Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/W_ZtfRjKxOod_iI7g6ck_dy3_oc.roa
File: W_ZtfRjKxOod_iI7g6ck_dy3_oc.roa (raw, json)
Hash identifier: uQtNSZDalHG6xAwLJ4prwjDx/PhupeKfa+CqJL2ma3Q=
Subject key identifier: 5B:F6:6D:7D:18:CA:C4:EA:1D:FE:22:3B:83:A7:24:FD:DC:B7:FE:87
Certificate issuer: /CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Certificate serial: 01916ED38A2D5C276365DDD56CE7C483A481
Authority key identifier: 36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/W_ZtfRjKxOod_iI7g6ck_dy3_oc.roa
Signing time: Tue 20 Aug 2024 08:07:22 +0000
ROA not before: Tue 20 Aug 2024 08:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 147003
IP address blocks: 185.113.66.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6e:d3:8a:2d:5c:27:63:65:dd:d5:6c:e7:c4:83:a4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Validity
Not Before: Aug 20 08:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5bf66d7d18cac4ea1dfe223b83a724fddcb7fe87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:44:16:1a:99:e6:a8:b5:a2:45:1d:3f:2f:04:
3f:5c:78:63:fb:c1:ed:d3:28:47:34:42:75:7b:2e:
6c:cf:c6:31:4b:7c:49:85:3a:59:d7:18:b7:5a:48:
ec:90:91:31:93:76:f8:1b:78:e6:51:3e:78:01:35:
c3:45:09:02:5e:b1:d6:21:cc:ae:fc:3b:b7:81:10:
90:51:d7:8e:0a:5e:0f:dc:12:34:50:59:3a:a0:9b:
3e:17:94:a1:ec:3c:1e:be:63:81:22:9e:79:12:a9:
78:db:13:e4:3d:92:e5:28:c1:8e:bf:22:dd:d0:c9:
e6:cf:92:59:e6:12:47:cf:93:04:d1:7c:de:48:84:
9e:25:38:c8:cc:39:cd:0d:95:de:33:17:0b:81:96:
98:fc:67:73:4e:b5:7b:19:0a:f9:29:bf:80:ca:51:
49:b7:91:76:59:ba:a0:d6:24:8a:8d:da:ca:22:62:
08:c3:cd:5d:33:d7:b6:98:04:b5:f2:f0:67:cc:0b:
58:21:48:26:d9:d1:a1:93:bd:f5:5f:bf:40:11:58:
d5:c8:f8:84:4a:ce:5b:89:c5:cd:50:c9:4e:e8:ee:
4a:b7:30:de:a2:fb:80:a5:4a:41:98:5e:33:9d:12:
c5:a7:88:36:d5:7b:81:96:1a:cb:71:71:9c:63:68:
21:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F6:6D:7D:18:CA:C4:EA:1D:FE:22:3B:83:A7:24:FD:DC:B7:FE:87
X509v3 Authority Key Identifier:
keyid:36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/W_ZtfRjKxOod_iI7g6ck_dy3_oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/NpT8xr9qh0D6eBRkH9nW7I2GLl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.66.0/23
Signature Algorithm: sha256WithRSAEncryption
49:55:6d:7c:29:0b:3c:65:71:6d:ae:2e:13:81:1d:4d:02:01:
bb:16:0a:e4:16:3a:4e:bd:22:c0:da:59:e8:db:04:c5:69:fa:
61:59:6b:e5:5f:f5:d6:48:ee:06:7d:81:c7:b5:38:dc:92:0a:
4a:4d:d7:92:ea:a9:de:e7:d8:41:26:eb:42:2e:64:e3:1c:f2:
74:aa:a4:05:cd:b3:cf:48:5b:2d:a2:73:59:da:df:1c:7a:28:
e1:ae:8d:2f:24:c4:ff:a3:a8:db:8a:df:10:31:5f:45:93:47:
66:cc:3e:10:d3:41:75:e9:c9:b2:f1:cf:91:d9:b1:22:1c:8e:
01:f5:cb:f7:ae:da:68:80:ee:eb:9b:f6:c3:27:59:83:7b:55:
b5:67:d9:39:06:5f:f9:1a:6e:76:6d:ff:ff:8d:26:9b:d3:15:
18:59:7c:60:77:04:4f:cb:ca:35:bf:69:a2:92:f2:be:0a:01:
c0:f8:55:d3:bd:77:d9:24:02:67:e4:4d:c4:be:f1:60:eb:db:
46:c9:e3:7d:d4:0f:35:d0:d0:a0:d8:27:59:7a:7d:57:a2:60:
e0:a6:6e:02:c2:9b:08:16:c7:44:38:43:78:57:f1:f5:d6:79:
af:c0:91:dd:5b:26:48:5c:a3:b8:01:f3:74:98:bc:30:35:a7:
44:d8:e2:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:48:40 2025 by rpki-client