Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/SyCxSJuD2sTCHwDIWOKJ8lKnFwA.roa
File: SyCxSJuD2sTCHwDIWOKJ8lKnFwA.roa (raw, json)
Hash identifier: cxG22/jwX0zu9cF+HCYkkz3/r0+/AoSF4bdGWmtotEs=
Subject key identifier: 4B:20:B1:48:9B:83:DA:C4:C2:1F:00:C8:58:E2:89:F2:52:A7:17:00
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01941D77D1EF20A69FC54DA3AE1486E74594
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/SyCxSJuD2sTCHwDIWOKJ8lKnFwA.roa
Signing time: Tue 31 Dec 2024 16:06:19 +0000
ROA not before: Tue 31 Dec 2024 16:06:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214654
IP address blocks: 85.115.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1d:77:d1:ef:20:a6:9f:c5:4d:a3:ae:14:86:e7:45:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Dec 31 16:06:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b20b1489b83dac4c21f00c858e289f252a71700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:49:11:a5:0a:7a:a9:09:36:e0:43:2e:44:23:
53:00:f9:95:6e:f1:0b:4a:28:10:01:de:e7:ef:45:
9c:36:8d:6e:1c:5d:e1:1b:c4:f7:49:64:2a:0c:06:
c1:6b:80:f4:55:c6:18:a9:fa:37:6f:33:86:a6:e0:
2f:93:26:50:e1:8d:da:4c:d7:cc:81:b7:9d:ac:a1:
af:0d:21:87:3a:ea:1d:8d:a6:f5:e9:85:8f:9f:c5:
8f:33:ed:09:ec:19:4f:e3:bd:66:6e:9e:55:ec:92:
14:dd:44:b8:f9:61:ed:58:c7:c6:a9:09:74:39:12:
b8:f1:65:bd:2a:05:04:05:93:f1:0e:11:ab:79:e8:
6a:a3:ea:21:68:d2:bc:ea:40:45:8f:4e:9f:d3:d4:
14:54:b1:1c:52:e0:b1:51:07:65:9d:f8:29:fb:29:
ba:91:2c:c4:40:90:28:e8:45:2c:31:ac:7e:20:3b:
26:bc:50:70:56:01:7e:55:4a:3b:85:31:20:dc:bc:
b1:fc:30:76:3f:b5:87:dc:61:f8:90:4b:c4:86:4d:
e7:af:64:17:a4:a1:33:a0:a7:f2:95:39:ac:0e:b4:
ad:f6:16:47:ce:bd:bb:8a:37:07:bd:c5:1b:4c:c3:
54:41:47:95:b2:19:c1:dc:0f:b9:5f:d7:40:d6:ce:
cd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:20:B1:48:9B:83:DA:C4:C2:1F:00:C8:58:E2:89:F2:52:A7:17:00
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/SyCxSJuD2sTCHwDIWOKJ8lKnFwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.211.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:4f:7a:f6:82:22:29:a1:2a:82:cf:4f:6c:9d:f1:12:64:42:
47:f0:3a:4b:e9:53:ad:d2:c3:d8:cd:6c:09:01:e7:f0:0a:e7:
60:d2:55:04:59:ac:1f:10:00:91:53:4e:34:93:b7:ec:cf:7e:
33:f9:4a:f5:8f:b6:37:78:20:29:cd:92:62:4f:b3:70:e0:69:
d7:f6:75:a9:ff:f6:2f:df:fe:20:57:de:5e:34:89:57:f6:9e:
bc:5e:b1:d5:fe:6c:56:7b:e4:8c:5a:d0:8c:71:e7:53:d4:0e:
d4:24:a0:91:cd:bc:63:e3:39:d1:bb:e9:5c:8b:e5:cb:00:18:
ed:65:ca:d5:3d:22:d2:4b:44:51:3e:82:fe:86:25:83:e0:07:
e6:31:19:07:ae:5f:d3:d8:91:86:18:44:1c:10:66:94:65:41:
0c:b8:33:95:89:d3:7e:66:e8:db:cc:11:22:83:8e:bc:a7:70:
ee:c0:b5:c0:2a:66:b7:6a:59:13:54:4a:61:c7:88:19:49:f7:
a8:9d:d1:1b:dc:26:0c:11:91:c9:c7:1d:e8:37:5c:19:8e:e1:
d5:55:11:56:c4:fb:e5:4e:60:14:97:91:97:ab:71:66:da:63:
4d:74:7b:fe:63:26:3f:5b:75:b9:27:9d:82:a0:7b:5b:e3:ea:
b7:1a:ca:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:13:48 2025 by rpki-client