Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/720c04-e9c7-48b2-8fec-9cfe1b57cd20/1/bT1C2bQkHrRY9cWJG0sBu5gX9RE.roa
File: bT1C2bQkHrRY9cWJG0sBu5gX9RE.roa (raw, json)
Hash identifier: 6NnM3G7QH7cNo+Bm4S1Iy1xLGsf6pjCNtzobUeZ/RRk=
Subject key identifier: 6D:3D:42:D9:B4:24:1E:B4:58:F5:C5:89:1B:4B:01:BB:98:17:F5:11
Certificate issuer: /CN=9cb80bc4b597c176bd8538c188fec73da25e6e84
Certificate serial: 019315DCF20CD3C3D6596643F7A9304BC9D1
Authority key identifier: 9C:B8:0B:C4:B5:97:C1:76:BD:85:38:C1:88:FE:C7:3D:A2:5E:6E:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLgLxLWXwXa9hTjBiP7HPaJeboQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/720c04-e9c7-48b2-8fec-9cfe1b57cd20/1/bT1C2bQkHrRY9cWJG0sBu5gX9RE.roa
Signing time: Sun 10 Nov 2024 11:37:01 +0000
ROA not before: Sun 10 Nov 2024 11:37:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41683
IP address blocks: 185.163.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Nov 2024 09:15:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:15:dc:f2:0c:d3:c3:d6:59:66:43:f7:a9:30:4b:c9:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb80bc4b597c176bd8538c188fec73da25e6e84
Validity
Not Before: Nov 10 11:37:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d3d42d9b4241eb458f5c5891b4b01bb9817f511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:de:0c:c1:e2:a6:40:86:75:22:56:1a:b5:8a:
22:1c:5d:88:a2:c5:0b:90:22:4b:24:22:b8:e6:19:
79:7b:e0:af:2a:89:fb:d7:c0:c5:e2:a1:f1:ca:aa:
d5:15:8d:cc:a1:9d:ce:3e:93:b9:33:d1:e6:7f:74:
17:75:71:23:88:00:24:51:e0:fd:9d:d5:e9:b7:40:
1f:76:db:10:c4:d6:0f:20:98:35:ae:df:95:d9:8c:
a5:8e:47:cb:82:22:5e:b2:0c:ff:c9:d1:80:07:48:
65:95:6b:d2:60:9d:84:0c:a2:5f:77:9d:90:87:15:
6f:79:87:77:4d:58:66:40:67:be:4c:ec:38:02:0b:
48:9a:51:f3:1f:fc:e6:20:14:69:1a:5f:83:1e:fa:
01:59:4f:63:97:61:b4:09:8b:28:0e:6d:59:b6:4d:
3d:df:66:22:44:a6:a7:12:02:d6:03:27:0d:af:9b:
07:78:92:ee:23:57:1b:c0:57:16:af:9d:57:a9:12:
90:36:a0:13:45:6b:0e:7a:ac:c4:2f:ee:f8:ad:93:
f0:43:b1:70:8a:cf:25:cb:54:44:d7:85:fb:9e:63:
9f:29:d8:3d:9a:aa:d0:cc:c3:2e:f8:5e:e4:8d:ca:
dd:fe:89:ed:08:5b:e3:46:6d:42:2c:57:fe:32:dd:
a2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3D:42:D9:B4:24:1E:B4:58:F5:C5:89:1B:4B:01:BB:98:17:F5:11
X509v3 Authority Key Identifier:
keyid:9C:B8:0B:C4:B5:97:C1:76:BD:85:38:C1:88:FE:C7:3D:A2:5E:6E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLgLxLWXwXa9hTjBiP7HPaJeboQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/720c04-e9c7-48b2-8fec-9cfe1b57cd20/1/bT1C2bQkHrRY9cWJG0sBu5gX9RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/720c04-e9c7-48b2-8fec-9cfe1b57cd20/1/nLgLxLWXwXa9hTjBiP7HPaJeboQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.129.0/24
Signature Algorithm: sha256WithRSAEncryption
09:d6:68:9e:69:e7:1e:61:77:7c:85:54:40:8f:e8:6b:e7:92:
a0:bb:e0:e0:0f:78:44:6b:02:44:0b:a4:22:21:fe:f9:f1:80:
0e:d4:3b:c4:7f:21:33:c7:36:61:bb:0a:bc:55:ce:73:66:89:
06:b4:9a:9d:8d:9d:37:a3:fc:d8:ae:f1:b6:a5:87:ca:d9:51:
58:d2:2a:25:99:29:15:dc:d5:97:e5:4e:a4:b9:47:4e:6d:b7:
94:db:37:a1:c9:24:3c:b2:42:d2:94:4d:02:0b:c0:2d:ab:34:
d2:ba:79:48:08:6f:97:56:bd:8c:fc:bf:c7:17:09:19:dc:b0:
00:52:44:0e:77:ec:d5:f0:16:9a:e9:66:aa:03:d3:9f:d8:fb:
b2:ff:70:e6:d7:2f:2e:0f:3d:a9:ec:4d:f1:26:69:d2:bd:8d:
87:c8:38:19:0b:23:db:af:be:48:dd:5e:9d:b9:bb:a7:4c:00:
5b:33:8e:66:15:5d:53:b4:7f:f0:d1:d4:74:3c:59:b6:68:dc:
33:7a:c4:62:2a:91:f5:64:f9:23:88:ad:73:76:c3:f0:67:27:
63:d3:a0:cc:c0:a0:6b:eb:e5:d2:e8:3e:49:1c:4f:51:95:db:
62:32:81:82:01:91:83:17:de:18:bf:93:48:ae:63:48:49:09:
4d:6e:02:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:31 2025 by rpki-client