Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1-uFGyEDrsJ2Tn-2rEKT_dIMcV7s.roa
File: 1-uFGyEDrsJ2Tn-2rEKT_dIMcV7s.roa (raw, json)
Hash identifier: VBjHQuaKImGimGPCmnypVNR3O3LL9PxVL9z9KgYtrow=
Subject key identifier: FA:E1:46:C8:40:EB:B0:9D:93:9F:ED:AB:10:A4:FF:74:83:1C:57:BB
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0194221F6F271D6800D91AB5729EDE4B9A02
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1-uFGyEDrsJ2Tn-2rEKT_dIMcV7s.roa
Signing time: Wed 01 Jan 2025 13:47:52 +0000
ROA not before: Wed 01 Jan 2025 13:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 152179
IP address blocks: 185.179.218.0/23 maxlen: 24
188.64.104.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Feb 2025 08:57:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:6f:27:1d:68:00:d9:1a:b5:72:9e:de:4b:9a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 13:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fae146c840ebb09d939fedab10a4ff74831c57bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5a:2a:6f:1d:59:18:36:40:30:1b:6b:89:e9:
4c:ad:26:1e:ca:64:72:a4:77:79:70:2f:d9:85:b7:
5f:b5:5b:23:93:b9:80:35:86:a0:56:75:51:1b:22:
99:ae:50:68:58:20:19:1c:d6:80:47:06:9f:37:d5:
77:ab:d5:74:d0:40:be:81:88:d6:77:6f:cb:be:d1:
d3:c8:6f:0e:35:29:85:b2:d9:23:2c:ea:0d:dc:33:
16:44:7a:e9:fc:7d:a7:c3:50:bf:87:be:06:9e:f5:
60:e0:db:a0:6a:9c:ee:d0:b1:f4:60:7c:27:38:de:
cd:02:fc:02:16:8f:0d:ac:29:0a:87:8d:0e:aa:83:
30:e8:c1:8c:82:76:5a:11:61:35:55:f8:0f:95:8c:
0b:47:2a:66:43:b8:3a:e6:7f:19:25:b9:59:4b:ce:
dc:50:92:41:00:b0:53:af:7d:e5:70:f4:ce:6f:21:
68:69:ac:06:70:8a:2d:8d:a3:a5:66:45:92:91:26:
ac:70:3c:1f:5c:ea:5e:0d:fb:b0:e4:3e:db:24:b8:
08:5e:fa:b0:91:25:23:f8:11:84:12:6d:ed:06:55:
7f:4f:98:7f:2d:ce:33:48:00:55:bc:22:f2:47:5e:
85:3a:c6:fe:44:3a:59:48:dc:46:d7:a9:d3:71:2a:
18:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E1:46:C8:40:EB:B0:9D:93:9F:ED:AB:10:A4:FF:74:83:1C:57:BB
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1-uFGyEDrsJ2Tn-2rEKT_dIMcV7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.218.0/23
188.64.104.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:53:32:3c:78:95:3e:a3:e6:bd:f6:3d:6e:16:1c:1f:26:29:
8e:3a:ef:43:bf:5f:39:11:a3:75:24:e6:23:53:19:00:4e:c7:
0f:2d:d9:e8:7a:4e:14:63:cc:82:5d:f8:20:62:dd:48:ee:03:
9b:5e:80:c6:a7:c3:23:a6:f2:d6:53:f9:53:43:10:ac:28:8f:
fe:d1:79:e3:83:49:e8:c3:42:5c:75:84:4d:c6:34:51:bd:6a:
b5:cd:6b:66:a5:d9:a8:05:cc:ce:31:52:88:59:27:eb:a6:ac:
22:c0:82:84:6b:6b:62:18:b8:36:80:9c:97:16:ae:d9:cb:10:
5c:a9:4f:5b:71:21:20:48:dd:ea:cb:c5:a7:4f:ea:ac:ef:b2:
ef:b6:0d:ef:9a:28:0a:09:33:66:8b:a4:89:72:2d:26:8a:45:
a1:11:ab:3a:e3:60:d6:a9:a4:a8:5c:17:8f:09:da:4c:45:fd:
74:c1:4f:22:68:0b:18:98:7f:a2:f4:0e:41:b6:09:27:b8:69:
d9:e8:19:a9:be:f4:65:47:87:57:73:0f:38:1b:16:bc:b8:63:
0e:7e:60:32:08:a7:32:40:aa:9c:87:5a:05:8e:f3:e4:ef:5e:
f5:5b:b4:4e:79:1e:7d:08:7d:4f:0e:02:2a:ac:e1:7d:af:7a:
3d:bf:61:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:15:55 2025 by rpki-client