Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5e753d-c33d-47a3-8e82-a52862b44563/1/C5tfyo1wZZztB75MAWshP4xic74.roa
File: C5tfyo1wZZztB75MAWshP4xic74.roa (raw, json)
Hash identifier: kawLr66TZKSScjk3ggZqqKzciGJsjhUCNfl5a1bAklE=
Subject key identifier: 0B:9B:5F:CA:8D:70:65:9C:ED:07:BE:4C:01:6B:21:3F:8C:62:73:BE
Certificate issuer: /CN=fc55e0533efaa5624f538b92ed1a973feff89751
Certificate serial: 019424B3A48583D64C782DB46F3665F7FF22
Authority key identifier: FC:55:E0:53:3E:FA:A5:62:4F:53:8B:92:ED:1A:97:3F:EF:F8:97:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FXgUz76pWJPU4uS7RqXP-_4l1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5e753d-c33d-47a3-8e82-a52862b44563/1/C5tfyo1wZZztB75MAWshP4xic74.roa
Signing time: Thu 02 Jan 2025 01:49:00 +0000
ROA not before: Thu 02 Jan 2025 01:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29802
IP address blocks: 185.84.119.0/24 maxlen: 24
185.132.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Mar 2025 08:17:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:a4:85:83:d6:4c:78:2d:b4:6f:36:65:f7:ff:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc55e0533efaa5624f538b92ed1a973feff89751
Validity
Not Before: Jan 2 01:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0b9b5fca8d70659ced07be4c016b213f8c6273be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7c:9c:37:91:0e:c5:f8:b2:28:c5:61:ce:45:
64:81:1e:2f:3e:7b:3d:4d:31:9f:69:eb:5c:13:bb:
64:f6:d4:38:3a:6e:47:d1:84:c4:34:1e:cb:3f:43:
fa:ff:d2:f1:86:bf:01:17:63:46:4d:8e:57:89:ce:
74:75:60:cc:be:d6:fe:91:10:27:69:56:37:43:9d:
30:66:88:f5:b3:42:a8:3b:f2:a1:c4:15:07:27:8f:
f1:98:28:b1:d2:50:14:90:dd:95:09:ca:2c:6f:82:
bd:63:3a:e4:9c:ba:ba:3e:d3:8e:a8:5c:e4:76:54:
43:b7:2f:eb:5b:ee:90:3c:03:36:f8:fd:2a:cb:d8:
11:2b:9f:0c:ec:9d:9d:12:59:b5:13:d0:4f:ba:97:
3d:76:6c:24:b9:f5:18:54:56:8d:99:f1:4d:91:8d:
a7:cb:bf:21:66:62:a8:d9:3a:f4:f2:e5:77:b8:43:
02:8a:c6:d9:88:2b:e5:c1:0e:e0:16:25:5e:6e:5f:
cb:5d:6d:c3:32:28:d8:bb:fc:0f:aa:e4:59:65:f2:
e4:f7:df:e4:81:d0:8f:ce:f3:71:58:fa:ac:eb:9d:
11:2a:7c:05:ff:06:36:32:0b:86:c5:17:56:e6:66:
74:5d:2e:38:b8:99:3a:b6:b6:2d:99:ef:e0:fc:b8:
08:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:9B:5F:CA:8D:70:65:9C:ED:07:BE:4C:01:6B:21:3F:8C:62:73:BE
X509v3 Authority Key Identifier:
keyid:FC:55:E0:53:3E:FA:A5:62:4F:53:8B:92:ED:1A:97:3F:EF:F8:97:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FXgUz76pWJPU4uS7RqXP-_4l1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5e753d-c33d-47a3-8e82-a52862b44563/1/C5tfyo1wZZztB75MAWshP4xic74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5e753d-c33d-47a3-8e82-a52862b44563/1/_FXgUz76pWJPU4uS7RqXP-_4l1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.119.0/24
185.132.189.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:25:c7:b9:f8:97:80:81:80:96:f4:07:ac:d6:15:85:5a:f3:
5e:66:ee:48:c4:08:8b:b3:2d:80:ce:91:76:ff:f7:09:80:34:
3d:26:ab:03:59:cb:33:fa:f2:e4:7d:8d:cd:a6:26:36:6f:db:
d3:41:7a:da:57:e1:99:33:fa:66:a0:3f:f8:5d:2d:2f:81:e1:
e8:9a:ea:8c:eb:d9:af:41:49:a4:24:d7:ee:f0:ee:cc:4b:9f:
75:51:80:ab:a0:74:24:4e:b0:0d:02:f2:00:b2:bd:c1:0c:7b:
4b:b3:a0:60:9b:1f:eb:16:95:ad:fe:37:45:91:66:35:24:a3:
2d:92:c1:5a:10:96:6a:58:3a:39:7c:40:86:73:cf:39:d9:6b:
7d:88:e0:77:88:75:41:26:06:1f:37:0a:e5:b9:9e:0f:cd:03:
c7:e7:42:ae:b2:d9:db:ae:f5:65:16:fc:e6:ec:bd:cc:34:39:
1d:db:c3:b9:e1:4a:13:af:94:6a:40:a5:69:68:f0:15:a6:80:
6e:fe:fe:15:68:94:5f:15:9d:ab:3b:d2:9f:3e:7c:c8:c1:a5:
bc:eb:7d:63:71:e0:c1:b8:bf:f1:de:9a:19:a8:6d:8c:f3:39:
de:77:b8:5a:e4:12:41:7a:19:9b:23:a3:21:25:aa:23:2c:ff:
a8:90:94:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:32:44 2025 by rpki-client