a8:c9:48:2a:62:ed:2f:4e:31:0c:b7:c2:d5:
52:77:7d:95:57:cf:ec:aa:c0:cb:2b:6c:ef:19:8e:
4b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:01:02:58:F1:EE:02:CC:81:25:39:70:C7:3A:51:69:55:A2:44:59
X509v3 Authority Key Identifier:
keyid:19:24:00:84:15:CA:18:5B:8E:DD:ED:C2:DC:DD:8D:09:44:1A:77:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GSQAhBXKGFuO3e3C3N2NCUQad5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9bd098-3820-47ce-8674-7a80ed621781/1/TAECWPHuAsyBJTlwxzpRaVWiRFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9bd098-3820-47ce-8674-7a80ed621781/1/GSQAhBXKGFuO3e3C3N2NCUQad5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.178.0/23
IPv6:
2a01:f8c0::/29
Signature Algorithm: sha256WithRSAEncryption
54:a6:88:95:85:b2:38:a1:67:50:ec:5c:1f:86:b5:87:3c:1b:
c0:2c:66:02:52:7f:65:98:52:eb:ac:f4:46:76:40:25:1f:11:
7e:3e:65:68:c3:a3:8a:f1:c8:76:67:d2:d0:5f:b1:16:63:23:
bc:72:15:5e:21:04:d0:57:70:8d:43:5b:9c:68:26:05:c2:b6:
2c:ee:26:e2:24:e6:03:fd:f6:a5:82:ed:37:50:d4:e8:4d:f8:
9f:ae:c3:17:55:a1:99:87:2a:a8:80:12:9d:f2:e3:5f:05:d3:
56:cb:20:bf:17:f2:23:04:ae:b5:36:78:3d:db:66:63:e1:79:
62:50:83:43:4f:96:39:fc:48:cf:66:04:f6:fa:99:59:f7:ad:
e6:91:b1:8b:55:cc:b6:92:91:95:b1:fe:b6:f7:df:52:b1:10:
51:08:68:d3:b2:bf:e0:61:ca:c6:0e:9a:47:65:9a:09:b6:da:
d8:ea:39:69:ba:72:34:d3:68:0f:a1:ed:ff:8e:ff:ff:bc:0b:
b6:c2:92:89:bd:32:0e:19:f7:c4:f9:ed:ed:68:03:fd:00:23:
32:43:2a:19:ff:11:97:5c:ed:dc:fb:c4:d0:56:74:14:ed:5d:
7e:2b:60:2d:71:4d:fa:a4:3b:ad:47:ad:9b:09:64:35:80:06:
36:7d:63:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:41:35 2025 by rpki-client