Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f6c862-af8b-43f3-98ad-44241fec1a9f/1/7DHM-u52N75bFYrtw18sF4LXExk.roa
File: 7DHM-u52N75bFYrtw18sF4LXExk.roa (raw, json)
Hash identifier: rWXJbmjZQWGnyQMWmqkNqhcOEzt3s2G/b6earZ1IghM=
Subject key identifier: EC:31:CC:FA:EE:76:37:BE:5B:15:8A:ED:C3:5F:2C:17:82:D7:13:19
Certificate issuer: /CN=6a8b5a374f146d7b6a6dc7d316e8ebb12deea670
Certificate serial: 0194221FB39D913BF0BFDC8D68E7C342B21D
Authority key identifier: 6A:8B:5A:37:4F:14:6D:7B:6A:6D:C7:D3:16:E8:EB:B1:2D:EE:A6:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aotaN08UbXtqbcfTFujrsS3upnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f6c862-af8b-43f3-98ad-44241fec1a9f/1/7DHM-u52N75bFYrtw18sF4LXExk.roa
Signing time: Wed 01 Jan 2025 13:48:10 +0000
ROA not before: Wed 01 Jan 2025 13:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211440
IP address blocks: 185.80.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Mar 2025 16:36:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:b3:9d:91:3b:f0:bf:dc:8d:68:e7:c3:42:b2:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8b5a374f146d7b6a6dc7d316e8ebb12deea670
Validity
Not Before: Jan 1 13:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ec31ccfaee7637be5b158aedc35f2c1782d71319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ed:51:67:26:3e:d1:57:6b:e5:b8:f2:37:4a:
bb:d5:0e:36:02:8f:ca:44:c7:67:c8:80:51:77:e2:
92:96:21:89:43:38:81:8f:24:82:38:5d:cb:53:c9:
53:0c:c6:f5:7c:c8:da:85:90:b8:7c:78:2d:81:9d:
93:be:ba:b2:86:d1:33:9e:7b:fa:95:d7:ad:20:df:
ca:ec:a2:9d:72:1f:79:f6:fc:0a:21:89:97:14:cc:
01:e0:75:6c:42:7b:88:a2:e1:8b:59:7f:50:ed:c1:
06:56:7a:18:69:90:06:01:88:1b:71:7e:a1:b5:29:
9f:79:b8:40:db:52:d8:9b:08:cf:d2:81:cf:af:9b:
cf:0b:b9:02:4f:1d:57:7d:0e:6e:9e:f4:65:0b:36:
4a:5e:8a:06:5c:64:11:ae:11:7b:09:28:2e:87:71:
39:41:8f:8d:a5:11:09:6f:3b:e1:35:00:ed:1c:ba:
60:45:a2:b8:28:54:86:3f:6e:6f:cc:df:59:54:aa:
37:4a:0d:b5:f3:c9:f1:ae:7c:35:ec:28:56:72:7d:
02:c1:06:68:36:bf:0d:9c:46:dd:7f:74:b1:ba:7d:
a8:92:64:f7:c0:3f:64:7c:0c:71:cc:78:42:90:1f:
0f:08:b1:82:8d:0e:69:80:a8:5b:77:16:27:a2:f7:
32:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:31:CC:FA:EE:76:37:BE:5B:15:8A:ED:C3:5F:2C:17:82:D7:13:19
X509v3 Authority Key Identifier:
keyid:6A:8B:5A:37:4F:14:6D:7B:6A:6D:C7:D3:16:E8:EB:B1:2D:EE:A6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aotaN08UbXtqbcfTFujrsS3upnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f6c862-af8b-43f3-98ad-44241fec1a9f/1/7DHM-u52N75bFYrtw18sF4LXExk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f6c862-af8b-43f3-98ad-44241fec1a9f/1/aotaN08UbXtqbcfTFujrsS3upnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.90.0/24
Signature Algorithm: sha256WithRSAEncryption
47:1d:7b:1a:b0:95:65:2d:93:28:08:09:89:01:cd:6a:70:bb:
77:de:46:9a:5e:10:64:a4:71:f0:4a:49:d6:ab:6b:4b:da:ae:
b0:a3:32:eb:f3:3b:e8:36:1e:e4:af:a6:de:68:47:50:51:4c:
7d:f4:58:06:a0:47:98:d2:0f:6a:92:72:82:04:cd:0e:39:09:
62:b9:ae:13:9e:34:ad:1f:f4:ce:9d:1c:27:7c:36:f1:23:c8:
4d:64:b4:b4:29:8c:31:a1:1c:cc:7c:ed:c9:f4:d7:08:1f:bd:
89:90:1f:60:36:12:a6:79:66:12:64:3a:6d:35:31:82:e2:47:
8a:b8:1e:c6:30:c9:1a:31:94:cc:0a:7c:57:f8:ab:b5:ae:37:
73:d2:ee:87:b0:11:d2:c2:ed:7c:fd:da:d6:e9:02:00:31:2a:
41:62:1a:2b:55:26:7f:bb:cd:41:9b:4f:f8:25:00:91:60:5f:
38:99:5c:d1:83:76:d1:90:86:eb:ea:4c:18:66:f6:90:4a:bd:
97:6c:f0:50:6c:6d:4e:2c:14:e6:08:2c:23:54:7d:4e:b8:63:
f1:5b:dd:32:46:f9:57:e6:5c:5f:af:32:88:45:ba:26:88:f2:
ec:d7:2c:8c:bd:0a:f7:d0:4a:4d:94:ca:74:1d:22:79:8f:c7:
3a:92:57:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:28:07 2025 by rpki-client