Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/2osS1xb9g1SGIwO0B-SZo2i4rhA.roa
File: 2osS1xb9g1SGIwO0B-SZo2i4rhA.roa (raw, json)
Hash identifier: U0uSyLe5GCvWnfsHH2WpJUKqvXKKFi0GLa1W2r9Mgfc=
Subject key identifier: DA:8B:12:D7:16:FD:83:54:86:23:03:B4:07:E4:99:A3:68:B8:AE:10
Certificate issuer: /CN=331706b915bab8dac2b5547fbc87adeb61e6aede
Certificate serial: 01961F8501F854BBBD90A726C876583CB35E
Authority key identifier: 33:17:06:B9:15:BA:B8:DA:C2:B5:54:7F:BC:87:AD:EB:61:E6:AE:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxcGuRW6uNrCtVR_vIet62Hmrt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/2osS1xb9g1SGIwO0B-SZo2i4rhA.roa
Signing time: Thu 10 Apr 2025 11:45:32 +0000
ROA not before: Thu 10 Apr 2025 11:45:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47297
IP address blocks: 185.7.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Apr 2025 12:14:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1f:85:01:f8:54:bb:bd:90:a7:26:c8:76:58:3c:b3:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331706b915bab8dac2b5547fbc87adeb61e6aede
Validity
Not Before: Apr 10 11:45:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da8b12d716fd8354862303b407e499a368b8ae10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c7:18:3f:55:74:0c:01:f8:06:9a:79:9e:89:
b2:d1:25:b6:78:3c:c5:1b:0a:fd:d5:24:5c:41:62:
15:ec:40:1a:a2:f7:93:93:62:69:9d:34:7e:09:83:
28:bd:9c:54:ef:86:67:53:16:59:64:e7:d5:d6:eb:
25:fc:d6:dd:8d:d4:7f:b9:6f:b0:1e:3d:a4:5e:3b:
3c:d1:85:ed:f4:bd:52:cc:b7:b0:eb:5e:11:82:0a:
a8:f7:4d:00:a1:24:6d:60:4b:4d:d2:5b:f8:16:35:
ce:c8:38:ce:6d:ff:d2:69:33:b1:95:36:3a:e9:a4:
65:d9:17:13:cd:6e:57:0c:73:98:2c:3a:09:3c:6c:
40:a6:e0:5b:6c:ff:23:b1:c8:06:d3:e0:e3:39:8d:
cc:8a:94:94:94:25:cc:fa:f2:d8:97:01:2d:34:df:
ec:1d:cb:f8:8c:dd:fb:1a:2c:0d:b3:d6:c2:8c:3c:
a4:63:ba:b0:71:0f:62:fb:39:7a:21:d8:54:d9:14:
cd:fc:a9:b0:d1:4d:66:96:9f:f7:df:62:54:b3:a5:
8f:e3:19:91:e7:66:90:34:40:0e:26:f6:cf:70:a4:
ef:11:cb:05:ad:17:0d:e9:53:10:98:2d:6c:b2:dc:
b7:ff:f3:ce:83:fc:9f:3b:8e:d3:d0:5f:01:57:d5:
38:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8B:12:D7:16:FD:83:54:86:23:03:B4:07:E4:99:A3:68:B8:AE:10
X509v3 Authority Key Identifier:
keyid:33:17:06:B9:15:BA:B8:DA:C2:B5:54:7F:BC:87:AD:EB:61:E6:AE:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxcGuRW6uNrCtVR_vIet62Hmrt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/2osS1xb9g1SGIwO0B-SZo2i4rhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/MxcGuRW6uNrCtVR_vIet62Hmrt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.68.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:c1:38:4d:d9:9f:42:6c:d7:51:fb:85:4e:b2:1b:00:f3:9c:
59:e1:34:78:96:1f:32:16:bf:58:43:5b:f8:1f:a9:5c:de:dd:
a0:07:08:42:35:1e:71:7d:35:73:1f:45:22:66:09:12:8a:a5:
21:4d:a8:e3:2f:0d:35:08:51:06:15:1c:10:52:49:7a:64:21:
88:93:dd:7e:ca:b5:3f:ab:05:65:96:25:69:df:6c:0c:d4:20:
ad:7b:2d:c7:65:ec:8c:9f:48:9a:45:69:63:47:44:3d:83:b8:
81:d2:5a:66:9b:1e:83:b2:9f:02:56:65:16:88:32:bd:e8:bf:
27:01:c8:77:d6:ab:59:fd:81:19:14:23:bd:66:a3:d0:54:dc:
59:3b:fd:d6:40:b9:6a:80:3f:f3:1e:23:ba:0e:91:e8:87:af:
f0:4c:b0:b5:16:67:20:3f:a7:a7:81:dc:87:dc:fb:f4:a5:d1:
f4:c0:38:61:2a:6f:12:52:8b:92:50:cc:9f:7c:50:f0:a7:6f:
af:9a:a7:64:81:f7:1d:02:c5:5f:5d:c2:55:dd:68:b9:68:cd:
ee:0d:7a:e0:fb:fd:76:f9:36:df:00:4c:d0:92:62:8e:89:21:
c3:d9:c3:59:43:f5:13:53:82:9c:c0:d9:ad:fb:8c:ba:ac:41:
ac:41:d5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 06:27:00 2025 by rpki-client