Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8fZCrueUJ3XnZeRfbaxJE5gWghc.roa
File: 8fZCrueUJ3XnZeRfbaxJE5gWghc.roa (raw, json)
Hash identifier: Pn+j62AD1+zCxkyS1Fq3j6qldUABW/Tj9fUMdKn/IMo=
Subject key identifier: F1:F6:42:AE:E7:94:27:75:E7:65:E4:5F:6D:AC:49:13:98:16:82:17
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0194D49ADE4134142B68B6015F93E998BB4B
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8fZCrueUJ3XnZeRfbaxJE5gWghc.roa
Signing time: Wed 05 Feb 2025 05:35:06 +0000
ROA not before: Wed 05 Feb 2025 05:35:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 46450
IP address blocks: 151.243.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Feb 2025 06:12:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d4:9a:de:41:34:14:2b:68:b6:01:5f:93:e9:98:bb:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Feb 5 05:35:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1f642aee7942775e765e45f6dac491398168217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:70:6f:af:75:ad:78:42:56:70:7b:0b:08:a2:
c1:30:19:b6:7e:0b:a1:22:ed:f0:54:e5:5d:2a:ec:
76:74:2e:59:8a:03:18:09:51:3f:64:25:14:48:c5:
22:cd:df:27:a7:2d:1c:00:c7:2d:e4:b1:39:43:f1:
63:70:52:de:0e:87:36:bf:44:3e:a5:7a:29:42:81:
9d:4a:77:23:04:b2:07:28:30:66:46:48:4c:1f:bd:
95:c2:66:9e:04:d3:6e:0c:f2:db:15:ac:70:33:b1:
e8:25:9e:5e:bd:9f:3b:17:c0:6f:6e:10:5d:86:c7:
8e:a3:39:17:44:2c:fd:3f:f0:a1:ad:2b:f3:e2:46:
c9:13:8b:49:f6:f8:e0:5b:39:3b:87:b2:25:96:9d:
d3:bd:29:f7:ca:ed:92:05:04:95:e8:24:20:22:36:
69:33:d3:9f:6d:81:5f:8c:2a:7e:ed:01:71:e7:c6:
20:89:d3:28:df:25:e4:e4:68:7f:ed:db:e4:8f:5b:
47:a5:24:60:59:f4:53:16:3b:88:03:2a:ae:1b:78:
f3:94:f0:eb:22:c0:dc:16:24:bc:dc:84:57:21:b9:
8f:bf:93:80:66:f6:b6:28:6b:22:4e:42:ec:2e:5c:
c4:76:44:26:0e:7f:80:1a:31:b8:c5:8c:ed:41:8e:
5c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F6:42:AE:E7:94:27:75:E7:65:E4:5F:6D:AC:49:13:98:16:82:17
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8fZCrueUJ3XnZeRfbaxJE5gWghc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.85.0/24
Signature Algorithm: sha256WithRSAEncryption
92:44:b3:8b:40:19:35:40:ca:c2:37:6a:ee:99:5a:bd:73:14:
36:85:0c:12:93:1e:a7:56:de:f5:48:52:82:9e:7d:1f:65:0a:
f0:f3:e2:ee:c4:72:fe:1b:5e:96:25:f3:e7:b3:3f:cb:20:59:
24:bd:70:9c:5d:46:8b:79:f6:18:13:69:f2:a2:c1:40:be:de:
27:9b:1a:28:f9:96:ca:9f:e5:15:8a:a9:69:85:46:10:af:c9:
1e:2c:82:0b:ba:12:0a:be:59:e9:87:16:95:61:64:3b:4c:36:
fd:d0:08:d4:36:f2:21:2c:f8:1e:04:3c:7d:86:1f:16:06:5d:
fc:1b:0c:02:19:ec:9b:83:6d:56:04:49:90:16:27:86:c0:e8:
c5:f8:79:bc:25:2c:88:80:ab:fb:e8:2d:ff:7d:9f:ae:de:a7:
b9:64:d5:7f:9f:3a:e2:7e:d5:b5:91:bd:c9:4f:90:67:53:71:
fc:27:af:bf:9c:51:b3:97:c0:0d:d5:dc:0d:d9:e4:67:93:ba:
79:4e:b6:0f:1b:5a:9f:ba:c9:3b:42:91:54:05:2b:21:91:7c:
1c:2f:3c:b3:91:f9:e8:22:92:e0:cc:a6:57:cd:65:02:2d:2c:
f8:2e:f8:c0:86:f8:07:5b:cb:7d:b9:6d:4e:3f:1c:2d:a7:eb:
3b:ea:89:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:49:38 2025 by rpki-client