Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/99b6b6-c2a6-4a7b-8045-9229cf492fb4/1/s5T0YEsOfsyyRsdprtz_53cwZ-E.roa
File: s5T0YEsOfsyyRsdprtz_53cwZ-E.roa (raw, json)
Hash identifier: omgy9UVVxuVpEucksR1bpVWra+qTWgQRKlBy3cy7Uhk=
Subject key identifier: B3:94:F4:60:4B:0E:7E:CC:B2:46:C7:69:AE:DC:FF:E7:77:30:67:E1
Certificate issuer: /CN=b30fd255c96b42e72b5688c670f6e26119ad3935
Certificate serial: 018CC26D3566C4ED3CDDA3E1A5EFF2C5B242
Authority key identifier: B3:0F:D2:55:C9:6B:42:E7:2B:56:88:C6:70:F6:E2:61:19:AD:39:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sw_SVclrQucrVojGcPbiYRmtOTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/99b6b6-c2a6-4a7b-8045-9229cf492fb4/1/s5T0YEsOfsyyRsdprtz_53cwZ-E.roa
Signing time: Mon 01 Jan 2024 00:29:46 +0000
ROA not before: Mon 01 Jan 2024 00:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51814
IP address blocks: 185.99.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 08:13:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:35:66:c4:ed:3c:dd:a3:e1:a5:ef:f2:c5:b2:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b30fd255c96b42e72b5688c670f6e26119ad3935
Validity
Not Before: Jan 1 00:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b394f4604b0e7eccb246c769aedcffe7773067e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:89:88:e9:13:c1:b9:ce:e7:2c:80:60:a3:bc:
7e:d3:88:e6:e0:7f:13:76:55:7a:40:df:0b:de:a4:
3b:f9:45:ff:b1:0a:eb:66:9c:bb:67:5e:e1:86:19:
8f:5d:e6:41:b6:76:32:84:f3:d2:1a:4b:c8:cf:47:
6c:18:9e:eb:57:da:db:8d:4d:20:06:f8:44:74:f8:
4f:b3:79:02:1c:83:53:97:69:d3:c4:c0:f5:01:67:
e3:40:f7:47:aa:06:1e:33:46:98:af:4d:1f:7d:43:
c1:8f:46:4f:31:df:ff:2b:c4:fc:f0:9f:0d:06:5f:
06:bf:ec:7d:b5:7e:10:ad:37:9a:0e:54:94:96:00:
09:b1:ce:3a:7a:52:c3:ee:10:0d:b5:bf:aa:86:81:
09:bd:e0:ef:1c:c4:3f:af:23:17:1e:95:c6:4d:16:
fb:90:f1:d0:af:d0:fe:ee:91:47:a5:b4:94:72:23:
50:57:dd:4f:bb:1d:cf:9e:17:1f:b1:c8:25:b8:de:
36:2c:4c:47:4b:e9:77:93:df:8c:30:48:4b:b9:c9:
fc:0b:f5:42:d4:e7:3d:df:9c:e1:73:94:b6:79:7d:
8f:de:9b:2c:e6:a0:e5:ee:c4:c5:06:18:dd:c1:3d:
0b:e6:1c:57:39:06:a8:d4:d9:93:9d:33:3e:c5:41:
40:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:94:F4:60:4B:0E:7E:CC:B2:46:C7:69:AE:DC:FF:E7:77:30:67:E1
X509v3 Authority Key Identifier:
keyid:B3:0F:D2:55:C9:6B:42:E7:2B:56:88:C6:70:F6:E2:61:19:AD:39:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sw_SVclrQucrVojGcPbiYRmtOTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/99b6b6-c2a6-4a7b-8045-9229cf492fb4/1/s5T0YEsOfsyyRsdprtz_53cwZ-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/99b6b6-c2a6-4a7b-8045-9229cf492fb4/1/sw_SVclrQucrVojGcPbiYRmtOTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.22.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c9:3f:c7:4c:0e:f8:ce:1d:ef:52:d9:41:ce:e0:05:22:a6:
e1:96:3c:5c:de:00:d6:fb:0a:1c:fa:3e:76:f1:18:a5:a8:88:
a9:3d:59:bf:f8:ca:94:ac:c5:0a:12:6e:d9:45:59:83:6d:11:
d4:86:21:c8:54:bf:1b:e3:57:b2:51:4a:0f:4b:a5:e5:1f:e1:
89:85:39:11:f1:c7:16:ef:6a:d4:55:dc:3e:56:51:81:4b:9f:
bc:4d:34:2b:f2:37:9b:b6:94:13:c6:f5:e0:3d:67:b2:80:7c:
84:e9:8f:b6:60:12:3c:24:06:fc:0f:a8:1e:39:c0:6b:b6:56:
d3:d7:16:3e:19:ab:3b:48:60:b6:5c:56:51:46:bd:b3:a7:47:
93:14:fa:06:4d:f7:dd:7b:e1:ab:b5:e2:59:c2:59:c7:b8:9f:
d7:73:94:71:db:2c:36:d4:7c:df:ef:75:c2:69:5a:7c:de:5f:
56:0f:c2:01:15:7b:78:40:45:57:86:ba:6f:c6:15:63:48:9d:
e1:7a:41:2c:dd:57:a4:86:3a:13:f5:7b:1b:51:fa:30:7b:86:
3f:cb:84:cd:03:5d:e0:63:dc:13:ca:e2:29:6e:66:d2:56:70:
d3:a1:2e:e7:8d:92:5e:ac:88:9e:a3:bf:f1:4c:14:d3:06:26:
73:4f:4a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:07 2025 by rpki-client