Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/DvUyfzV-UmD61KbPqga5J8HoYks.roa
File: DvUyfzV-UmD61KbPqga5J8HoYks.roa (raw, json)
Hash identifier: 8HM0Vc2mPa3n1XWegM6piz39E9eVrwhyLUQcvdz93uk=
Subject key identifier: 0E:F5:32:7F:35:7E:52:60:FA:D4:A6:CF:AA:06:B9:27:C1:E8:62:4B
Certificate issuer: /CN=b81b03e22875bb070b1b7c58eada2e4bb1aabe7f
Certificate serial: 018FB88878559C30E59FC86D806299348698
Authority key identifier: B8:1B:03:E2:28:75:BB:07:0B:1B:7C:58:EA:DA:2E:4B:B1:AA:BE:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBsD4ih1uwcLG3xY6touS7Gqvn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/DvUyfzV-UmD61KbPqga5J8HoYks.roa
Signing time: Mon 27 May 2024 05:31:42 +0000
ROA not before: Mon 27 May 2024 05:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202377
IP address blocks: 185.255.140.0/22 maxlen: 22
185.255.142.0/23 maxlen: 23
2a0c:6540::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 03 Oct 2024 03:49:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b8:88:78:55:9c:30:e5:9f:c8:6d:80:62:99:34:86:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b81b03e22875bb070b1b7c58eada2e4bb1aabe7f
Validity
Not Before: May 27 05:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ef5327f357e5260fad4a6cfaa06b927c1e8624b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b8:a8:00:4d:12:4e:da:18:c5:6d:f2:79:73:
18:0e:19:9b:9a:38:98:cf:c4:2b:17:06:c8:d9:1a:
c2:c5:e6:27:b6:cd:5a:f3:54:68:9f:4e:f6:2e:06:
f8:c3:18:70:18:af:a7:e2:61:ad:4f:47:0f:a4:94:
81:93:ad:97:38:41:e9:e6:c8:7c:9e:07:63:6c:6d:
11:8d:e6:8e:12:87:3b:90:d0:6b:c6:53:39:9c:08:
93:67:83:80:51:77:49:9f:e4:5a:02:b3:70:5b:c3:
85:b4:a5:cd:fc:7c:a5:7f:79:11:9c:bf:59:9e:91:
8e:a7:71:9f:a1:9f:9a:2b:6c:50:35:2d:31:47:62:
41:83:74:aa:25:9c:10:cd:f5:d9:a5:1d:36:33:97:
d8:63:18:ec:2c:71:94:37:a8:b6:0a:e2:76:e7:b2:
fc:48:b5:b7:65:96:c2:9e:04:b7:f1:99:97:74:2a:
e7:53:78:62:78:25:d6:a4:b1:82:28:0d:b7:a5:19:
a7:32:59:94:0f:05:4a:3e:52:26:f1:4b:a3:5f:6a:
1f:e6:56:60:a1:e5:e0:de:f5:42:7c:1c:d0:7c:d3:
51:64:b5:dc:fd:f1:8a:12:5d:e9:57:56:af:7f:34:
77:1e:0e:3e:0c:06:e4:b1:41:a6:ed:26:4c:e7:8e:
ee:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F5:32:7F:35:7E:52:60:FA:D4:A6:CF:AA:06:B9:27:C1:E8:62:4B
X509v3 Authority Key Identifier:
keyid:B8:1B:03:E2:28:75:BB:07:0B:1B:7C:58:EA:DA:2E:4B:B1:AA:BE:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBsD4ih1uwcLG3xY6touS7Gqvn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/DvUyfzV-UmD61KbPqga5J8HoYks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/uBsD4ih1uwcLG3xY6touS7Gqvn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.140.0/22
IPv6:
2a0c:6540::/32
Signature Algorithm: sha256WithRSAEncryption
32:58:b6:39:c0:c4:51:8c:09:3f:de:49:29:0f:70:96:c8:6e:
3a:fb:9f:74:7a:72:d8:93:1f:5d:ae:79:5a:32:d4:4b:c2:f7:
98:9b:19:41:2d:00:70:e1:bb:7b:20:11:24:d1:5b:f2:ef:86:
f0:b7:37:64:1f:83:75:ed:2b:77:db:4c:f3:cd:27:c5:4e:0e:
73:e5:b3:a8:e4:22:26:43:e4:f9:42:30:30:4c:83:00:b4:5f:
37:70:c7:82:d6:c3:20:a1:39:73:bb:fa:01:df:7e:02:85:76:
6c:89:cf:b2:a0:2e:59:35:05:b1:cf:77:cf:6f:22:31:c3:ef:
b2:1f:bf:9b:68:23:12:7b:f3:29:c9:54:3c:b8:42:b3:f6:86:
69:39:6c:8e:f6:b3:b1:ce:db:37:34:07:8e:7c:84:e7:25:26:
70:31:a1:50:06:ab:a3:47:59:27:34:9f:bf:cd:49:28:f7:1c:
17:cd:59:78:08:fc:ac:23:db:c3:19:ff:84:4d:9e:bb:51:5a:
8a:3f:58:fd:7e:73:9c:7d:76:93:82:8e:93:c5:b2:90:67:e6:
50:23:6e:a8:c8:65:ef:88:20:fb:78:45:c9:00:af:01:62:20:
da:0a:c1:fb:c0:04:34:8d:d6:bb:f6:0e:48:ba:bb:1c:69:79:
4a:6d:68:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:40 2025 by rpki-client