Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/baa372-823b-4b07-9aab-cbbd01f2b91c/1/4TFLu2xR4nfrdhX-GPufLRy54Wo.roa
File: 4TFLu2xR4nfrdhX-GPufLRy54Wo.roa (raw, json)
Hash identifier: nqpU+gfbeRkR8kjEHsjrj5UrzRVV+y0zKmCrq76/qOg=
Subject key identifier: E1:31:4B:BB:6C:51:E2:77:EB:76:15:FE:18:FB:9F:2D:1C:B9:E1:6A
Certificate issuer: /CN=246f9be783d73d95ab8aa54619e60f9011c04d67
Certificate serial: 01945BFCF3D3210B98AC37679E71D7FE84EC
Authority key identifier: 24:6F:9B:E7:83:D7:3D:95:AB:8A:A5:46:19:E6:0F:90:11:C0:4D:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JG-b54PXPZWriqVGGeYPkBHATWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/baa372-823b-4b07-9aab-cbbd01f2b91c/1/4TFLu2xR4nfrdhX-GPufLRy54Wo.roa
Signing time: Sun 12 Jan 2025 19:28:11 +0000
ROA not before: Sun 12 Jan 2025 19:28:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43754
IP address blocks: 185.7.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Jan 2025 08:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5b:fc:f3:d3:21:0b:98:ac:37:67:9e:71:d7:fe:84:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=246f9be783d73d95ab8aa54619e60f9011c04d67
Validity
Not Before: Jan 12 19:28:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e1314bbb6c51e277eb7615fe18fb9f2d1cb9e16a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3a:e6:fe:41:25:8e:bd:97:70:9b:75:a7:6f:
7b:42:43:88:8f:0b:dd:54:bb:43:10:d7:23:0e:7c:
91:25:03:7c:0e:b3:60:db:de:3d:d2:26:55:cb:db:
2d:8c:ee:b7:0d:16:54:cd:fe:43:5f:d7:98:75:33:
ee:8c:48:b4:a0:c6:5e:b3:18:93:6c:b1:4c:5d:02:
35:7a:f8:41:b6:16:73:c2:1d:77:0f:b2:08:20:62:
6c:93:df:05:2a:ee:f2:d6:9e:46:81:62:39:07:8d:
ee:33:6f:ff:08:b6:c7:83:01:ef:78:21:39:34:5f:
d3:0b:e9:9b:97:a3:66:38:da:54:5f:65:e4:14:99:
d8:7d:de:8b:19:71:5a:1d:fc:4b:20:85:a2:0d:62:
7f:1d:43:5a:56:91:24:ca:c3:81:25:b5:47:d7:e9:
6d:46:ab:e7:f1:c0:16:d1:97:e1:d3:4c:ad:c9:68:
32:1f:c1:a7:a2:fa:5b:61:cf:3d:8f:b0:c2:6a:c1:
03:89:94:f9:48:8d:e7:86:17:9f:92:b1:bf:26:73:
d8:a5:ce:de:4f:4f:d5:5b:54:79:15:65:bd:87:84:
a3:42:d6:4f:86:0c:ea:0c:ca:98:f6:e2:a6:92:15:
6e:f8:77:26:2c:4d:b2:b5:4a:09:0f:4c:5b:74:48:
e0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:31:4B:BB:6C:51:E2:77:EB:76:15:FE:18:FB:9F:2D:1C:B9:E1:6A
X509v3 Authority Key Identifier:
keyid:24:6F:9B:E7:83:D7:3D:95:AB:8A:A5:46:19:E6:0F:90:11:C0:4D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JG-b54PXPZWriqVGGeYPkBHATWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/baa372-823b-4b07-9aab-cbbd01f2b91c/1/4TFLu2xR4nfrdhX-GPufLRy54Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/baa372-823b-4b07-9aab-cbbd01f2b91c/1/JG-b54PXPZWriqVGGeYPkBHATWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.172.0/24
Signature Algorithm: sha256WithRSAEncryption
76:1c:e3:d1:00:41:c1:92:0b:a4:5d:12:32:74:02:ea:63:7f:
46:aa:3d:60:15:41:2e:d0:c1:2f:a2:b5:69:6e:8a:88:7e:79:
38:06:f1:9a:c9:3c:37:c1:0c:45:83:72:c9:85:74:61:0b:b8:
2d:67:d2:ed:6c:e3:2e:02:1a:b1:ff:d3:24:06:ab:fc:65:bf:
74:6d:7a:5c:d2:38:b6:29:50:c0:d2:81:f3:1e:a0:78:39:4d:
17:b2:56:7a:eb:4c:6d:03:e2:d2:2e:8d:72:81:94:c5:69:4e:
65:13:50:dc:79:36:26:42:93:df:4f:1a:c7:bd:36:55:e5:33:
83:8e:0c:cf:b7:d0:c2:c9:5e:66:c7:99:f9:25:19:5f:be:92:
5e:dc:1a:94:29:91:7c:51:ee:da:62:f5:42:2f:e4:f6:03:58:
8b:12:19:39:97:a6:04:f2:9c:26:62:d5:2f:d9:d5:10:23:ce:
1a:60:dc:95:a1:4e:a6:c3:2c:20:df:f5:86:c6:1e:96:7b:70:
2f:b5:cc:52:73:81:13:1d:b7:d3:3e:2c:92:61:e2:aa:6a:2f:
3d:cc:02:e9:69:7a:21:19:01:f6:4f:b6:4c:95:a2:67:1f:5e:
eb:5e:7f:4a:98:5d:00:d1:8f:df:d9:43:22:ca:47:3a:29:7a:
50:05:d0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:58:01 2025 by rpki-client