Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/6I6lLHJ-YhQkcjI_nQBQsJrwvnw.roa
File: 6I6lLHJ-YhQkcjI_nQBQsJrwvnw.roa (raw, json)
Hash identifier: pFpxkzTJOOAoQm9fv/EBP9cUO9hIEoDG8Ibxq+hNPA0=
Subject key identifier: E8:8E:A5:2C:72:7E:62:14:24:72:32:3F:9D:00:50:B0:9A:F0:BE:7C
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01941D77D21D5C00450A9186A81266B268F7
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/6I6lLHJ-YhQkcjI_nQBQsJrwvnw.roa
Signing time: Tue 31 Dec 2024 16:06:19 +0000
ROA not before: Tue 31 Dec 2024 16:06:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215304
IP address blocks: 85.115.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1d:77:d2:1d:5c:00:45:0a:91:86:a8:12:66:b2:68:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Dec 31 16:06:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e88ea52c727e62142472323f9d0050b09af0be7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ec:1d:97:2b:51:f0:f5:8b:86:b8:3b:cb:ea:
e6:3c:5a:83:30:cc:29:ba:f4:f0:77:83:9f:ad:9b:
66:f4:88:54:04:38:ca:48:99:c9:80:78:71:f0:24:
f5:d7:2a:bf:1d:d8:93:48:d6:43:54:99:27:a0:08:
b7:b4:bf:62:09:dd:42:2d:08:f9:27:3b:bb:50:d7:
6a:52:29:02:cf:3c:fd:da:53:df:1a:0a:24:d3:22:
42:92:fb:7b:c1:8f:c9:30:44:2f:ae:65:a9:97:aa:
b4:37:94:d3:b6:64:7b:7a:5a:25:fa:c3:1c:dd:5c:
8d:4a:4e:e4:1a:d4:d5:8e:0d:f4:52:d8:f8:de:66:
97:56:3a:88:54:24:a8:7e:e1:1c:3e:a3:10:b0:51:
48:22:d1:c5:a6:e3:26:fd:79:3b:34:80:48:02:2b:
b5:3b:ea:88:0f:3b:94:de:a1:7d:ab:2b:ae:d5:83:
46:a1:b4:d2:47:5e:8a:a1:ec:6e:e2:d5:a5:79:53:
2a:03:df:73:56:ed:d7:fb:d0:99:0d:e2:ca:08:fd:
80:f0:d0:a7:cb:10:03:e7:ea:2c:30:32:b4:17:9c:
fc:89:81:da:ac:9e:24:e0:1e:29:1e:7a:42:90:f0:
ab:e9:d3:39:ec:0f:64:71:43:e9:94:b5:1d:a6:42:
f9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:8E:A5:2C:72:7E:62:14:24:72:32:3F:9D:00:50:B0:9A:F0:BE:7C
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/6I6lLHJ-YhQkcjI_nQBQsJrwvnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.211.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:5e:03:0d:9c:c8:8b:56:17:93:94:fa:e3:65:8a:5e:a3:5b:
11:89:92:5e:65:37:ec:8b:6d:fc:eb:c9:11:95:ce:83:b2:ee:
72:58:5a:c1:5e:7e:e5:10:5e:b7:7d:9c:7d:99:0d:1d:19:0f:
8c:60:67:89:05:f9:53:de:d4:01:95:75:fc:52:e1:d2:da:f0:
23:56:03:b6:ba:26:a6:94:e4:74:4f:d2:92:4f:07:c3:38:f4:
0a:60:9e:e7:a7:69:29:d8:ba:3b:2a:00:c8:45:f7:3a:1d:63:
0f:4b:7b:ab:f5:1c:72:a5:3e:50:32:a0:d3:ab:fb:6d:97:8d:
bf:a4:a0:ff:c9:73:f3:50:a6:7d:ec:6d:dd:89:52:fa:b1:19:
c3:38:04:f9:b6:5c:4e:30:cc:fb:66:76:ed:78:d6:1d:3a:7f:
5a:29:a9:44:20:fd:be:d6:8b:ab:07:dd:e0:a8:f1:33:a5:4a:
75:c0:27:08:e6:26:a6:66:6c:f5:35:ae:c9:22:49:cc:1f:34:
7f:10:3e:0d:ee:58:63:ae:f5:d5:2b:24:51:33:49:44:60:f8:
e2:d7:ac:e6:dd:6a:2e:4b:a6:5e:81:b8:28:cc:2c:da:00:4d:
81:13:3f:63:37:bb:ac:0b:76:47:ee:dc:07:f9:60:7b:09:f8:
8d:9f:a5:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:09:35 2025 by rpki-client