Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/cc7247-6f0c-4b74-8690-051076744a65/1/IRLrquXIftX5ljy2sjWzmpbF_x0.roa
File: IRLrquXIftX5ljy2sjWzmpbF_x0.roa (raw, json)
Hash identifier: zaaz7CmXq1EiH+XEl4EXvmzqMjSE7jAcC96Ja42g8ig=
Subject key identifier: 21:12:EB:AA:E5:C8:7E:D5:F9:96:3C:B6:B2:35:B3:9A:96:C5:FF:1D
Certificate issuer: /CN=6b3a735d09aaa7970def12c4ac60e827fdb3f825
Certificate serial: 019373211C9C77ED95FF0264152BF8AE4C24
Authority key identifier: 6B:3A:73:5D:09:AA:A7:97:0D:EF:12:C4:AC:60:E8:27:FD:B3:F8:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/azpzXQmqp5cN7xLErGDoJ_2z-CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/cc7247-6f0c-4b74-8690-051076744a65/1/IRLrquXIftX5ljy2sjWzmpbF_x0.roa
Signing time: Thu 28 Nov 2024 14:16:10 +0000
ROA not before: Thu 28 Nov 2024 14:16:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 32931
IP address blocks: 185.183.246.0/23 maxlen: 24
2a0b:2280::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 06 Dec 2024 10:56:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:73:21:1c:9c:77:ed:95:ff:02:64:15:2b:f8:ae:4c:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b3a735d09aaa7970def12c4ac60e827fdb3f825
Validity
Not Before: Nov 28 14:16:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2112ebaae5c87ed5f9963cb6b235b39a96c5ff1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:46:2e:25:a9:18:06:06:35:dc:cb:3a:dc:fa:
c5:04:15:ba:81:d1:00:8f:15:dd:07:f1:9f:53:06:
53:7c:92:a3:e0:50:a9:fb:61:a9:b1:64:3c:86:81:
a9:28:8f:1e:e4:3b:41:f4:bc:e1:6c:a7:45:57:ad:
00:89:92:f5:0d:b5:51:8e:6e:6a:81:fd:97:07:e0:
56:66:10:8f:f6:e4:98:0b:e8:10:79:5c:36:31:5f:
21:69:9d:fe:55:ee:db:d3:7f:c7:c7:53:2b:6f:e2:
aa:21:25:a3:3d:78:1a:5b:2e:ed:e8:55:ba:52:fc:
be:d0:b6:71:73:0f:5e:d5:aa:65:19:5c:dc:ad:67:
5d:04:18:ed:25:57:de:ea:a2:18:5b:79:31:72:09:
53:f1:ae:36:4a:0a:83:39:90:0b:bc:25:d8:04:f0:
cf:36:0b:08:73:77:97:67:80:3c:6f:00:71:aa:67:
3b:2f:71:9a:ab:6f:43:94:97:03:6d:fe:b1:8c:bb:
39:35:ce:07:97:91:a9:5d:e5:41:e1:e7:8d:81:e6:
46:e2:1a:4e:f0:e6:13:43:e0:58:61:17:3e:30:4c:
d3:23:24:91:b0:b3:09:2e:1a:35:38:94:73:15:cd:
e8:2c:fb:1a:d0:09:a5:ec:13:a6:0b:ef:65:8c:50:
7f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:12:EB:AA:E5:C8:7E:D5:F9:96:3C:B6:B2:35:B3:9A:96:C5:FF:1D
X509v3 Authority Key Identifier:
keyid:6B:3A:73:5D:09:AA:A7:97:0D:EF:12:C4:AC:60:E8:27:FD:B3:F8:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/azpzXQmqp5cN7xLErGDoJ_2z-CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cc7247-6f0c-4b74-8690-051076744a65/1/IRLrquXIftX5ljy2sjWzmpbF_x0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cc7247-6f0c-4b74-8690-051076744a65/1/azpzXQmqp5cN7xLErGDoJ_2z-CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.246.0/23
IPv6:
2a0b:2280::/29
Signature Algorithm: sha256WithRSAEncryption
3d:64:5b:92:3f:3e:e7:f4:b4:c5:69:d2:c0:e9:ee:52:79:6b:
71:b0:7a:36:1c:fa:39:3b:b0:1e:4a:c1:b8:ed:ea:aa:f2:44:
a7:b9:5b:63:ba:27:25:28:1a:91:32:dc:b6:e9:d6:09:2a:88:
a8:c2:35:5d:83:47:64:65:1b:65:89:d6:5b:41:0b:c0:13:38:
5f:4e:10:f2:52:7e:0c:f4:37:39:cc:8d:ce:33:33:5d:95:42:
64:db:3f:b1:d6:28:c7:e5:50:c1:02:82:e2:e9:c9:12:f3:54:
8c:03:6e:fe:6f:c7:76:ab:ae:01:da:a5:9e:1b:7d:22:c5:a1:
56:27:73:1b:5a:d2:89:57:20:23:ac:8c:ea:ae:8a:9f:eb:62:
5c:6e:39:98:70:01:a5:91:b8:23:6a:9b:a6:04:a5:12:fb:98:
88:76:0c:26:35:b8:0c:ac:4f:fb:f1:08:18:ab:e9:2b:92:ab:
d2:9d:64:aa:74:c0:5f:e0:5e:6a:74:76:dd:fc:7f:3c:e0:42:
e9:76:95:b6:64:ee:d7:28:04:e2:c0:ce:58:9a:dc:51:7c:16:
d0:85:b7:ae:06:66:3e:cb:23:ec:2e:55:3e:e9:72:96:95:71:
87:d4:03:a9:de:01:da:3e:95:bc:44:e9:60:a5:c7:a3:9d:cf:
95:cc:ab:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:35:45 2025 by rpki-client