Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6426a5-6b14-4911-88e1-a75f3df46af1/1/8AygdYMx717t8YkwLUxF6HKfdR0.roa
File: 8AygdYMx717t8YkwLUxF6HKfdR0.roa (raw, json)
Hash identifier: GI4H62C0CGGm/jqTeMGrJ9QcJUvL0rX+pgbsnkDM/Qo=
Subject key identifier: F0:0C:A0:75:83:31:EF:5E:ED:F1:89:30:2D:4C:45:E8:72:9F:75:1D
Certificate issuer: /CN=176c34e5ae7016c3605d3269564ae9685443595d
Certificate serial: 019325F7B1F08741C278761C961EE8FB6915
Authority key identifier: 17:6C:34:E5:AE:70:16:C3:60:5D:32:69:56:4A:E9:68:54:43:59:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F2w05a5wFsNgXTJpVkrpaFRDWV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6426a5-6b14-4911-88e1-a75f3df46af1/1/8AygdYMx717t8YkwLUxF6HKfdR0.roa
Signing time: Wed 13 Nov 2024 14:40:10 +0000
ROA not before: Wed 13 Nov 2024 14:40:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51595
IP address blocks: 185.90.112.0/22 maxlen: 22
194.0.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:25:f7:b1:f0:87:41:c2:78:76:1c:96:1e:e8:fb:69:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=176c34e5ae7016c3605d3269564ae9685443595d
Validity
Not Before: Nov 13 14:40:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f00ca0758331ef5eedf189302d4c45e8729f751d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fa:d1:13:a8:1d:c7:79:ad:a0:66:6d:e9:18:
f7:3b:53:77:f7:fb:f6:d6:9d:7e:93:b0:ab:cf:79:
72:6e:87:66:1b:c8:3b:db:8f:f9:ea:93:30:01:7f:
b9:60:52:4c:63:c0:84:fa:c7:42:7e:20:07:c3:3c:
07:0f:b5:f3:00:f8:ea:2d:0f:de:25:1f:f0:95:db:
e1:2e:03:fe:b7:71:cd:e4:f1:b8:2f:88:3c:1a:91:
18:a3:8e:26:b4:09:39:0d:60:82:fa:5c:94:e1:cc:
a7:be:82:3a:51:fd:e9:65:c8:fb:a3:e4:4c:17:a2:
a5:0c:43:e1:11:49:d4:b9:50:88:8d:4b:b5:d9:75:
02:3a:8f:87:80:22:38:a5:ab:02:ec:9a:cb:11:dd:
fd:bf:f4:c6:c2:f9:56:29:fc:fd:73:ba:2e:06:c5:
31:00:75:87:1a:b5:08:16:2e:83:5e:45:2b:15:87:
17:83:f3:86:27:99:d1:f2:38:25:06:b6:cb:a2:ef:
6b:55:84:21:42:e5:3e:24:c0:93:45:fb:fa:85:6c:
4e:96:2a:3a:6a:47:db:0e:ad:10:31:8a:e0:19:9c:
49:3a:8e:c3:e3:97:5c:e1:99:8b:ae:1b:34:28:3d:
c3:b6:30:bc:26:3c:97:17:3f:2a:f0:b0:2a:63:2d:
7c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0C:A0:75:83:31:EF:5E:ED:F1:89:30:2D:4C:45:E8:72:9F:75:1D
X509v3 Authority Key Identifier:
keyid:17:6C:34:E5:AE:70:16:C3:60:5D:32:69:56:4A:E9:68:54:43:59:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F2w05a5wFsNgXTJpVkrpaFRDWV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6426a5-6b14-4911-88e1-a75f3df46af1/1/8AygdYMx717t8YkwLUxF6HKfdR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6426a5-6b14-4911-88e1-a75f3df46af1/1/F2w05a5wFsNgXTJpVkrpaFRDWV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.112.0/22
194.0.155.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:ec:15:39:f6:f4:da:5d:a6:8f:6a:fb:70:26:9b:01:c1:28:
e2:d2:24:7d:ed:75:a4:06:a0:1a:70:5e:e6:e7:25:c3:9c:5e:
79:a4:1f:02:34:cb:0f:f7:97:a8:f4:51:02:80:6d:23:e9:e8:
b8:35:39:de:8c:91:8d:97:97:7c:99:da:0a:99:6c:ff:31:16:
fd:df:36:5e:34:24:cf:71:35:c3:1e:f7:2f:cb:55:e9:54:59:
ba:c7:a6:1f:28:0a:ff:f2:de:be:eb:3c:66:20:ea:e4:24:7a:
ea:e2:d7:f3:c0:4a:3c:ad:db:bc:b9:36:6e:6b:06:1b:08:9f:
f2:84:48:c0:70:43:f7:79:bc:69:04:4c:45:23:bf:fc:af:a7:
fb:d8:b5:ef:e4:86:c4:4b:27:ba:c3:3e:13:f8:42:73:ff:16:
73:38:ee:5f:56:d6:b6:91:15:bb:8a:21:56:c7:13:11:51:8e:
df:a0:c1:f2:5e:33:b8:27:60:96:cd:e1:7b:ae:18:90:15:61:
d8:d8:cc:81:44:02:19:dc:e9:e8:13:92:46:e0:d8:b4:f2:1d:
97:0e:90:38:d3:74:b7:70:fb:01:76:6f:a3:40:b1:ba:ac:9a:
e6:11:12:51:8b:44:b0:ff:cb:e9:3b:1f:7a:27:89:db:ec:c1:
90:ba:ce:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:27 2025 by rpki-client