Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/x84BTnnX5Wyvba3w-SfpiWHqCak.roa
File: x84BTnnX5Wyvba3w-SfpiWHqCak.roa (raw, json)
Hash identifier: w3eXF+B84WgXY/DxI6SWlswjEF+w0SrFio9RMAMkh2o=
Subject key identifier: C7:CE:01:4E:79:D7:E5:6C:AF:6D:AD:F0:F9:27:E9:89:61:EA:09:A9
Certificate issuer: /CN=fbf8cd5d24a08b5a8afb57c9e604d193bc8cae20
Certificate serial: 019290177EAA357BFAAEE549F594BFA91FE8
Authority key identifier: FB:F8:CD:5D:24:A0:8B:5A:8A:FB:57:C9:E6:04:D1:93:BC:8C:AE:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/x84BTnnX5Wyvba3w-SfpiWHqCak.roa
Signing time: Tue 15 Oct 2024 12:11:51 +0000
ROA not before: Tue 15 Oct 2024 12:11:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203316
IP address blocks: 185.138.212.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 15 Oct 2024 15:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:90:17:7e:aa:35:7b:fa:ae:e5:49:f5:94:bf:a9:1f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf8cd5d24a08b5a8afb57c9e604d193bc8cae20
Validity
Not Before: Oct 15 12:11:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7ce014e79d7e56caf6dadf0f927e98961ea09a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:61:25:e1:1c:fa:23:5d:1a:4a:6c:b7:01:f7:
70:d1:75:07:a0:46:f9:18:69:0b:b6:0f:a3:3b:56:
f7:d4:c0:2c:da:89:79:aa:9d:97:56:f0:bc:88:5a:
d9:1f:31:78:bd:53:c2:62:b4:3c:4b:05:ea:83:d4:
76:1c:a0:26:f6:e5:df:48:26:94:5d:96:da:cb:a7:
f8:de:4d:73:39:c7:fd:64:5c:a2:cc:19:df:6a:e9:
64:eb:f2:ad:a6:42:c5:13:7a:43:3d:e0:2b:a8:42:
08:18:e2:7a:c5:2e:57:27:ae:c2:52:15:eb:ae:57:
c9:83:f6:29:16:f6:7b:24:05:7b:d5:17:7f:10:b7:
f2:6a:d7:67:97:39:da:42:a4:ed:9d:60:56:b0:5c:
2e:91:32:dc:69:f0:77:ad:3a:36:89:dd:fe:ba:5f:
f4:e9:7f:aa:52:5a:4f:60:58:14:ef:25:8f:58:e1:
f6:98:0a:4d:47:d0:5e:90:bf:e5:be:fc:b9:21:ae:
24:24:b5:d2:7e:27:18:e8:fb:73:35:87:92:d7:42:
d7:4a:f5:99:1e:e0:7c:9b:fa:1d:9d:5e:11:c6:cb:
ac:e7:60:42:e7:b1:95:39:ab:ca:05:98:78:da:ad:
33:bc:67:10:0a:fd:47:fe:a4:20:cc:a4:34:8a:f5:
b9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CE:01:4E:79:D7:E5:6C:AF:6D:AD:F0:F9:27:E9:89:61:EA:09:A9
X509v3 Authority Key Identifier:
keyid:FB:F8:CD:5D:24:A0:8B:5A:8A:FB:57:C9:E6:04:D1:93:BC:8C:AE:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/x84BTnnX5Wyvba3w-SfpiWHqCak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.212.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:3c:56:33:7e:30:bc:1a:e1:14:e2:eb:65:b6:b3:94:f9:78:
04:79:ba:e3:14:25:7b:a6:7b:d6:c3:a5:33:8e:2c:c6:74:6a:
18:19:dd:a1:66:e7:67:dc:0c:e7:ce:61:cd:90:c7:60:85:48:
84:c6:af:da:b7:93:2f:bc:bc:96:fa:a7:5e:78:81:ac:4b:e3:
de:6b:c4:9d:46:b6:8c:9d:50:76:ec:95:91:21:fd:4e:b3:6b:
a2:a9:09:ab:05:88:bc:48:4d:ba:0e:ff:1e:69:b0:44:da:75:
59:63:03:f3:23:da:39:33:64:42:f4:22:96:a4:fd:a8:a2:a2:
93:11:f3:7a:7a:48:59:07:b4:21:51:82:82:22:d9:2a:01:3e:
65:60:3c:be:95:7b:39:13:86:10:ad:5c:83:ae:fe:9a:de:aa:
00:dd:03:d5:35:36:f4:5d:e5:1b:71:54:7f:05:70:d2:4f:18:
26:26:a8:d0:28:37:b0:17:48:90:6c:35:f2:11:70:6f:99:f5:
00:fa:59:9e:c3:a2:55:42:7a:f6:08:59:97:82:bf:f6:78:71:
78:4f:ea:7f:f0:cc:bf:ce:f8:9c:07:e6:65:73:11:cf:ce:5b:
81:42:17:0c:aa:18:82:e9:35:01:6c:19:c7:8f:bf:e3:4c:92:
0a:eb:46:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:54 2025 by rpki-client