Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/WihPTfB7GMIxNajhvmbm2SR2lDM.roa
File: WihPTfB7GMIxNajhvmbm2SR2lDM.roa (raw, json)
Hash identifier: +hI1V8p8/zJdp6udCjPQnwnSopvIOWsZkoJB8I5MuuU=
Subject key identifier: 5A:28:4F:4D:F0:7B:18:C2:31:35:A8:E1:BE:66:E6:D9:24:76:94:33
Certificate issuer: /CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Certificate serial: 01909235C07D23B70682C76D9FE7105CEA5B
Authority key identifier: 80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/WihPTfB7GMIxNajhvmbm2SR2lDM.roa
Signing time: Mon 08 Jul 2024 11:58:34 +0000
ROA not before: Mon 08 Jul 2024 11:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47801
IP address blocks: 185.99.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 25 Jul 2024 13:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:35:c0:7d:23:b7:06:82:c7:6d:9f:e7:10:5c:ea:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Validity
Not Before: Jul 8 11:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a284f4df07b18c23135a8e1be66e6d924769433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:35:8b:be:56:7e:0d:10:df:8f:cd:c9:ec:cd:
eb:88:89:d1:d1:14:7d:1e:68:ae:ac:3a:bb:80:77:
67:e2:37:f1:4a:2f:bb:db:13:0f:ca:b3:06:e6:a4:
ba:e8:23:55:ea:c2:81:2b:fa:23:a5:b6:00:54:f6:
07:a2:f0:15:cd:4b:c7:7a:10:d2:06:18:eb:78:91:
87:47:21:1a:9b:73:e0:6d:7c:07:a1:1a:2a:7f:3e:
2b:99:5e:7c:e7:17:91:5c:4f:e9:85:f5:62:b0:76:
3f:d2:c4:7e:cf:4a:20:c2:35:e2:3f:43:00:9f:8e:
5f:4e:f4:30:1e:e8:c6:19:c6:58:b1:27:d9:17:49:
26:13:c6:00:57:0c:54:45:6f:9c:b3:e1:01:68:fa:
89:0c:c7:d7:07:5d:c6:97:b8:b4:cc:4e:12:98:3a:
db:ec:fb:8b:78:96:f2:e3:d0:2d:09:49:ce:1f:05:
0f:40:7e:86:e1:ab:d8:0b:6a:da:14:52:b6:27:a8:
dc:fc:1a:c6:f6:7b:d4:15:bf:85:8c:a1:2c:9c:1b:
6c:53:87:8b:67:42:f3:8a:96:f1:fb:a7:08:eb:56:
1e:87:0f:15:6b:c3:33:2c:b0:31:6d:06:e0:9d:b8:
17:09:1c:93:f9:05:95:85:9b:1f:bd:9c:d4:68:2d:
96:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:28:4F:4D:F0:7B:18:C2:31:35:A8:E1:BE:66:E6:D9:24:76:94:33
X509v3 Authority Key Identifier:
keyid:80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/WihPTfB7GMIxNajhvmbm2SR2lDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/gI4jjjDct1l1n7ijlNniEaKLnYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.168.0/22
Signature Algorithm: sha256WithRSAEncryption
31:4b:8b:19:2e:35:b1:3f:f0:51:5c:da:f2:ac:7f:cf:e1:0f:
cb:27:36:1f:0a:b2:3b:08:fd:e3:92:32:bb:61:22:7a:1a:8f:
1b:26:16:5e:60:1d:09:58:28:df:1e:32:26:12:0d:f3:23:ec:
e4:5a:d6:45:ac:70:52:d1:02:e3:8f:6d:43:a3:33:77:4a:dd:
2e:c8:4a:e5:88:ff:97:04:68:48:a7:60:fd:f9:96:c7:51:27:
f1:3f:de:d5:81:14:88:7f:50:ed:71:65:df:db:0b:0a:ab:b9:
35:bf:4d:16:e5:59:f3:8a:66:27:8c:75:08:7f:ba:6b:88:27:
2a:20:0a:2b:44:07:10:f1:47:17:66:ae:b5:9b:f5:10:e2:de:
7a:9a:7a:81:eb:34:91:2d:14:35:99:eb:6c:f6:19:36:6e:ca:
db:23:34:8e:cb:0f:de:57:86:3e:96:cb:00:ec:d5:92:a3:8f:
15:82:d5:60:c9:b8:e8:99:af:93:8b:51:b5:d5:93:c0:45:ce:
a4:47:dd:f1:75:40:f1:09:35:18:7e:a3:40:19:21:f1:48:11:
2a:fb:f7:b8:94:af:33:7f:06:49:d2:ac:b4:3f:d6:91:03:36:
0e:ad:74:50:24:0d:26:cc:5f:03:65:b7:45:2e:c5:a6:29:60:
cb:47:99:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:36:25 2025 by rpki-client