Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b94831-65bb-406b-84c4-03b0eec7ff29/1/im7PQDxEcQzt7elLp2FcJ60U0qQ.roa
File: im7PQDxEcQzt7elLp2FcJ60U0qQ.roa (raw, json)
Hash identifier: cPP2EowoWKfFy1reDohgt0528Mq0Ex7GtJqw2x/82pc=
Subject key identifier: 8A:6E:CF:40:3C:44:71:0C:ED:ED:E9:4B:A7:61:5C:27:AD:14:D2:A4
Certificate issuer: /CN=aa9e86a76bddc1203a029d31475d3ebc57d90a41
Certificate serial: 018EE230B5C4CD54BF3CEE16F382AFDE3A74
Authority key identifier: AA:9E:86:A7:6B:DD:C1:20:3A:02:9D:31:47:5D:3E:BC:57:D9:0A:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qp6Gp2vdwSA6Ap0xR10-vFfZCkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b94831-65bb-406b-84c4-03b0eec7ff29/1/im7PQDxEcQzt7elLp2FcJ60U0qQ.roa
Signing time: Mon 15 Apr 2024 14:37:06 +0000
ROA not before: Mon 15 Apr 2024 14:37:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205185
IP address blocks: 185.114.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e2:30:b5:c4:cd:54:bf:3c:ee:16:f3:82:af:de:3a:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa9e86a76bddc1203a029d31475d3ebc57d90a41
Validity
Not Before: Apr 15 14:37:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a6ecf403c44710cedede94ba7615c27ad14d2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:13:99:9c:1e:86:9a:8f:bc:ac:00:46:89:1f:
94:69:50:3b:ed:1e:9b:81:4f:5b:c6:17:a1:34:48:
55:f7:08:75:33:b0:41:c6:b5:88:56:45:fc:63:60:
c8:1f:3c:8d:35:4e:24:16:87:f7:27:7b:da:c2:13:
de:29:d6:81:1c:ea:fd:d3:1f:13:9e:34:76:31:07:
72:5c:57:f4:83:43:79:65:79:70:e8:c5:ee:4b:c6:
76:fb:48:76:07:f0:f4:67:64:3a:c0:53:ab:85:46:
b7:29:a1:29:a2:3f:08:96:0a:0c:32:c7:33:b5:fa:
0b:39:56:9c:fd:28:41:2c:b0:f8:ff:79:93:f7:20:
63:5b:fd:e3:07:e3:5e:67:8c:5a:b9:05:43:5a:8f:
b0:07:54:5d:00:c4:91:c1:69:53:f4:28:ba:b5:4a:
bb:2a:b1:b3:45:92:56:7a:da:26:96:8c:41:f3:7b:
da:71:b8:19:2c:0a:e5:38:de:e6:7e:76:0f:fa:e7:
4e:86:c2:fc:77:30:0e:ef:cb:8d:73:43:bb:e6:2f:
d3:88:6c:d2:39:81:ef:61:64:bb:e1:37:f0:f0:20:
80:e4:53:0f:a6:27:43:a0:4f:58:97:c1:f2:f1:f4:
3c:17:4f:83:f0:0e:e1:58:3f:77:e0:02:6e:27:43:
b4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:6E:CF:40:3C:44:71:0C:ED:ED:E9:4B:A7:61:5C:27:AD:14:D2:A4
X509v3 Authority Key Identifier:
keyid:AA:9E:86:A7:6B:DD:C1:20:3A:02:9D:31:47:5D:3E:BC:57:D9:0A:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qp6Gp2vdwSA6Ap0xR10-vFfZCkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b94831-65bb-406b-84c4-03b0eec7ff29/1/im7PQDxEcQzt7elLp2FcJ60U0qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b94831-65bb-406b-84c4-03b0eec7ff29/1/qp6Gp2vdwSA6Ap0xR10-vFfZCkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.236.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d1:c9:ce:cf:06:06:cc:32:4c:00:81:f7:f2:6a:fe:10:e7:
12:14:75:bb:98:8a:af:9a:60:c9:82:72:31:7d:51:ec:a8:df:
8b:a2:48:d3:8a:30:21:cf:70:94:72:2e:66:58:e5:24:b2:77:
25:4a:6a:c8:b4:d9:7e:52:2a:06:67:d4:2b:fa:96:01:44:f9:
6a:d1:1d:fd:4d:7d:93:60:67:a7:4d:86:f2:e3:6f:bc:13:d0:
3e:cb:8b:0a:84:a9:2f:fe:63:d3:4e:39:75:f8:f7:1e:5c:05:
c7:93:17:8f:52:06:04:b5:89:aa:54:df:2a:80:da:d2:c4:29:
c7:b6:c2:b7:85:d7:4e:0c:c9:19:8d:3d:b0:09:f9:56:72:3f:
ae:7d:ac:10:38:60:ef:69:41:88:88:73:ff:99:9a:a0:91:c3:
b5:32:94:eb:e6:45:29:9f:2b:b9:a4:f1:d3:ce:c5:13:4e:1b:
db:f0:2f:23:10:d4:cf:8a:97:5b:f7:5e:3b:54:1f:e1:fe:13:
c5:f9:88:f6:3b:bc:9e:02:21:c5:86:cd:29:bf:de:f1:02:ed:
b4:04:d0:cc:67:6d:01:62:f2:dc:80:74:0c:01:54:46:5c:1e:
91:7f:61:ee:e4:07:a9:bf:ee:ad:a4:81:ae:50:7d:88:89:e4:
33:ca:8b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:15 2025 by rpki-client