Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/0a97f1-7bf5-4368-8260-8d715ac217e2/1/1LjKCgZ12vKLhH_bjPYZ7Fkxwko.roa
File: 1LjKCgZ12vKLhH_bjPYZ7Fkxwko.roa (raw, json)
Hash identifier: XxnWLUEWXv+ezCjsFdOgWR92NHsxx+TTmwzvvWjbwIM=
Subject key identifier: D4:B8:CA:0A:06:75:DA:F2:8B:84:7F:DB:8C:F6:19:EC:59:31:C2:4A
Certificate issuer: /CN=cf5567122a88ca9889a1798b6c942dcc0cbc753b
Certificate serial: 0193C4BBCEDAF05B32CD722E0FA3259BEE32
Authority key identifier: CF:55:67:12:2A:88:CA:98:89:A1:79:8B:6C:94:2D:CC:0C:BC:75:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z1VnEiqIypiJoXmLbJQtzAy8dTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/0a97f1-7bf5-4368-8260-8d715ac217e2/1/1LjKCgZ12vKLhH_bjPYZ7Fkxwko.roa
Signing time: Sat 14 Dec 2024 10:34:22 +0000
ROA not before: Sat 14 Dec 2024 10:34:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58224
IP address blocks: 185.115.76.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c4:bb:ce:da:f0:5b:32:cd:72:2e:0f:a3:25:9b:ee:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf5567122a88ca9889a1798b6c942dcc0cbc753b
Validity
Not Before: Dec 14 10:34:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4b8ca0a0675daf28b847fdb8cf619ec5931c24a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7f:51:1d:14:67:c4:87:81:9d:bf:05:34:c9:
00:7a:3f:29:45:d3:e1:0c:da:c2:25:43:37:1e:f9:
cd:08:25:a9:6e:1d:5b:89:b5:5b:01:da:90:6c:24:
c7:cc:f0:57:49:d1:45:d8:1d:9d:16:6e:d2:0b:5c:
59:aa:33:f0:70:94:99:67:aa:dd:36:74:0a:d6:51:
42:48:af:ab:44:ae:42:63:37:8d:37:91:ae:6f:28:
1b:6a:75:10:70:84:6f:1e:09:35:1c:d4:33:94:c3:
d0:ff:80:93:99:60:5c:c7:0d:12:92:f4:88:1e:2a:
98:9e:3d:ff:42:5d:27:6d:c7:ef:2b:ee:5f:d4:ee:
63:0a:3b:3e:ac:d2:2b:67:bb:9f:70:ba:65:ff:e3:
ae:37:62:60:78:8a:fe:b8:0b:8f:d4:1c:cd:b1:52:
8c:b0:7c:77:54:38:25:0b:7f:1b:56:82:7f:56:7f:
c3:f9:38:3f:4b:4c:e7:54:c0:38:b2:eb:f3:42:01:
04:3c:39:46:8f:7d:c6:23:03:f6:a9:41:21:af:92:
41:ba:08:ae:33:64:23:e9:7f:48:a4:ca:b9:ff:d1:
5f:d3:d5:fb:10:50:9b:f1:c6:7e:33:fd:49:ab:4e:
e4:0f:03:5b:74:a5:14:0f:e4:c1:c0:d0:35:73:8d:
b0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B8:CA:0A:06:75:DA:F2:8B:84:7F:DB:8C:F6:19:EC:59:31:C2:4A
X509v3 Authority Key Identifier:
keyid:CF:55:67:12:2A:88:CA:98:89:A1:79:8B:6C:94:2D:CC:0C:BC:75:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z1VnEiqIypiJoXmLbJQtzAy8dTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0a97f1-7bf5-4368-8260-8d715ac217e2/1/1LjKCgZ12vKLhH_bjPYZ7Fkxwko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0a97f1-7bf5-4368-8260-8d715ac217e2/1/z1VnEiqIypiJoXmLbJQtzAy8dTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.76.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:6c:de:d3:f7:71:be:61:8a:6e:71:07:7e:39:cb:6d:d3:9d:
20:e6:0d:1f:21:ad:c6:94:ad:29:c7:e6:15:c6:f9:12:86:fd:
11:4d:d6:22:07:81:ee:d3:45:8b:e4:30:6c:d7:c5:c8:fa:ce:
06:f2:14:02:34:d1:ee:be:b2:50:a5:3a:49:22:10:ba:c5:83:
7d:67:d0:6d:c3:f3:97:c6:7d:35:f9:e6:32:e2:36:fa:40:95:
e6:f1:be:c0:2c:f4:5f:85:5c:3c:0e:78:da:d5:5f:20:61:f7:
85:f2:a9:34:6f:ce:bb:8b:33:4c:39:90:cb:41:21:24:d2:13:
28:dd:3f:91:9e:f3:c5:41:b5:01:5b:12:26:96:a0:ed:43:c3:
da:09:86:f7:4b:5c:a6:24:b7:bd:95:3d:ad:e7:54:8a:82:18:
d8:9b:12:9c:b6:3a:12:d9:73:7b:f9:d7:13:f4:37:a4:16:d1:
5c:58:76:e1:4a:24:dc:10:24:70:7d:f9:fb:91:4f:26:56:ec:
e2:81:2b:9b:21:89:5a:ef:89:16:b9:b7:ff:9e:2c:fd:a8:29:
f3:30:96:35:96:02:ee:ac:d5:ad:2b:4e:3a:91:f6:70:a6:fc:
0b:bc:df:59:61:77:e9:50:56:87:33:82:8f:73:c2:19:da:c2:
6e:25:d5:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:12:25 2025 by rpki-client