Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/fsdUqmGkdU0zvwMhFAZcJJFLwSc.roa
File: fsdUqmGkdU0zvwMhFAZcJJFLwSc.roa (raw, json)
Hash identifier: AXDNTBkUHd9KCJwNF8g9qgANDRJN58/NCpH9EBtG8do=
Subject key identifier: 7E:C7:54:AA:61:A4:75:4D:33:BF:03:21:14:06:5C:24:91:4B:C1:27
Certificate issuer: /CN=13fc5ddf49e36d69936301ad22bf243a471b524c
Certificate serial: 018CC4939F96206D087C52EDFC9D5B310774
Authority key identifier: 13:FC:5D:DF:49:E3:6D:69:93:63:01:AD:22:BF:24:3A:47:1B:52:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E_xd30njbWmTYwGtIr8kOkcbUkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/fsdUqmGkdU0zvwMhFAZcJJFLwSc.roa
Signing time: Mon 01 Jan 2024 10:30:58 +0000
ROA not before: Mon 01 Jan 2024 10:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204478
IP address blocks: 185.11.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 11 Apr 2024 06:22:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:9f:96:20:6d:08:7c:52:ed:fc:9d:5b:31:07:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13fc5ddf49e36d69936301ad22bf243a471b524c
Validity
Not Before: Jan 1 10:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ec754aa61a4754d33bf032114065c24914bc127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:65:4d:ce:2e:ce:41:03:2f:d1:0f:0b:60:3c:
26:20:43:36:22:b2:5b:62:24:a2:96:a4:25:37:f6:
87:d7:b5:87:4a:f3:c6:91:44:e6:21:87:01:2a:86:
07:d3:f2:5e:68:eb:14:71:18:d1:03:2e:16:e2:81:
6a:49:72:c4:01:0b:4d:2f:33:1f:b5:c4:ec:a9:23:
64:69:a2:3d:ea:89:1b:ac:7d:5e:55:2a:28:87:fb:
73:51:78:74:0c:06:03:95:bf:e3:43:b6:72:42:44:
bc:b0:8d:7e:90:15:18:d9:7b:2a:ba:eb:b1:5d:0a:
56:f8:6f:a3:7d:bc:9d:e5:6a:35:b3:72:b7:53:2b:
63:08:7e:48:40:7b:56:be:63:01:f5:2d:00:1f:11:
f0:00:dc:2a:b7:4a:ee:bf:bb:f0:46:54:a3:59:14:
ac:b6:5b:d7:bf:a5:9e:9c:cc:f6:4a:ab:b4:3b:51:
b8:4c:1a:65:1b:03:46:26:1e:4d:5a:5a:43:83:7b:
e1:29:b4:62:20:06:9e:31:3c:8f:53:16:c8:2c:05:
24:ca:5c:2a:d9:60:20:5c:5a:04:d4:78:4d:2b:23:
88:cb:a0:78:1b:fa:df:53:2a:53:f3:be:a2:c3:18:
d6:5f:10:2b:9f:a7:4d:d8:49:58:67:75:6d:16:2d:
69:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C7:54:AA:61:A4:75:4D:33:BF:03:21:14:06:5C:24:91:4B:C1:27
X509v3 Authority Key Identifier:
keyid:13:FC:5D:DF:49:E3:6D:69:93:63:01:AD:22:BF:24:3A:47:1B:52:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E_xd30njbWmTYwGtIr8kOkcbUkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/fsdUqmGkdU0zvwMhFAZcJJFLwSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/E_xd30njbWmTYwGtIr8kOkcbUkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.168.0/22
Signature Algorithm: sha256WithRSAEncryption
09:66:fd:c8:21:86:5c:00:98:7d:13:22:95:69:69:b4:5b:54:
d3:ca:c6:6b:de:4e:50:38:18:12:ea:ab:87:78:ad:0e:77:ea:
2e:da:70:9c:83:74:e9:40:e4:4b:33:9a:4a:43:a2:e2:3f:ce:
95:67:78:88:87:34:4e:39:b9:6f:39:40:e3:a3:dc:0c:a2:e8:
7e:15:ac:a6:62:8b:b6:30:39:8e:eb:27:05:2d:88:53:24:1b:
ac:96:04:44:91:99:09:a8:3d:b1:b4:e6:26:88:7f:92:66:c0:
70:a6:9a:79:2a:4b:d1:f2:71:40:da:a0:8c:bf:b1:33:39:98:
e2:1c:dc:53:06:e1:89:90:3a:2c:85:b6:47:ed:3d:3d:f4:b0:
78:fc:aa:8d:8d:67:29:bd:ab:3d:49:25:ef:62:42:17:ed:22:
a4:bc:b6:64:39:9a:24:13:57:2d:6b:1a:d0:6d:48:3b:04:68:
ca:70:30:57:18:c0:23:ba:cc:24:8e:cc:f5:59:59:17:cb:60:
8b:de:ae:01:5b:fc:45:14:dc:95:1d:9f:01:ee:90:a3:69:41:
86:16:c4:ed:e5:fb:00:ba:9c:b4:bb:b8:0f:b3:6a:fa:b2:a4:
fd:d0:3a:77:7a:0b:e9:64:53:fa:be:19:50:02:98:84:06:56:
f6:fa:1b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:20:27 2025 by rpki-client