Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/X0pBntHfRNLqYqvhC6mdkL-b6p4.roa
File: X0pBntHfRNLqYqvhC6mdkL-b6p4.roa (raw, json)
Hash identifier: pOe4xQjX0SMAP6viSgFhnP5+2IqeK54j3vdqViXG/F8=
Subject key identifier: 5F:4A:41:9E:D1:DF:44:D2:EA:62:AB:E1:0B:A9:9D:90:BF:9B:EA:9E
Certificate issuer: /CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Certificate serial: 019073EBE89417AE909C7A7580CFAF2B7CB9
Authority key identifier: 36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/X0pBntHfRNLqYqvhC6mdkL-b6p4.roa
Signing time: Tue 02 Jul 2024 14:49:18 +0000
ROA not before: Tue 02 Jul 2024 14:49:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.113.66.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 03 Jul 2024 09:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:73:eb:e8:94:17:ae:90:9c:7a:75:80:cf:af:2b:7c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Validity
Not Before: Jul 2 14:49:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f4a419ed1df44d2ea62abe10ba99d90bf9bea9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f6:51:93:36:36:87:8a:71:f6:c2:7b:53:36:
04:55:59:08:e1:35:07:b5:03:b1:85:0a:7b:58:5e:
d0:79:3f:6b:5a:25:4d:69:dc:b4:07:15:55:d2:42:
b8:5b:a3:58:7f:ae:0a:ff:c1:43:e6:58:33:2c:a3:
f4:cc:8e:c0:04:2e:7a:54:16:57:3e:5b:2a:20:a3:
6d:7a:4d:9c:19:94:f4:26:53:e5:4c:25:de:29:ea:
d2:a0:df:6e:65:cc:17:01:94:74:e3:1b:6a:c8:96:
32:19:59:83:64:37:0e:43:a5:09:7b:5d:fc:be:ab:
4c:77:1d:c1:1c:be:7f:98:59:c6:8b:40:71:c0:5b:
5e:4d:f0:3e:e9:88:f8:c7:05:13:b2:07:30:9a:9e:
2c:a6:ef:e7:32:43:c9:04:74:38:89:67:a8:ae:48:
29:29:fc:d5:ce:24:b0:bb:e2:4e:57:15:c5:48:e0:
53:8b:ed:5c:a0:02:ba:1e:61:6e:8e:97:c9:f6:03:
48:9d:cb:76:92:95:84:3d:d1:ab:f4:ab:21:36:d0:
26:9e:c9:ed:f5:fc:ab:b2:8c:35:b3:82:73:a3:0c:
66:8f:a2:67:b4:0e:3a:7d:f6:f0:50:ae:38:f4:a6:
b8:9e:47:28:16:19:89:06:83:07:df:95:00:19:01:
c7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:4A:41:9E:D1:DF:44:D2:EA:62:AB:E1:0B:A9:9D:90:BF:9B:EA:9E
X509v3 Authority Key Identifier:
keyid:36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/X0pBntHfRNLqYqvhC6mdkL-b6p4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/NpT8xr9qh0D6eBRkH9nW7I2GLl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.66.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:7c:a4:30:bb:4a:f1:a1:46:85:e9:b7:a4:e4:c3:e2:da:88:
a0:b1:27:42:cd:3f:84:45:d3:40:02:06:57:1e:56:80:84:a0:
e7:00:a2:b6:83:b7:19:c8:4f:eb:54:12:b6:56:81:9d:6f:01:
f2:68:a0:21:d4:a5:ec:9a:6d:a2:72:8e:44:c7:1f:6a:3a:5d:
8f:b2:80:d5:54:76:2e:d4:80:ab:9b:37:07:41:54:de:ea:d5:
0e:3c:de:99:79:b1:34:f2:31:7f:03:ae:ca:7e:12:8c:e2:bf:
e1:e2:f3:f8:f7:87:bd:8e:ed:53:78:1c:1a:0f:b3:97:09:17:
3d:55:67:5d:00:c7:c1:49:29:cf:35:c2:89:c7:e5:1b:b3:4e:
97:9e:84:b8:62:d9:56:80:5e:8c:6d:bd:0e:15:ae:5d:05:7f:
b9:e0:33:4e:86:df:55:f3:84:1d:a2:1e:6a:be:e2:0c:02:f3:
54:94:75:02:15:1f:11:bb:8e:38:58:40:20:77:2b:85:0e:cd:
54:34:b4:e6:fe:e4:8c:99:3a:35:c5:4e:a9:96:e6:5c:e9:17:
9d:73:e3:1c:1c:2f:aa:3c:16:5f:27:f1:06:d9:42:94:65:73:
3c:7e:48:4d:12:24:0e:85:ff:51:c7:71:4f:d0:0b:7a:b8:a3:
ee:68:41:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:34 2025 by rpki-client