Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/14atqcjUczNDfqiMMNb5K6e4JfU.roa
File: 14atqcjUczNDfqiMMNb5K6e4JfU.roa (raw, json)
Hash identifier: Nhp7SsLN1rHANajenOE75lfl0VCi9yRJVdmeRXyo420=
Subject key identifier: D7:86:AD:A9:C8:D4:73:33:43:7E:A8:8C:30:D6:F9:2B:A7:B8:25:F5
Certificate issuer: /CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Certificate serial: 018CC726E75CFA65B1C15ADF81B5569C6C0E
Authority key identifier: DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/14atqcjUczNDfqiMMNb5K6e4JfU.roa
Signing time: Mon 01 Jan 2024 22:31:04 +0000
ROA not before: Mon 01 Jan 2024 22:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202709
IP address blocks: 185.63.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Dec 2024 16:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:e7:5c:fa:65:b1:c1:5a:df:81:b5:56:9c:6c:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Validity
Not Before: Jan 1 22:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d786ada9c8d47333437ea88c30d6f92ba7b825f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:42:93:ce:04:01:0a:da:df:01:bc:af:88:0a:
ea:67:24:2a:07:50:8a:6a:09:ce:10:22:f4:df:08:
a3:02:b8:2d:35:e6:c1:33:05:5a:81:ea:8b:13:c7:
ab:6c:99:d8:fd:88:8c:73:c5:51:35:86:d7:d8:4a:
6d:54:2c:ca:5e:b9:74:a6:59:d0:97:fb:06:b0:07:
07:b6:27:ca:ce:2e:82:24:b9:50:23:c7:7d:a3:fd:
93:32:fa:59:2d:65:57:7e:1e:2e:6a:de:3f:cb:6d:
79:36:c0:dc:fa:9b:7b:84:bb:02:a4:cf:7e:99:9b:
23:4c:8c:65:62:2a:fd:14:6d:73:fc:ef:75:47:16:
7b:78:32:d6:a1:ee:fd:47:91:c9:ee:89:0c:57:80:
ac:a8:9c:6e:e5:83:14:ea:29:7f:94:8a:62:13:bb:
1f:ce:48:e7:51:1a:82:0d:68:b8:1e:c6:5a:27:2c:
a3:2e:11:c2:f9:a5:a3:9e:e4:a6:5f:04:bc:76:a7:
d9:cf:29:54:4d:f0:a8:44:58:c5:26:cd:e0:be:a4:
2a:bc:cc:7e:a7:b6:28:c0:1a:78:db:64:57:d1:bc:
29:df:34:2c:51:90:df:af:98:5f:ba:a8:2a:64:f6:
cb:29:7e:c9:89:8c:13:71:4b:14:22:6f:dd:ad:40:
08:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:86:AD:A9:C8:D4:73:33:43:7E:A8:8C:30:D6:F9:2B:A7:B8:25:F5
X509v3 Authority Key Identifier:
keyid:DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/14atqcjUczNDfqiMMNb5K6e4JfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/20ifvpiZTLwJjIdrpj5WCsF-Wy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.231.0/24
Signature Algorithm: sha256WithRSAEncryption
42:36:b4:7d:e4:96:e1:bf:b9:6f:3e:61:95:b5:f9:8b:dd:0f:
8a:b0:18:10:8d:b9:dc:31:a1:9f:f5:aa:a9:21:8a:35:cb:a4:
9c:07:d7:45:4d:09:32:40:5a:d6:71:8a:ab:b3:95:cd:f6:3d:
cd:82:96:8b:4c:ce:1f:d4:af:ba:8f:8c:84:0f:e5:b1:49:f2:
a2:aa:f6:06:49:aa:ad:fd:50:84:ca:c9:2a:e5:b1:fc:47:1f:
8d:42:0b:c2:29:98:0a:03:db:d5:ce:f5:42:95:52:3d:a3:56:
6f:8e:2c:43:b3:47:ef:3d:e0:99:78:b1:ee:86:50:e2:8b:21:
8c:64:f8:96:e0:00:9a:38:31:3a:58:1b:71:6f:34:75:22:33:
2a:59:16:c4:15:d6:f9:8c:fd:cb:64:52:f0:4d:6f:3f:6f:bd:
d2:4b:3c:c6:b0:d8:6b:71:2f:24:87:3e:94:f4:26:d6:aa:5e:
d3:f2:79:05:e3:84:ed:47:6f:5e:47:25:6c:db:d2:79:16:08:
1c:7e:09:01:70:2a:6c:49:ac:5f:26:fa:ee:9c:0b:ca:2d:88:
f3:82:f3:62:cb:66:9f:70:f9:c1:31:2b:4b:31:54:36:88:ef:
1e:ec:d2:57:16:73:1a:4f:0f:a9:35:bd:31:37:a8:e5:73:5b:
11:0d:ab:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:54 2025 by rpki-client