Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/166933-f68c-49a0-8869-bdf55db4a90a/1/bIqeVquH3EdNOeWJ5Jx3hQZ9P0w.roa
File: bIqeVquH3EdNOeWJ5Jx3hQZ9P0w.roa (raw, json)
Hash identifier: fadfiGW0vQ/zhiuB8cD3COkkMqbw7w2HNWC6z5hMEko=
Subject key identifier: 6C:8A:9E:56:AB:87:DC:47:4D:39:E5:89:E4:9C:77:85:06:7D:3F:4C
Certificate issuer: /CN=971aeeea8798f76ec9a434e75637ecd881092ec2
Certificate serial: 01936D239A7E69C6F2427185D7CDCDACBE58
Authority key identifier: 97:1A:EE:EA:87:98:F7:6E:C9:A4:34:E7:56:37:EC:D8:81:09:2E:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lxru6oeY927JpDTnVjfs2IEJLsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/166933-f68c-49a0-8869-bdf55db4a90a/1/bIqeVquH3EdNOeWJ5Jx3hQZ9P0w.roa
Signing time: Wed 27 Nov 2024 10:21:10 +0000
ROA not before: Wed 27 Nov 2024 10:21:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202699
IP address blocks: 185.117.8.0/24 maxlen: 24
185.117.10.0/24 maxlen: 24
185.117.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:23:9a:7e:69:c6:f2:42:71:85:d7:cd:cd:ac:be:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=971aeeea8798f76ec9a434e75637ecd881092ec2
Validity
Not Before: Nov 27 10:21:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c8a9e56ab87dc474d39e589e49c7785067d3f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9c:53:56:cf:d7:d1:e4:f9:58:98:ee:65:c7:
65:bb:e1:0f:33:7f:96:3d:a2:7d:29:28:ce:b5:8a:
19:1b:cc:8a:4f:4f:14:0c:e8:01:08:9f:03:9d:f7:
1a:ec:fc:55:b6:34:34:be:9b:74:14:3c:ce:40:62:
fa:42:4d:f3:1e:13:1f:c8:c0:4e:2e:5e:21:77:7e:
94:74:02:4e:98:ac:e0:11:eb:21:68:e3:da:54:d7:
21:69:99:42:81:b7:c0:3b:bc:0d:f8:0c:5c:91:ed:
c3:a8:dc:28:14:37:67:a4:fe:bd:72:e6:97:32:30:
e6:9f:fc:ab:bd:ff:f2:30:4e:44:6a:65:1a:3c:75:
ab:4f:a9:2a:34:7e:6d:d4:1b:fc:2c:65:93:de:e3:
0e:c2:18:82:40:fd:23:8d:4e:85:6b:3e:24:80:7d:
b3:f8:de:be:0c:30:31:5e:da:a4:c8:2d:08:4e:b1:
93:f0:be:93:ab:6f:e1:c2:b4:65:fe:b0:e5:d5:55:
e7:4a:ff:59:d5:93:00:32:77:22:e2:12:d4:98:24:
57:84:b7:58:8a:3b:dc:82:d3:54:d3:4e:42:82:5e:
f6:f9:3f:75:4f:2e:bc:fd:c7:d4:7d:d4:f7:23:38:
fc:db:8e:3d:a2:6b:76:b7:fb:7d:9f:31:bf:fa:33:
31:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8A:9E:56:AB:87:DC:47:4D:39:E5:89:E4:9C:77:85:06:7D:3F:4C
X509v3 Authority Key Identifier:
keyid:97:1A:EE:EA:87:98:F7:6E:C9:A4:34:E7:56:37:EC:D8:81:09:2E:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lxru6oeY927JpDTnVjfs2IEJLsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/166933-f68c-49a0-8869-bdf55db4a90a/1/bIqeVquH3EdNOeWJ5Jx3hQZ9P0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/166933-f68c-49a0-8869-bdf55db4a90a/1/lxru6oeY927JpDTnVjfs2IEJLsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.8.0/24
185.117.10.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:cc:cf:dc:f3:e7:21:b0:d4:98:1d:ee:41:db:ef:f7:e1:27:
83:2e:10:8c:00:41:24:d2:de:79:ab:b8:bd:55:e1:cd:98:ff:
68:3e:b2:55:b5:4e:f8:4b:cc:ad:33:92:5e:dd:6d:ed:a1:9f:
0a:fa:ac:8f:b5:de:8c:c8:fb:28:33:35:9d:c2:1f:6f:45:db:
60:25:29:f6:6d:21:7b:24:c3:6a:43:0b:6f:7c:22:9d:3b:a4:
36:7d:a9:05:9e:12:0e:7d:80:ae:27:e7:44:4b:3a:37:69:de:
d6:51:35:99:ce:14:71:3f:5b:87:6d:36:37:b4:7d:f3:f7:e9:
c4:27:06:0a:2e:ce:cd:82:d7:d9:d7:02:b7:23:5a:18:1b:fd:
60:12:ba:e5:13:12:23:df:f6:d2:fa:5b:60:b0:40:a4:84:91:
47:52:6f:9d:6d:8e:b4:00:a9:c2:2e:98:af:9b:42:1e:78:70:
8c:87:31:65:f0:4b:41:28:83:6f:cf:84:eb:94:f1:21:55:e0:
e7:12:96:df:ab:e5:68:95:a1:a2:df:11:cb:dd:46:ee:e3:1a:
1c:d1:12:c9:5d:2f:4f:35:f2:8a:be:40:ce:61:7c:ef:0a:90:
92:d9:04:43:4e:ba:78:71:55:e3:be:4d:ef:1a:f1:26:d3:3f:
ec:a3:b8:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 21:02:08 2025 by rpki-client