Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/db63b5-1f96-4f00-865a-9ff5c1a3b0e0/1/8zqrQGHSV91mnD5L_Lg4SyId5Ng.roa
File: 8zqrQGHSV91mnD5L_Lg4SyId5Ng.roa (raw, json)
Hash identifier: O0SGBP084XsVx2JBr9Y6M93jupr+Dsr/Jtt4uTRIWEk=
Subject key identifier: F3:3A:AB:40:61:D2:57:DD:66:9C:3E:4B:FC:B8:38:4B:22:1D:E4:D8
Certificate issuer: /CN=c5ba51c07148843d400805b40335e72d324265f1
Certificate serial: 018F9C83A68EC8752DEDA4D494C4A1D2BBF3
Authority key identifier: C5:BA:51:C0:71:48:84:3D:40:08:05:B4:03:35:E7:2D:32:42:65:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xbpRwHFIhD1ACAW0AzXnLTJCZfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/db63b5-1f96-4f00-865a-9ff5c1a3b0e0/1/8zqrQGHSV91mnD5L_Lg4SyId5Ng.roa
Signing time: Tue 21 May 2024 18:57:04 +0000
ROA not before: Tue 21 May 2024 18:57:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199987
IP address blocks: 185.40.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Dec 2024 08:41:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9c:83:a6:8e:c8:75:2d:ed:a4:d4:94:c4:a1:d2:bb:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5ba51c07148843d400805b40335e72d324265f1
Validity
Not Before: May 21 18:57:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f33aab4061d257dd669c3e4bfcb8384b221de4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5d:a7:24:26:96:5c:ac:59:a7:1e:5f:16:fc:
48:ef:0b:c9:a8:8f:d6:1c:da:e6:8b:5f:c5:94:ab:
be:09:d4:88:19:32:23:c5:83:a2:26:69:5a:45:ec:
e4:07:34:21:d7:65:fb:a9:35:ff:c7:d9:64:96:88:
99:0f:71:f4:8c:df:2e:4b:af:fd:99:16:e2:b9:df:
ea:32:9d:9d:d5:bf:7c:ba:e0:ed:91:0e:1a:5b:a1:
1f:d4:c7:2b:54:14:88:e2:08:2a:94:6c:7a:60:96:
5b:08:79:b4:0e:53:b5:f5:7e:c7:4d:2c:96:ed:33:
87:57:65:f9:87:ae:38:f6:c9:e0:00:43:2e:3b:6d:
65:d4:ee:e8:a0:c1:91:9e:a8:8f:43:f5:0a:74:ec:
5a:b2:ad:c1:59:ff:1b:7d:75:64:f1:00:b0:7a:4c:
65:d3:2b:9b:d8:24:15:e1:b3:f0:4a:8c:96:b1:35:
29:b6:cc:70:8e:26:b3:08:90:a6:87:1f:83:11:0c:
15:6c:f0:99:dd:57:43:f0:4b:39:26:fd:b9:ed:62:
86:e3:be:19:ba:74:bb:a0:16:b7:e1:a9:7e:8c:43:
16:32:14:b1:5a:48:93:f7:6e:55:a0:22:9a:b5:19:
1e:ea:60:21:a5:1a:23:2f:40:c7:dd:97:7e:b1:b8:
bd:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:3A:AB:40:61:D2:57:DD:66:9C:3E:4B:FC:B8:38:4B:22:1D:E4:D8
X509v3 Authority Key Identifier:
keyid:C5:BA:51:C0:71:48:84:3D:40:08:05:B4:03:35:E7:2D:32:42:65:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xbpRwHFIhD1ACAW0AzXnLTJCZfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/db63b5-1f96-4f00-865a-9ff5c1a3b0e0/1/8zqrQGHSV91mnD5L_Lg4SyId5Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/db63b5-1f96-4f00-865a-9ff5c1a3b0e0/1/xbpRwHFIhD1ACAW0AzXnLTJCZfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.35.0/24
Signature Algorithm: sha256WithRSAEncryption
98:fc:19:6b:21:4a:12:5f:48:78:df:02:78:ad:ad:84:3c:27:
94:1c:6a:4a:c2:97:84:38:da:5d:a1:20:e6:91:93:73:1c:99:
e9:a7:76:1d:8f:b1:0d:e2:c7:d3:3f:39:73:38:c0:35:e4:72:
00:da:73:25:ec:c8:28:51:5e:fc:08:3b:9e:1f:53:46:2b:72:
ea:86:2a:de:87:28:13:37:f1:48:02:6d:c8:36:d5:80:f0:aa:
49:1a:90:da:59:15:b6:4f:00:61:83:08:dc:bb:41:cd:b1:dc:
73:bf:e4:48:b5:fb:96:a0:ae:d5:39:9d:ba:41:7e:75:a4:fd:
78:21:ee:d1:a8:4e:7c:a0:f4:57:d2:b0:f7:d9:d2:1b:70:ea:
bb:df:78:da:93:65:c7:c5:cb:66:43:7a:4e:ba:e3:75:ba:65:
b2:59:e3:4f:f8:a7:ba:b0:db:e7:47:78:bb:4a:1e:49:40:1f:
3d:b2:2a:e9:d7:60:aa:01:75:97:34:b4:10:28:43:bf:13:74:
61:e6:ee:86:36:bb:80:fa:53:2d:71:b5:d8:b9:23:0d:0e:eb:
7a:4c:c7:43:4f:bb:51:e0:2d:88:86:06:a6:98:7c:d3:9d:db:
2b:79:31:7d:ad:d4:c2:2c:ff:9d:49:b2:a2:77:e0:f0:01:da:
20:18:51:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:30 2025 by rpki-client