Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/bFEPj6qZvhqnYa-nn1oAZRd_Z-Q.roa
File: bFEPj6qZvhqnYa-nn1oAZRd_Z-Q.roa (raw, json)
Hash identifier: fI+tJzW5VHuG+ee/poKAHyfaWfnTVMz4VficYScBG4Q=
Subject key identifier: 6C:51:0F:8F:AA:99:BE:1A:A7:61:AF:A7:9F:5A:00:65:17:7F:67:E4
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 019242E30BA552269FAF986CFC5C13AF1128
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/bFEPj6qZvhqnYa-nn1oAZRd_Z-Q.roa
Signing time: Mon 30 Sep 2024 12:23:48 +0000
ROA not before: Mon 30 Sep 2024 12:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60656
IP address blocks: 85.187.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:42:e3:0b:a5:52:26:9f:af:98:6c:fc:5c:13:af:11:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Sep 30 12:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c510f8faa99be1aa761afa79f5a0065177f67e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9a:0a:25:a4:86:f2:c7:51:fc:66:31:d9:f3:
09:65:21:a9:3f:25:50:3e:db:1f:82:be:9c:55:8a:
5b:56:be:5e:ba:33:9f:26:85:fa:f1:a5:80:86:af:
11:de:3e:39:f0:56:33:22:7c:f9:17:8f:d9:a7:0b:
46:6a:8f:38:91:fd:c8:71:58:9a:af:87:f1:59:37:
da:cf:4a:29:aa:17:33:3a:e5:d9:f2:77:66:13:6f:
df:40:1e:5a:7a:0f:e7:c0:77:f3:ae:1d:27:e5:bc:
8f:e3:1f:1c:ab:6b:a1:0b:a1:d0:b1:6d:ac:64:a6:
74:75:09:30:a0:57:3a:9c:7a:59:e5:3e:7f:b3:f9:
0d:13:b5:9d:ae:2f:3c:35:0e:73:f1:61:03:65:5c:
63:fa:9f:7f:b2:90:fc:df:c8:27:36:78:35:18:b7:
8f:13:f1:98:c2:22:f7:b0:c8:e6:d5:77:b3:43:a3:
82:5e:36:ec:44:a1:3d:99:37:b5:5f:d8:cd:48:9f:
15:94:e9:ac:79:f4:1e:e6:73:a3:a0:60:e6:fe:e4:
0d:9f:0f:c7:3a:98:76:22:00:c8:db:73:67:bf:f0:
a6:05:6d:db:51:80:08:84:45:9f:da:22:ba:7d:e2:
30:86:11:6d:6d:ad:88:1d:31:01:e2:41:7e:c3:51:
93:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:51:0F:8F:AA:99:BE:1A:A7:61:AF:A7:9F:5A:00:65:17:7F:67:E4
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/bFEPj6qZvhqnYa-nn1oAZRd_Z-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.15.0/24
Signature Algorithm: sha256WithRSAEncryption
14:1b:60:60:2f:a3:76:51:30:84:75:cf:bc:74:d4:c5:84:da:
cc:bc:31:ce:a8:6c:b9:a2:33:d2:92:0b:84:05:bc:02:db:71:
87:79:11:62:3d:1f:36:bf:8e:c1:fc:62:30:ea:80:1a:39:5f:
e7:0f:d8:b3:be:89:b7:2d:0d:09:b1:5e:4d:dd:27:20:f3:60:
cb:17:6c:7d:ca:c1:8a:b0:49:b6:2c:48:62:27:fc:63:5c:19:
63:be:48:5e:e6:3d:9c:a3:77:3a:97:87:e7:72:e6:28:29:06:
a3:d7:de:16:f4:46:7f:d9:44:4f:93:3a:61:66:b9:61:51:de:
b6:06:2d:bb:a4:3c:d0:f7:c8:63:d3:0d:91:e5:e6:dc:9f:d6:
b0:64:27:b3:0b:7e:97:8c:71:fc:bb:c9:d2:84:fe:c8:1a:45:
d5:26:4a:83:38:95:56:c8:e5:a8:19:a2:bc:2c:fc:0d:e2:96:
2e:f9:d4:29:50:ae:0f:85:0d:eb:3d:0a:9f:18:21:0c:f8:a9:
90:dd:e7:7d:5b:c5:c4:4d:cc:14:59:52:cd:cd:91:94:99:44:
04:65:5d:c6:f2:4e:cd:34:81:db:77:53:93:b1:96:2d:68:b7:
8c:d9:d9:76:e1:f6:97:48:ee:96:b3:76:7e:78:8b:50:ea:5e:
17:65:e0:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:38 2025 by rpki-client