Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/uxvSxb6hO_dqcJktX5KDTvbKf5E.roa
File: uxvSxb6hO_dqcJktX5KDTvbKf5E.roa (raw, json)
Hash identifier: BX9cKfQZ93LsNtPJ1OCQVgNnA/T13AZWB09hs71M25A=
Subject key identifier: BB:1B:D2:C5:BE:A1:3B:F7:6A:70:99:2D:5F:92:83:4E:F6:CA:7F:91
Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Certificate serial: 01941FFAAF1D17F00FA6455126B8627E0A26
Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/uxvSxb6hO_dqcJktX5KDTvbKf5E.roa
Signing time: Wed 01 Jan 2025 03:48:30 +0000
ROA not before: Wed 01 Jan 2025 03:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49571
IP address blocks: 185.72.254.0/24 maxlen: 24
188.72.9.0/24 maxlen: 24
188.72.20.0/24 maxlen: 24
188.72.23.0/24 maxlen: 24
188.72.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Mar 2025 05:10:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:af:1d:17:f0:0f:a6:45:51:26:b8:62:7e:0a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Validity
Not Before: Jan 1 03:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb1bd2c5bea13bf76a70992d5f92834ef6ca7f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:13:42:ad:41:77:0c:cc:c8:71:51:5b:69:02:
16:fe:1f:b0:ac:e7:5e:c8:22:22:c4:7a:f6:6e:e8:
9c:2e:20:2f:b2:d6:36:91:c1:80:d9:3a:1c:40:cb:
c6:99:bb:c7:9a:c9:6d:23:41:f5:0b:ae:2c:58:a9:
78:e2:24:54:38:37:98:8f:fa:cd:de:ff:06:63:e9:
af:da:59:3a:90:8e:e7:be:80:b5:8f:02:4a:dd:80:
0b:22:c5:e3:7c:45:e4:22:fb:15:e5:5a:d8:68:8c:
9f:a5:36:d2:96:ae:22:bb:7a:d7:33:f6:45:61:2f:
b8:c6:89:95:e2:b2:11:78:78:39:92:ca:3c:8e:89:
7d:ba:5d:77:bb:7e:ed:3d:68:e9:5b:39:ce:02:0b:
0c:97:7b:45:60:68:07:0b:51:04:0b:69:60:f8:d8:
37:96:e3:48:8b:a4:00:b2:f3:73:63:3f:1b:d4:6f:
7a:35:23:53:28:d4:68:f0:ac:ac:86:16:b6:f3:35:
57:81:75:7d:0e:03:f8:2a:c3:87:6c:98:76:47:06:
b1:14:e9:f3:fb:e7:6f:2a:5c:bb:f9:63:81:15:f9:
90:6a:10:9c:a7:d5:4e:6d:8a:cf:12:d7:47:80:88:
18:be:0d:1f:88:12:6d:cb:a2:a9:12:89:31:70:a3:
ea:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:1B:D2:C5:BE:A1:3B:F7:6A:70:99:2D:5F:92:83:4E:F6:CA:7F:91
X509v3 Authority Key Identifier:
keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/uxvSxb6hO_dqcJktX5KDTvbKf5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.254.0/24
188.72.9.0/24
188.72.20.0/24
188.72.23.0/24
188.72.29.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:48:80:c7:cb:9f:c8:42:f4:16:b3:f0:4e:2e:3e:16:49:34:
9f:44:1d:e1:d3:32:10:57:38:e5:18:af:19:1b:02:4d:fb:04:
f1:d5:15:a3:85:3c:9c:52:a1:05:01:96:84:6a:46:28:5d:d8:
2a:cb:80:75:a2:17:39:f7:b3:c3:2a:82:48:7d:58:35:56:36:
58:79:82:c0:e8:34:c9:e8:1d:af:84:da:50:01:b9:69:d0:08:
6c:89:7a:a6:eb:04:40:72:0d:99:88:fe:4a:b4:9a:57:f1:f3:
3a:3e:53:8c:5f:76:df:61:11:db:9c:da:38:c2:3d:19:e2:d5:
37:f1:4f:b5:07:7c:73:8c:36:01:1f:bf:75:b4:ef:8f:ff:a5:
fc:f3:63:20:9e:c3:c9:be:02:9c:40:6b:74:d0:4c:e0:5d:ef:
a1:1c:7f:48:42:2f:18:92:09:98:60:6c:bc:29:80:12:00:9f:
60:77:e1:ea:60:17:4c:51:c3:f4:ef:df:90:35:b7:c1:11:a7:
07:fe:f7:92:7f:a5:36:ed:83:17:45:cc:e0:bc:6b:02:d6:70:
a8:f3:35:e8:9b:63:b9:8e:4a:24:be:2d:f2:ff:ef:c7:24:e0:
36:07:77:63:74:9c:fa:b2:c5:cc:bf:ba:70:bc:03:2a:69:a7:
ed:00:12:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:20:53 2025 by rpki-client