Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/_9vpcXgOuPIozsN4V6rdOO89DmQ.roa
File: _9vpcXgOuPIozsN4V6rdOO89DmQ.roa (raw, json)
Hash identifier: OH0b6UTS+0saSzBtITPoD7oAHaBds1Ty6GcRYFIROkc=
Subject key identifier: FF:DB:E9:71:78:0E:B8:F2:28:CE:C3:78:57:AA:DD:38:EF:3D:0E:64
Certificate issuer: /CN=07bca0482d605587eb0e0c851c38e807755f9017
Certificate serial: 0194E4CC48BD47489312770A0B534F3E61DB
Authority key identifier: 07:BC:A0:48:2D:60:55:87:EB:0E:0C:85:1C:38:E8:07:75:5F:90:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B7ygSC1gVYfrDgyFHDjoB3VfkBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/_9vpcXgOuPIozsN4V6rdOO89DmQ.roa
Signing time: Sat 08 Feb 2025 09:03:00 +0000
ROA not before: Sat 08 Feb 2025 09:03:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208485
IP address blocks: 185.84.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Feb 2025 11:20:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e4:cc:48:bd:47:48:93:12:77:0a:0b:53:4f:3e:61:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07bca0482d605587eb0e0c851c38e807755f9017
Validity
Not Before: Feb 8 09:03:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ffdbe971780eb8f228cec37857aadd38ef3d0e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:01:ef:43:13:d3:ef:bf:1a:dc:30:6e:31:82:
0f:79:66:37:c2:7a:91:b6:50:b9:d6:af:a9:ad:4f:
92:77:45:5e:80:98:29:d7:af:d7:27:ea:37:92:a6:
d9:ba:48:ba:e5:9b:c2:ea:58:e9:a6:34:a8:8c:c6:
46:2f:66:9c:a9:a7:9d:6c:37:f8:1f:83:9c:26:4e:
6f:24:92:4d:46:09:77:a4:60:1d:45:74:06:ef:b6:
6d:28:5f:18:f7:41:0a:9d:f7:14:24:ad:d2:56:db:
ba:6e:40:3d:b0:31:38:c6:a5:02:55:41:6a:1e:82:
16:25:5a:fb:34:ac:97:63:b8:ce:e2:1a:13:43:e6:
8f:93:4e:2f:68:86:ab:09:1a:de:93:b9:47:f5:3a:
d6:16:2b:44:c0:15:8f:cf:1b:75:47:78:c7:47:a6:
11:b2:2f:d4:ff:bd:e1:fb:35:a2:ea:c1:c8:28:b9:
d1:71:ab:ab:c2:ef:dc:a3:05:54:49:de:3d:2f:0c:
78:6e:b9:6e:39:c5:81:a5:da:54:e1:cb:e9:9f:81:
bd:21:5d:19:32:c2:4e:3c:c8:f7:33:d8:e9:df:f0:
9f:55:43:a1:f1:c5:af:42:f2:87:e0:0f:f5:0f:9d:
6a:99:81:d5:14:1a:4a:2a:37:74:cd:f1:d3:c8:fe:
61:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DB:E9:71:78:0E:B8:F2:28:CE:C3:78:57:AA:DD:38:EF:3D:0E:64
X509v3 Authority Key Identifier:
keyid:07:BC:A0:48:2D:60:55:87:EB:0E:0C:85:1C:38:E8:07:75:5F:90:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B7ygSC1gVYfrDgyFHDjoB3VfkBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/_9vpcXgOuPIozsN4V6rdOO89DmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/B7ygSC1gVYfrDgyFHDjoB3VfkBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.157.0/24
Signature Algorithm: sha256WithRSAEncryption
af:b2:45:41:2e:08:3e:ec:57:89:f7:aa:f2:ac:ff:84:8a:13:
a1:3d:2b:7f:83:28:08:75:57:3e:3d:e4:93:e5:84:ac:ef:35:
91:4a:2a:4e:84:7a:b3:97:d0:fa:78:1b:49:70:f8:50:ee:41:
4c:ea:fb:fd:c0:81:1b:58:40:53:43:bf:82:39:6f:50:a9:30:
5f:4c:e8:a7:51:1d:77:af:4d:d3:e2:c9:03:da:07:92:b6:cf:
a4:05:34:82:7d:ea:58:f6:9f:eb:a9:4f:28:03:70:33:5a:e9:
8f:6e:a3:a0:74:fe:ba:e9:0f:a4:2f:92:03:e1:30:1c:7c:71:
b2:61:b1:c5:1d:e3:54:bf:a1:4b:1b:96:d7:84:ac:ea:18:3d:
25:b0:19:6c:e8:a6:c7:ae:c0:fe:8d:c6:31:30:51:22:3b:74:
b5:8a:07:b6:a6:42:b9:68:0c:bb:e4:d7:21:72:2d:82:1c:27:
3f:aa:cb:d9:0e:67:66:47:3c:72:e4:77:b5:c2:88:43:8c:65:
7b:73:92:f0:d7:1e:e0:4b:6d:e9:98:51:aa:0e:82:73:9c:8d:
49:d3:44:36:17:90:d3:53:d5:24:90:a8:79:b0:25:68:4d:2c:
39:ac:98:b2:71:48:96:9b:3e:8b:d4:ce:80:24:03:ad:e2:b6:
13:5e:63:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:13:09 2025 by rpki-client