Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/cc47e5-4a21-4f4f-be22-a5c93a7b9fa5/1/jqWE2UoIvJ8lfhmm_q6rkf1g_hs.roa
File: jqWE2UoIvJ8lfhmm_q6rkf1g_hs.roa (raw, json)
Hash identifier: 2dlXGqTs/XMlAclA7BLaYY0Fzql2er2BrLw2zvogu90=
Subject key identifier: 8E:A5:84:D9:4A:08:BC:9F:25:7E:19:A6:FE:AE:AB:91:FD:60:FE:1B
Certificate issuer: /CN=7e52fab6d3206eb60a31db96c72d94fc242c0a08
Certificate serial: 01914A43BF9CEF2CDE2059EADF0AABB9D29C
Authority key identifier: 7E:52:FA:B6:D3:20:6E:B6:0A:31:DB:96:C7:2D:94:FC:24:2C:0A:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/flL6ttMgbrYKMduWxy2U_CQsCgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/cc47e5-4a21-4f4f-be22-a5c93a7b9fa5/1/jqWE2UoIvJ8lfhmm_q6rkf1g_hs.roa
Signing time: Tue 13 Aug 2024 05:43:59 +0000
ROA not before: Tue 13 Aug 2024 05:43:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47402
IP address blocks: 185.7.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 13 Aug 2024 06:48:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4a:43:bf:9c:ef:2c:de:20:59:ea:df:0a:ab:b9:d2:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e52fab6d3206eb60a31db96c72d94fc242c0a08
Validity
Not Before: Aug 13 05:43:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ea584d94a08bc9f257e19a6feaeab91fd60fe1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:68:8c:91:a5:20:bc:83:d1:fa:ff:cf:8b:
0f:9a:fc:88:5c:60:d8:aa:7a:aa:10:26:94:b9:21:
1b:22:54:ce:7c:01:37:8e:30:04:d5:cc:81:59:79:
11:33:58:16:e9:de:e8:01:0c:32:f5:57:98:4a:4b:
e1:35:f9:eb:43:58:e1:ca:ce:9e:3e:65:b6:d4:61:
a7:a8:fa:d5:9b:71:fe:7c:95:47:e6:0d:45:c1:31:
93:62:95:33:0b:4f:a2:14:e2:58:ab:7d:80:b2:d5:
95:9f:85:86:70:62:17:3f:74:6b:75:98:1f:14:bf:
0b:a0:84:69:b4:03:c5:60:78:4d:d8:19:2a:56:19:
56:b1:d4:1f:d4:ef:c2:56:2d:d0:05:c2:a0:8e:06:
99:e5:c8:d4:d6:e2:15:0e:60:89:f8:5c:12:1f:c9:
d8:1e:5f:76:c3:3e:fb:1f:db:f4:2a:2c:fc:d9:42:
45:80:bf:20:74:a9:ab:0c:8a:07:a6:6b:af:66:a0:
76:87:2f:89:bf:fb:2e:45:c1:26:56:fe:f1:6c:e8:
11:00:2e:69:bd:06:df:e8:16:d6:2d:df:4d:43:41:
ea:0a:e4:98:fe:7b:7b:c1:74:d5:96:df:b7:ef:74:
12:b4:dc:69:e6:b0:ad:84:ac:9e:c3:52:0a:8f:d4:
87:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A5:84:D9:4A:08:BC:9F:25:7E:19:A6:FE:AE:AB:91:FD:60:FE:1B
X509v3 Authority Key Identifier:
keyid:7E:52:FA:B6:D3:20:6E:B6:0A:31:DB:96:C7:2D:94:FC:24:2C:0A:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/flL6ttMgbrYKMduWxy2U_CQsCgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cc47e5-4a21-4f4f-be22-a5c93a7b9fa5/1/jqWE2UoIvJ8lfhmm_q6rkf1g_hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cc47e5-4a21-4f4f-be22-a5c93a7b9fa5/1/flL6ttMgbrYKMduWxy2U_CQsCgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.204.0/22
Signature Algorithm: sha256WithRSAEncryption
67:21:eb:ed:41:e9:c1:18:ed:f3:c8:22:bb:32:d0:8c:06:e2:
5e:4a:b5:29:3b:f4:80:08:92:25:7f:11:5e:ff:cc:b7:43:6e:
08:fb:ad:b8:14:30:9a:f4:ae:bc:69:8e:46:a5:36:1d:09:6f:
df:dc:5b:07:df:b7:b3:27:c3:77:89:d4:8a:a7:d3:d5:cd:2e:
57:2e:5d:ad:f8:0c:24:09:cf:52:cc:09:cc:84:3c:c3:19:66:
9e:f1:47:71:80:2d:33:da:11:79:ea:6c:72:b2:f5:02:27:fe:
81:2f:b8:b9:e3:57:8b:af:ef:70:82:0b:24:10:c1:d6:c0:a1:
26:30:e6:42:59:13:9f:96:d1:75:4d:a1:a5:e7:50:43:2a:56:
da:48:61:55:bc:f5:1d:a7:c1:d0:ee:34:3e:f6:ed:f4:23:48:
46:ed:45:37:1c:db:d0:c9:d5:fb:e3:e4:95:22:91:ee:9c:a3:
c9:53:ca:7b:ef:aa:5b:e2:a0:1e:2a:b5:4c:c2:5e:e0:e8:bc:
e4:d0:02:1f:19:33:b7:30:bf:86:f4:69:2b:a8:77:f4:d0:27:
7f:03:66:a3:c3:b5:d1:0e:5c:83:15:ce:14:fe:2c:41:8e:05:
76:cf:94:67:31:b5:cd:95:08:d5:7a:c3:27:a1:bf:78:3b:51:
24:0f:db:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:26:14 2025 by rpki-client