Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/ChFzTQyDe2rUWR_lesDMTvBCVo8.roa
File: ChFzTQyDe2rUWR_lesDMTvBCVo8.roa (raw, json)
Hash identifier: /iLoKMTx/x26nDfvAxNEhaHYzWIGiByKXdPIpUTwebg=
Subject key identifier: 0A:11:73:4D:0C:83:7B:6A:D4:59:1F:E5:7A:C0:CC:4E:F0:42:56:8F
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 018CC64B66215363B24D6D36AD563BA72CFE
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/ChFzTQyDe2rUWR_lesDMTvBCVo8.roa
Signing time: Mon 01 Jan 2024 18:31:19 +0000
ROA not before: Mon 01 Jan 2024 18:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61144
IP address blocks: 185.172.197.0/24 maxlen: 24
185.172.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:66:21:53:63:b2:4d:6d:36:ad:56:3b:a7:2c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: Jan 1 18:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a11734d0c837b6ad4591fe57ac0cc4ef042568f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e9:5d:de:e3:fe:ba:15:30:8a:8b:b4:b1:f3:
d7:3f:a4:3b:a0:5c:65:10:b3:22:16:b4:68:ce:b8:
c3:84:21:21:a1:cf:3b:7b:a2:c5:b3:11:4c:98:47:
62:40:6c:10:f8:88:f6:f1:66:2c:e5:bb:93:2e:98:
b0:d8:25:a9:fc:63:67:18:d5:87:fa:5f:8a:3f:35:
b4:41:9d:74:95:05:14:a3:42:25:37:1e:9b:ed:72:
8e:78:d8:a2:29:7c:eb:9c:ca:13:94:45:58:be:5c:
a8:fc:ff:60:aa:de:7f:fb:3c:11:78:30:70:82:de:
4a:44:0f:37:97:f9:2d:46:06:6f:96:5d:82:04:45:
ed:5e:36:fc:29:b0:5e:af:26:04:ee:e4:39:fb:73:
a5:18:8b:fe:6f:6f:eb:9e:9e:46:a2:81:81:3e:c6:
36:64:65:77:36:22:5a:9e:63:ab:aa:75:96:49:11:
11:ef:36:ad:cf:a1:b3:74:b2:c2:1d:0c:53:e7:0d:
ed:64:98:b1:a5:17:0c:6f:9a:2f:11:78:2b:e5:bd:
ee:9b:21:bc:80:85:a6:8f:67:b2:f5:d9:25:44:67:
ab:63:04:c3:fe:5b:38:3b:27:74:5a:39:4c:00:11:
5e:0e:2d:12:15:40:ab:40:fd:ca:62:0e:24:d0:a7:
8b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:11:73:4D:0C:83:7B:6A:D4:59:1F:E5:7A:C0:CC:4E:F0:42:56:8F
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/ChFzTQyDe2rUWR_lesDMTvBCVo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.196.0/23
Signature Algorithm: sha256WithRSAEncryption
98:27:c1:b8:12:f8:0a:2c:82:6c:87:4d:21:1a:38:4c:57:ad:
93:76:53:a8:27:e8:00:23:f1:3d:8d:93:6d:ca:66:3f:30:77:
32:0c:dd:ce:b0:27:03:75:e1:06:f4:b9:54:15:0f:b7:0c:26:
ae:bc:25:d3:5d:a3:90:e5:a1:23:e0:95:02:43:e3:e2:d6:d5:
e9:4d:24:c7:de:94:7e:92:fb:e5:e1:1f:0f:2c:87:a6:cb:6f:
04:b1:d5:ad:41:2b:2f:4d:3c:9e:da:f9:58:74:ab:41:1d:c1:
ce:37:2b:d2:2d:58:d0:b1:81:28:01:20:82:3a:c5:21:3f:b7:
a6:55:ad:db:3d:20:7d:b6:35:c2:16:a5:57:36:7f:5d:2d:db:
26:76:cc:4f:4e:86:9c:8c:c0:05:5b:9a:c7:bb:80:b2:ca:61:
0a:49:f8:b0:4f:2b:36:41:2c:b2:f7:c9:f8:13:fc:16:0c:c0:
76:a6:ff:1a:19:a0:49:7a:74:d7:11:58:cc:e6:42:16:9a:33:
fa:bf:8d:d0:2a:5b:6f:cb:72:73:ee:c7:72:4c:08:72:e8:e7:
f6:3b:f9:0a:d9:29:a5:53:f6:0d:10:45:09:ea:d2:38:9d:d9:
c8:e9:26:9b:3a:4e:bc:32:c2:d9:21:bb:dc:0a:b8:23:1b:b5:
2a:fb:c0:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:28 2025 by rpki-client