Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/1IRf5Oa1kLQcSU4kr0YuNkDLUvs.roa
File: 1IRf5Oa1kLQcSU4kr0YuNkDLUvs.roa (raw, json)
Hash identifier: cwDcfI1995x1ddsCu7sdim4uU7ZfQklsHpF9EtWjMqM=
Subject key identifier: D4:84:5F:E4:E6:B5:90:B4:1C:49:4E:24:AF:46:2E:36:40:CB:52:FB
Certificate issuer: /CN=95d70bf80a07c9ffcbef0cd8465b458d613dcc85
Certificate serial: 0192398E6EF8A494C9747F5BD2D9608B86B4
Authority key identifier: 95:D7:0B:F8:0A:07:C9:FF:CB:EF:0C:D8:46:5B:45:8D:61:3D:CC:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/1IRf5Oa1kLQcSU4kr0YuNkDLUvs.roa
Signing time: Sat 28 Sep 2024 16:54:48 +0000
ROA not before: Sat 28 Sep 2024 16:54:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199557
IP address blocks: 185.83.86.0/24 maxlen: 24
2a13:fa80::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:39:8e:6e:f8:a4:94:c9:74:7f:5b:d2:d9:60:8b:86:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95d70bf80a07c9ffcbef0cd8465b458d613dcc85
Validity
Not Before: Sep 28 16:54:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4845fe4e6b590b41c494e24af462e3640cb52fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e5:9c:1e:a6:c0:f0:12:fe:95:3b:de:ba:7d:
91:d8:02:5d:fd:d2:41:1a:21:3b:29:16:5c:6b:16:
eb:85:de:85:84:80:ff:cd:92:93:6b:79:23:9f:7c:
20:eb:d3:68:6e:e4:05:0e:c8:d9:b0:38:ae:29:50:
8c:f4:e9:a0:00:ba:28:c0:05:eb:26:95:72:d6:5e:
0b:e5:d9:25:31:bc:72:f4:b7:8a:71:4c:0d:12:f4:
eb:f5:d5:20:83:05:32:de:b9:af:be:53:d2:dc:2b:
75:31:ff:dc:8e:77:32:07:1a:38:27:28:ab:5c:7c:
db:f2:cb:ea:78:17:15:7a:e6:a4:0e:5b:2c:81:1a:
68:bb:56:01:ed:3b:f6:d3:ef:d0:6e:d0:87:67:eb:
53:fe:9c:13:59:cd:c3:66:29:34:ce:6e:27:3b:0d:
a2:4d:f4:31:92:cc:78:e5:e7:7c:1c:e6:19:8d:e8:
fe:58:85:f3:d9:c7:c0:ee:a6:92:ac:77:98:c4:bb:
1a:ef:a0:0c:e7:bc:c8:89:d0:7b:4d:59:7c:15:ed:
4a:ff:80:7e:01:01:1d:79:d2:fb:25:91:9b:bf:64:
44:63:3d:6b:3e:40:19:3c:90:f2:4f:8d:fd:46:11:
9c:5c:43:26:ba:37:02:50:4a:d2:44:c0:f2:9e:31:
bc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:84:5F:E4:E6:B5:90:B4:1C:49:4E:24:AF:46:2E:36:40:CB:52:FB
X509v3 Authority Key Identifier:
keyid:95:D7:0B:F8:0A:07:C9:FF:CB:EF:0C:D8:46:5B:45:8D:61:3D:CC:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/1IRf5Oa1kLQcSU4kr0YuNkDLUvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.86.0/24
IPv6:
2a13:fa80::/29
Signature Algorithm: sha256WithRSAEncryption
95:7a:37:b1:3b:20:03:af:2b:93:73:69:23:6d:b9:f5:6f:13:
27:12:42:28:79:46:da:f1:4a:11:69:b9:a4:f6:1a:c0:41:5e:
90:35:28:3e:f6:d6:48:b9:33:85:88:c4:bc:5f:ec:55:14:7f:
79:45:cd:35:61:cf:84:d5:d9:8d:e4:05:56:5c:bf:9e:51:41:
3d:ab:18:7f:95:dd:e1:b9:5f:cf:08:4b:75:34:10:fe:21:c0:
d1:aa:32:ac:26:29:80:d0:e5:52:d7:f7:a9:a4:4d:7d:8e:23:
8f:e3:a6:d7:b0:d7:5b:21:82:c2:11:bf:3c:57:aa:e4:11:52:
58:28:0a:11:b3:39:b9:8d:b6:dd:70:c6:27:86:9e:7a:d8:43:
4c:17:4c:6f:60:3e:1c:a4:22:95:38:26:02:5f:c7:cb:dd:95:
15:04:12:60:40:42:5a:10:d6:ba:68:49:58:4e:f9:c0:2f:75:
ee:96:48:fe:6b:30:4b:2e:5e:9f:29:5f:ca:51:35:e9:e9:a6:
59:23:52:07:98:f7:a2:61:6c:27:09:51:f0:d6:ec:cc:21:ff:
4c:95:52:c4:e9:eb:80:26:db:3f:40:28:26:75:dd:5a:14:f5:
b9:62:8b:74:c4:d7:26:4e:4d:fd:03:62:e1:73:9b:ac:8a:0d:
43:c1:98:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:13 2025 by rpki-client