Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/SJo0j3z4U9HHdKdnPt5qzLyLnCc.roa
File: SJo0j3z4U9HHdKdnPt5qzLyLnCc.roa (raw, json)
Hash identifier: isoHcvU7atNCpp3XyoRYi7olsyQtHeorLRGNXd5Mlus=
Subject key identifier: 48:9A:34:8F:7C:F8:53:D1:C7:74:A7:67:3E:DE:6A:CC:BC:8B:9C:27
Certificate issuer: /CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Certificate serial: 018D44D563546016486C2291F5B6D43FCBA8
Authority key identifier: FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/SJo0j3z4U9HHdKdnPt5qzLyLnCc.roa
Signing time: Fri 26 Jan 2024 08:14:11 +0000
ROA not before: Fri 26 Jan 2024 08:14:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42106
IP address blocks: 185.231.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:44:d5:63:54:60:16:48:6c:22:91:f5:b6:d4:3f:cb:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Validity
Not Before: Jan 26 08:14:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=489a348f7cf853d1c774a7673ede6accbc8b9c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e2:8b:cf:80:80:08:b4:ce:e1:fc:07:b4:cc:
28:5e:f6:d3:9a:0f:de:55:69:94:2b:47:8f:37:fc:
6c:53:3a:c3:8c:b5:87:e4:84:4f:62:3a:f6:07:5a:
54:2e:87:2b:7f:9b:33:7e:fd:65:08:1b:63:8d:f8:
2c:a1:df:4f:90:e1:62:4e:d2:c1:f9:13:e6:cf:c6:
94:d2:ca:4f:5b:0b:ac:ea:6f:f3:5d:3c:a9:ae:f0:
55:1a:44:fa:7a:a5:c3:cc:63:29:5f:3c:c5:d6:da:
c8:65:d8:30:a7:6c:b7:b7:ca:6c:fa:3d:59:72:69:
8d:78:57:1c:00:a9:6c:88:79:b2:87:05:f3:81:c2:
83:a5:a6:e1:08:8f:c9:b0:65:2f:2a:08:31:b4:3c:
39:ca:76:56:36:ed:cf:ce:0d:dd:7c:98:13:0a:78:
50:9d:90:37:f0:32:0c:a5:63:e6:7d:01:01:e0:47:
fd:c1:36:63:b9:51:6a:f9:17:91:71:07:0c:ad:6b:
8d:13:76:2d:3c:04:81:b5:0f:48:76:11:3f:b6:da:
d6:1a:8c:fd:fb:14:24:96:6f:42:34:60:39:fa:49:
75:39:2b:cb:72:26:2f:3c:ac:50:fb:3f:ca:18:d7:
21:52:1e:ed:2a:8c:14:c1:be:39:d8:84:4f:24:29:
b3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:9A:34:8F:7C:F8:53:D1:C7:74:A7:67:3E:DE:6A:CC:BC:8B:9C:27
X509v3 Authority Key Identifier:
keyid:FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/SJo0j3z4U9HHdKdnPt5qzLyLnCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/1-i5yq_exco_aaqCwQT2IVIEuo2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.223.0/24
Signature Algorithm: sha256WithRSAEncryption
61:fa:40:c1:55:bd:1b:8d:19:a8:15:4d:5a:d7:a8:75:e8:d4:
01:08:c7:b3:ef:5e:c1:c5:dc:34:3d:5a:f5:8c:1b:85:a9:c6:
63:b5:e9:56:d3:b5:9b:c8:d2:9c:d2:6e:76:3c:cd:1c:28:a8:
d1:98:e2:9c:da:84:fa:56:72:18:5d:aa:3a:b9:5e:d0:5e:0c:
88:28:87:2c:3f:79:d5:b3:fe:90:74:8a:92:70:b2:7c:2e:59:
b7:6d:45:a8:ce:50:8d:a6:74:0d:67:b7:a7:52:c9:e8:df:be:
a6:b0:78:ad:ae:9d:fb:10:96:f1:0f:bd:49:53:dc:84:26:43:
a0:9d:44:ab:cf:00:a8:08:83:a8:4f:32:be:e4:c8:29:9f:02:
d9:45:94:9a:d6:3c:24:78:e7:3b:2c:3c:e7:84:02:ff:78:fd:
2a:cf:1a:7b:55:63:44:fc:25:b8:34:9f:2b:82:bd:e3:ae:e6:
27:a5:f7:8b:c0:7f:8b:b6:e3:33:30:df:e1:d6:70:14:60:fe:
7a:2e:aa:c7:b3:6c:bb:76:c9:b6:09:31:56:36:a5:ed:8b:38:
f7:3a:fc:e6:30:e3:74:ba:be:4a:11:82:7b:27:d7:ba:32:b0:
45:ca:cd:2e:9e:ec:1d:b1:a7:cd:a1:80:33:e1:e3:2b:ec:ef:
9a:e0:ef:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:50:38 2025 by rpki-client