Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/0d33c9-6a84-4ce3-81b0-418af90acb8a/1/DeYugD0NccIkb-mzWQIYmAbVszU.roa
File: DeYugD0NccIkb-mzWQIYmAbVszU.roa (raw, json)
Hash identifier: 2euQxbWMN4hTJkIYuRvQSF/EaMwwORWwOPSIxGm2z+I=
Subject key identifier: 0D:E6:2E:80:3D:0D:71:C2:24:6F:E9:B3:59:02:18:98:06:D5:B3:35
Certificate issuer: /CN=96d7ba651403d18dddb7a74b20ddc21deb94220e
Certificate serial: 01916F366A5BD959F7DFF14A46418164F73D
Authority key identifier: 96:D7:BA:65:14:03:D1:8D:DD:B7:A7:4B:20:DD:C2:1D:EB:94:22:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lte6ZRQD0Y3dt6dLIN3CHeuUIg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/0d33c9-6a84-4ce3-81b0-418af90acb8a/1/DeYugD0NccIkb-mzWQIYmAbVszU.roa
Signing time: Tue 20 Aug 2024 09:55:22 +0000
ROA not before: Tue 20 Aug 2024 09:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6453
IP address blocks: 185.205.24.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 10:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6f:36:6a:5b:d9:59:f7:df:f1:4a:46:41:81:64:f7:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96d7ba651403d18dddb7a74b20ddc21deb94220e
Validity
Not Before: Aug 20 09:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0de62e803d0d71c2246fe9b35902189806d5b335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ba:a3:37:c3:bc:55:91:86:77:74:37:ad:ed:
3d:13:af:2e:90:04:4f:75:7e:cd:2b:fc:3f:f9:2a:
36:90:ae:de:09:56:aa:a3:b2:ea:a1:22:0e:00:8d:
60:f3:81:9f:fc:05:f1:9a:f7:79:16:ee:21:01:2c:
c0:a6:44:ea:6c:41:2c:d5:29:12:2e:28:6e:5b:ab:
36:7a:9a:07:6b:94:04:77:16:c5:e3:47:84:23:4c:
e5:3d:af:67:86:49:02:4c:f1:2e:4f:97:a9:a1:3c:
ff:eb:24:34:3a:8f:06:4b:b8:b9:c1:23:ab:6c:ec:
ce:3d:d3:ed:ef:5f:21:60:bf:2e:24:db:92:2d:df:
e0:29:d2:89:d9:c9:d4:f3:2d:a9:c7:18:62:0e:63:
1e:e2:80:1e:44:d0:c1:1b:0f:80:5e:c8:8c:e9:68:
d5:8c:48:14:89:e9:59:1c:7e:46:56:6a:be:9f:4b:
61:30:0e:e2:ac:9c:8f:04:d4:bb:bc:ce:d9:ff:83:
a3:15:eb:06:d7:67:58:6b:bf:b4:54:d9:df:00:cb:
2f:a6:b8:cb:ca:4c:1d:fb:4a:77:bd:5b:2e:e7:e8:
1d:96:37:58:56:09:6a:a3:6d:69:7b:a2:95:e6:f4:
ee:68:13:ff:c0:36:f0:8e:9a:2a:a7:16:9f:a3:6a:
cc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E6:2E:80:3D:0D:71:C2:24:6F:E9:B3:59:02:18:98:06:D5:B3:35
X509v3 Authority Key Identifier:
keyid:96:D7:BA:65:14:03:D1:8D:DD:B7:A7:4B:20:DD:C2:1D:EB:94:22:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lte6ZRQD0Y3dt6dLIN3CHeuUIg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/0d33c9-6a84-4ce3-81b0-418af90acb8a/1/DeYugD0NccIkb-mzWQIYmAbVszU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/0d33c9-6a84-4ce3-81b0-418af90acb8a/1/lte6ZRQD0Y3dt6dLIN3CHeuUIg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.24.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:f5:e0:4e:f8:fc:33:31:c9:79:19:78:5c:cb:9f:5b:b3:3e:
7b:59:aa:f3:92:21:1c:f0:a1:81:99:6a:39:14:e5:32:71:a1:
5c:de:ad:a2:cb:28:08:c7:fd:3e:f1:e3:48:81:c8:5d:4d:01:
04:b2:c0:9a:af:65:b2:db:80:6f:3e:ff:a3:dc:04:78:8d:3e:
de:ff:b3:6a:a6:d3:12:7a:70:ab:2e:ce:38:0c:97:c8:5d:17:
0d:7c:62:ef:9a:a8:1f:c7:03:48:0f:10:23:8d:71:90:83:b5:
2c:a3:55:a7:b0:66:a6:7c:79:73:87:a6:5b:e9:71:c6:79:0e:
a3:5f:2a:14:e1:23:37:f2:ba:96:03:68:f4:b8:f4:57:25:4d:
18:72:c5:42:4e:1b:9b:9f:f5:23:af:c2:e3:8b:11:53:b0:05:
91:35:dc:67:78:46:05:bb:54:d8:63:ef:21:6e:4e:7a:64:e5:
6e:cb:f9:90:87:8e:50:e9:5b:33:83:15:6f:ec:bd:62:aa:ae:
08:fd:e6:6e:ba:64:b2:30:8d:fc:dd:08:d2:7e:f1:8a:84:f2:
32:bc:46:4b:be:a4:85:93:77:9f:84:a4:cf:5e:fa:01:9a:2b:
a9:9c:3c:50:6e:b0:4f:86:60:f9:84:13:8a:d4:9a:67:ae:b4:
db:8b:4b:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:20:56 2025 by rpki-client