Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/bTXoDkOGTjzBCfrzDxr9wVTi33s.roa
File: bTXoDkOGTjzBCfrzDxr9wVTi33s.roa (raw, json)
Hash identifier: M6Z387SMWJxqE2+eZa24BAfB6n83N4sykMm3JvelYz4=
Subject key identifier: 6D:35:E8:0E:43:86:4E:3C:C1:09:FA:F3:0F:1A:FD:C1:54:E2:DF:7B
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 01911E1910C24A1B4BE8A8517BAF974440BA
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/bTXoDkOGTjzBCfrzDxr9wVTi33s.roa
Signing time: Sun 04 Aug 2024 15:54:04 +0000
ROA not before: Sun 04 Aug 2024 15:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 185.215.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 12:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:1e:19:10:c2:4a:1b:4b:e8:a8:51:7b:af:97:44:40:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Aug 4 15:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d35e80e43864e3cc109faf30f1afdc154e2df7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:22:34:f9:55:78:9e:54:02:16:ab:0d:ac:2c:
e0:b1:a3:8b:44:4f:ff:5c:57:33:c2:12:78:ad:72:
cb:86:c9:09:5d:79:29:18:d5:5d:2f:8f:86:9b:c7:
cb:64:6c:39:6d:79:16:6f:63:dc:e9:40:b6:23:79:
e0:b4:54:dc:d8:79:66:2e:47:6b:ea:da:36:e3:87:
9e:f0:74:5c:d6:59:a7:08:8d:ff:15:4f:e4:62:df:
3c:a9:00:d2:0d:4f:f8:b4:aa:78:75:c8:35:97:62:
64:77:e7:6f:ad:d5:f1:be:52:69:f1:b0:af:44:3a:
95:42:63:5f:bb:52:ff:2a:48:85:cc:c6:0a:1a:fc:
ff:81:3a:9a:70:43:dc:41:11:d6:1c:d4:6b:6f:44:
48:22:97:c8:eb:e9:a2:a4:e0:e0:35:fc:59:c2:70:
80:2e:6e:7d:55:d4:3e:61:e7:84:8f:70:a7:18:6f:
35:ff:29:c1:69:ae:f6:59:87:ac:15:bb:a4:db:f6:
af:ef:e2:a2:0f:33:0d:9d:46:93:a9:ff:1b:62:5c:
54:36:ef:3a:38:38:28:9c:a5:43:77:80:36:ce:af:
cf:91:66:6c:bb:ff:88:e5:55:b2:92:9e:79:d1:69:
29:da:55:55:ee:09:06:bc:9c:3c:79:d7:c8:83:ba:
4f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:35:E8:0E:43:86:4E:3C:C1:09:FA:F3:0F:1A:FD:C1:54:E2:DF:7B
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/bTXoDkOGTjzBCfrzDxr9wVTi33s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.228.0/24
Signature Algorithm: sha256WithRSAEncryption
13:cd:b1:db:c0:be:9c:4f:3f:04:75:ef:fe:00:bd:8d:7a:57:
4b:ca:5f:cb:1b:16:1e:ed:23:49:78:28:8b:bf:35:ce:59:54:
87:33:5a:47:d6:c4:38:75:a8:a4:3f:6e:b8:0b:45:d2:19:3d:
64:d9:43:e3:7e:73:27:21:9e:fa:d1:34:b7:a7:3f:91:0c:87:
88:ef:2b:63:b2:3b:36:80:7b:80:e6:fb:36:dd:a3:7b:46:f7:
41:00:8b:00:1e:18:8e:9c:ce:e8:d6:54:97:56:b8:11:d7:c4:
84:9b:1c:86:b3:08:5c:0e:e1:48:3d:4c:68:95:2d:07:0d:a1:
24:2a:e1:f4:91:70:df:c8:d7:00:bc:f6:68:76:5a:68:17:b9:
3c:e4:44:37:76:b5:35:7c:a4:b2:83:9c:a7:f7:af:ac:fb:f7:
78:54:fc:90:a7:36:c3:7b:a2:45:4c:25:fb:59:9e:ae:4f:3b:
9e:c8:fa:7d:8f:48:82:65:26:bd:8e:67:d2:87:55:55:2b:dc:
b2:7a:3a:11:ed:88:f3:2c:b2:c8:b0:a1:d2:06:27:5b:cf:93:
ea:36:c8:60:40:10:79:58:aa:da:c3:17:3e:c1:f2:2c:2b:a9:
c9:0a:22:95:42:14:66:9c:15:59:e3:9b:4b:57:50:92:b8:15:
d0:48:70:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:54 2025 by rpki-client