Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/_tRMf0xgto0VWFPUVPsDnLeBhbI.roa
File: _tRMf0xgto0VWFPUVPsDnLeBhbI.roa (raw, json)
Hash identifier: w2ayBpUNH/dduWOoVf/Fqm6VW4hQOUVThzySTSL2v/o=
Subject key identifier: FE:D4:4C:7F:4C:60:B6:8D:15:58:53:D4:54:FB:03:9C:B7:81:85:B2
Certificate issuer: /CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Certificate serial: 0193D404B3B32A9E011B6D5069471EDEAEBF
Authority key identifier: 9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/_tRMf0xgto0VWFPUVPsDnLeBhbI.roa
Signing time: Tue 17 Dec 2024 09:48:18 +0000
ROA not before: Tue 17 Dec 2024 09:48:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43395
IP address blocks: 185.110.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:51:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d4:04:b3:b3:2a:9e:01:1b:6d:50:69:47:1e:de:ae:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Validity
Not Before: Dec 17 09:48:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fed44c7f4c60b68d155853d454fb039cb78185b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fa:d2:f9:7a:a4:28:f5:b4:d7:ba:b0:c8:aa:
9d:cd:a5:c4:52:1d:14:16:9f:f0:c0:a2:df:f1:4a:
3b:28:64:61:44:52:fc:98:99:41:fc:19:51:91:49:
d9:67:64:a1:67:6e:67:77:1e:6f:fb:12:60:60:60:
38:25:70:79:9d:12:79:c6:f1:a4:23:ae:c2:18:08:
3b:2b:52:4e:07:c6:44:d5:b4:50:69:87:dc:c3:50:
a4:d0:a3:d5:3a:aa:48:c8:8e:fa:a6:25:2e:21:e2:
e6:6d:7f:09:c6:b6:26:d8:fc:8c:14:c7:fb:b1:af:
2a:b0:ed:25:5b:4a:2a:8d:c3:ec:e8:2e:47:a2:0c:
47:91:25:93:d5:d8:31:26:d8:7b:9d:81:c2:8e:ba:
97:31:dd:9d:56:c5:ca:b8:c3:3d:42:c8:40:9a:9f:
ba:c5:d9:90:96:95:8b:2e:3f:2b:36:5c:16:1b:43:
ec:f9:7a:1e:a5:f8:28:bd:3b:c5:3a:19:b5:bb:1c:
5d:23:a6:da:ed:e2:59:e4:2b:6b:eb:e0:e2:33:8b:
33:87:22:d5:b7:4a:d4:8b:52:06:b1:35:1d:36:7d:
32:6f:47:5c:15:3f:41:e3:01:cd:c8:1e:7f:70:1d:
68:e0:3d:89:91:10:59:c6:8f:1d:53:19:85:2b:c2:
6e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D4:4C:7F:4C:60:B6:8D:15:58:53:D4:54:FB:03:9C:B7:81:85:B2
X509v3 Authority Key Identifier:
keyid:9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/_tRMf0xgto0VWFPUVPsDnLeBhbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.218.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:a4:20:4d:06:8d:38:6f:32:29:09:48:8f:3b:dd:7c:e9:be:
49:49:d6:8c:3a:ae:27:57:3a:70:5f:a6:66:48:e5:a3:c5:c1:
7b:52:df:a4:42:45:1b:14:e5:e0:f1:62:9c:f5:d9:e9:1f:9e:
7e:e6:90:bc:01:e5:c7:f0:91:94:31:07:73:40:57:db:e3:20:
24:3d:29:0a:66:93:c2:14:36:cd:7f:e1:91:0e:da:53:95:8d:
01:e2:65:bc:af:ab:31:5f:24:b9:4b:80:fb:cc:75:50:cf:99:
02:15:88:9b:85:9a:84:b1:89:91:5e:f4:2f:35:ef:5c:21:ef:
bc:59:16:1a:ca:00:00:19:9d:08:54:b8:43:54:7e:e6:86:62:
b9:f9:98:cf:ec:be:20:d3:22:3c:7d:92:79:50:76:ba:28:48:
15:bc:ea:58:9f:ea:bc:c1:96:cb:f4:67:ad:72:4d:9d:6d:14:
71:5e:7f:47:5c:e7:57:6e:cf:27:7a:81:7b:72:64:6c:ca:d2:
b0:d6:de:1f:c9:1e:49:d8:91:79:68:b9:7a:40:c4:cd:06:95:
60:af:fb:61:e3:25:a7:f6:df:d1:66:60:4e:cb:f9:25:24:ed:
e8:64:dd:b1:dc:40:be:0f:84:dc:74:f5:0e:d2:85:d9:08:e0:
5f:cc:ce:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:07:29 2025 by rpki-client