Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/db547e-f431-4d78-9f38-2c4c066fc291/1/G-UJZBmWpTOtSXaM5B9zxy3uryc.roa
File: G-UJZBmWpTOtSXaM5B9zxy3uryc.roa (raw, json)
Hash identifier: Z/OM6tMcphMzCn9rK03Si00QEXeECreaJbvB5zRjvxI=
Subject key identifier: 1B:E5:09:64:19:96:A5:33:AD:49:76:8C:E4:1F:73:C7:2D:EE:AF:27
Certificate issuer: /CN=262762b73be226b171999412625acc7270244343
Certificate serial: 0193D8FDFD7630E48D30464D54ECB57C6C67
Authority key identifier: 26:27:62:B7:3B:E2:26:B1:71:99:94:12:62:5A:CC:72:70:24:43:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JiditzviJrFxmZQSYlrMcnAkQ0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/db547e-f431-4d78-9f38-2c4c066fc291/1/G-UJZBmWpTOtSXaM5B9zxy3uryc.roa
Signing time: Wed 18 Dec 2024 08:59:04 +0000
ROA not before: Wed 18 Dec 2024 08:59:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214289
IP address blocks: 185.142.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d8:fd:fd:76:30:e4:8d:30:46:4d:54:ec:b5:7c:6c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=262762b73be226b171999412625acc7270244343
Validity
Not Before: Dec 18 08:59:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1be509641996a533ad49768ce41f73c72deeaf27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:39:c3:8f:14:a4:24:a1:b0:81:04:30:88:af:
c8:c4:af:e1:35:9c:ff:94:e8:8d:60:4f:41:25:20:
7b:17:88:e4:65:4b:79:fc:13:38:fb:b4:81:18:6a:
fe:5a:31:e1:98:79:f2:68:7d:61:52:de:95:52:4d:
d8:f2:c1:ca:eb:5e:d1:a5:cc:57:f5:e3:44:9b:2e:
ef:dc:70:f4:ac:d4:6d:0e:db:91:a9:22:59:67:75:
ef:5a:5e:67:b9:2f:3f:a8:28:15:b5:73:58:77:c0:
80:58:30:1c:6c:9d:13:73:46:e7:2f:43:79:3f:7d:
86:e0:21:16:9a:58:1f:f8:79:1b:99:1a:a7:d2:9f:
e4:5b:de:fc:a6:c6:0c:13:8f:5e:4b:9a:80:73:a5:
96:6a:f5:06:68:3d:fe:fd:25:99:02:8e:1b:ae:9b:
5d:78:fc:41:b5:ae:57:bc:78:7a:17:86:bf:3e:7c:
47:1d:e3:91:9e:f8:ef:1d:0a:5b:e3:47:ea:a3:d2:
f8:a6:6a:d2:2a:ee:66:c8:b7:81:c5:8f:84:ef:5b:
c4:ee:57:6d:96:b8:a6:55:fe:7a:91:3c:ad:8f:69:
32:aa:7f:0c:48:32:4d:05:a5:00:d4:2f:06:c0:e6:
74:b0:15:02:0f:f9:90:1e:36:10:de:09:ee:02:13:
a5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E5:09:64:19:96:A5:33:AD:49:76:8C:E4:1F:73:C7:2D:EE:AF:27
X509v3 Authority Key Identifier:
keyid:26:27:62:B7:3B:E2:26:B1:71:99:94:12:62:5A:CC:72:70:24:43:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JiditzviJrFxmZQSYlrMcnAkQ0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/db547e-f431-4d78-9f38-2c4c066fc291/1/G-UJZBmWpTOtSXaM5B9zxy3uryc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/db547e-f431-4d78-9f38-2c4c066fc291/1/JiditzviJrFxmZQSYlrMcnAkQ0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.113.0/24
Signature Algorithm: sha256WithRSAEncryption
29:c9:b6:f6:32:63:82:18:91:5a:24:3d:ad:c3:db:d7:25:cc:
c9:f4:dd:e5:9c:45:20:b1:06:e3:87:c4:3e:25:70:8d:61:71:
ca:e0:cd:8d:61:84:fb:6b:2e:0f:08:cc:9a:78:14:41:81:6d:
f2:01:71:dd:75:c0:4f:df:8f:cd:76:35:16:57:70:cc:75:24:
e0:bd:f0:f7:51:4d:90:58:de:87:6b:f7:dc:1a:96:82:9b:9d:
af:b7:72:63:c3:ac:da:23:ad:44:3a:f1:1e:89:a7:be:e6:e2:
e7:10:86:db:40:c9:79:f3:c8:53:a7:c9:8e:17:11:c8:bd:9e:
c8:fc:3e:c9:38:50:e2:11:ab:36:3a:22:ef:a4:fe:30:e6:b4:
89:91:68:a0:32:5f:b9:be:76:d5:be:c0:91:aa:38:86:80:a3:
48:ac:e0:9d:8b:cb:7f:35:97:75:86:14:60:be:67:02:45:40:
19:09:2a:f0:f8:13:a0:c3:ed:e6:ee:7a:53:97:12:ef:ea:e2:
b9:04:ed:ac:d3:c4:c5:db:4f:28:ed:6c:99:ec:92:fb:60:6c:
b1:26:09:e4:8a:cc:f0:d8:e8:db:f0:1d:2b:17:44:2e:b4:bb:
10:3a:67:3b:03:fe:c4:d3:bf:92:25:91:33:22:1a:e5:b0:2d:
f5:64:dd:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 18:58:03 2025 by rpki-client