Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rZjoev9dolBMOUXohzbeGQ0UZVg.roa
File: rZjoev9dolBMOUXohzbeGQ0UZVg.roa (raw, json)
Hash identifier: B032tvaT/jS+Cmk2eb0e0XytHmejUw0RMmG9uP2CMoc=
Subject key identifier: AD:98:E8:7A:FF:5D:A2:50:4C:39:45:E8:87:36:DE:19:0D:14:65:58
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01942220570DF40E3A50B74FE6FEA185F8B2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rZjoev9dolBMOUXohzbeGQ0UZVg.roa
Signing time: Wed 01 Jan 2025 13:48:52 +0000
ROA not before: Wed 01 Jan 2025 13:48:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215304
IP address blocks: 185.206.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 14:51:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:57:0d:f4:0e:3a:50:b7:4f:e6:fe:a1:85:f8:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 13:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad98e87aff5da2504c3945e88736de190d146558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5e:bc:e6:6f:35:43:71:e9:48:14:2e:02:e5:
0a:99:eb:4d:66:e0:57:d3:26:9d:cb:84:ce:4c:e8:
92:bc:9a:bd:90:4e:c7:c2:79:30:9f:6c:33:a2:2d:
82:9e:03:82:20:73:37:45:2b:03:8d:22:7a:2d:ca:
1a:02:a2:81:12:91:18:da:9a:52:08:9b:30:03:de:
7a:e4:95:e7:fb:88:c3:5f:02:d6:18:c4:e2:57:d2:
28:62:f2:93:7c:7e:64:f8:2f:85:57:66:bc:70:39:
17:8d:99:4f:8a:d3:89:40:11:f7:06:f6:10:99:9f:
eb:3d:29:38:cb:10:a4:78:1e:03:20:28:2c:3f:aa:
ae:ab:f3:d1:22:13:30:c5:0f:69:9d:e4:01:66:98:
53:a3:c7:d3:0b:3a:fd:58:99:a2:13:ae:fa:44:c6:
58:fb:4e:1c:0d:56:77:71:f8:66:eb:9c:83:e6:8d:
54:7d:9d:c9:f9:00:f0:db:2a:bf:16:f7:86:ae:9a:
5d:6a:6f:d3:7a:72:aa:b0:6b:5a:60:9a:84:e8:5c:
0c:f9:69:99:81:dd:aa:e0:46:87:6e:1e:63:83:75:
2a:86:39:ec:59:1a:5e:4d:0b:82:ce:ff:72:ed:a2:
ce:81:ff:1f:1d:e5:65:e6:55:67:2d:23:ae:b7:12:
d3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:98:E8:7A:FF:5D:A2:50:4C:39:45:E8:87:36:DE:19:0D:14:65:58
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rZjoev9dolBMOUXohzbeGQ0UZVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.250.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:40:34:c3:de:a8:97:2d:81:7a:98:12:c2:b1:b6:90:b2:66:
f4:98:c7:54:fa:0f:96:7e:80:91:84:fb:84:45:28:38:c4:e5:
ba:4e:93:a2:6b:57:b8:77:fa:10:fa:7f:24:dd:a5:bf:5a:d4:
47:10:f5:5a:c7:8a:bb:49:24:3a:04:d5:25:c0:11:47:80:59:
37:4e:42:7a:eb:eb:08:bf:dc:db:8e:55:ac:23:96:c9:6f:b8:
08:48:88:65:53:d1:38:64:a0:35:20:71:b0:37:a3:cc:0a:f9:
27:03:bc:49:4c:25:05:d5:56:d8:e5:2b:72:a6:fe:49:4e:d1:
be:cb:0b:9a:4f:f7:99:fa:7c:84:1e:d5:dc:e3:8c:4a:1e:97:
b0:99:11:24:51:ab:0a:3c:86:62:98:0f:1c:33:ab:0b:f9:b8:
0a:1e:d4:d0:10:e5:87:33:4b:36:a7:09:dd:79:85:82:ee:ac:
1e:7b:37:be:88:68:3e:ba:1b:8b:80:45:79:a3:b7:0c:a0:ad:
47:3d:54:3e:8e:6b:0e:70:a5:f2:9b:5a:1a:3c:c5:47:a3:33:
68:08:ec:e6:61:19:59:85:29:19:80:a8:bd:24:63:4c:29:b7:
9e:c4:09:60:5a:ad:a6:63:a7:4a:cc:be:a5:56:cd:6b:d3:de:
63:a5:57:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:06:42 2025 by rpki-client