Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/bf51ff-5c36-45b2-91c5-4d685aca8279/1/Je1kn4hqX348DqN-QJWeHqaADNM.roa
File: Je1kn4hqX348DqN-QJWeHqaADNM.roa (raw, json)
Hash identifier: zI/EoGmiSrB7jJ7L5tjYtNhrpvh8gh8hMn0+JLeEyaQ=
Subject key identifier: 25:ED:64:9F:88:6A:5F:7E:3C:0E:A3:7E:40:95:9E:1E:A6:80:0C:D3
Certificate issuer: /CN=62d03888a405e61b87d1706f933b366a86fb4295
Certificate serial: 018CEDECAF9FAE9C8C82BDFA7D97D1B8A8CF
Authority key identifier: 62:D0:38:88:A4:05:E6:1B:87:D1:70:6F:93:3B:36:6A:86:FB:42:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YtA4iKQF5huH0XBvkzs2aob7QpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/bf51ff-5c36-45b2-91c5-4d685aca8279/1/Je1kn4hqX348DqN-QJWeHqaADNM.roa
Signing time: Tue 09 Jan 2024 11:12:40 +0000
ROA not before: Tue 09 Jan 2024 11:12:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 185.164.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 11:34:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ed:ec:af:9f:ae:9c:8c:82:bd:fa:7d:97:d1:b8:a8:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d03888a405e61b87d1706f933b366a86fb4295
Validity
Not Before: Jan 9 11:12:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25ed649f886a5f7e3c0ea37e40959e1ea6800cd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e9:fe:66:64:00:c1:a0:69:e7:e6:05:fe:1f:
4d:c3:a7:97:26:76:73:e4:ac:a6:61:d0:a9:b3:48:
99:2e:68:51:9f:85:6d:f1:57:fb:2c:d1:a9:f4:a6:
b0:17:85:3f:1b:26:da:09:0d:0d:02:67:02:d2:1c:
9e:6f:c9:bb:36:f6:95:cc:b0:65:a4:5c:de:c2:fa:
82:c6:d7:eb:41:24:4b:cc:5d:e4:e2:ab:34:64:93:
bb:1f:3f:99:13:85:ef:f3:f9:78:29:d5:04:6d:f7:
a2:67:72:5b:e5:cf:c7:18:20:06:25:37:c7:35:b4:
c3:de:c2:dd:1f:a9:80:35:66:47:c4:e2:56:9f:ca:
de:e1:eb:14:a0:e6:9f:21:91:3c:0d:0e:36:84:ba:
ad:5c:58:4d:fe:cd:83:f3:c6:60:f5:c2:ba:02:4d:
66:f3:b3:9a:5d:da:42:96:12:40:28:c2:08:c5:63:
44:b1:ef:00:39:7d:e1:21:07:f3:41:ee:2d:f1:42:
e5:50:d3:81:45:b9:af:01:24:00:ad:77:8f:62:02:
82:53:d1:b0:77:aa:55:bf:52:6b:14:14:31:a0:4c:
0c:14:e7:08:00:48:e8:1c:b6:05:29:f0:41:d2:d1:
7e:6f:d7:d7:34:21:53:9d:50:5b:e6:98:a3:d3:bd:
2e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:ED:64:9F:88:6A:5F:7E:3C:0E:A3:7E:40:95:9E:1E:A6:80:0C:D3
X509v3 Authority Key Identifier:
keyid:62:D0:38:88:A4:05:E6:1B:87:D1:70:6F:93:3B:36:6A:86:FB:42:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YtA4iKQF5huH0XBvkzs2aob7QpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/bf51ff-5c36-45b2-91c5-4d685aca8279/1/Je1kn4hqX348DqN-QJWeHqaADNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/bf51ff-5c36-45b2-91c5-4d685aca8279/1/YtA4iKQF5huH0XBvkzs2aob7QpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.219.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:70:94:c9:56:eb:cc:82:38:67:ef:ea:1a:d7:48:de:ee:2d:
71:6e:9b:98:39:d6:a0:49:7c:d9:66:e2:b2:6c:08:ff:06:5e:
ec:f8:0b:91:81:1d:86:0c:c1:0c:bc:d6:e2:c9:bd:94:14:98:
14:1b:37:a9:41:4f:3d:3f:09:c4:ec:e2:11:cb:e8:27:f2:9b:
23:4f:12:ce:ec:e1:bf:06:9f:94:54:a7:08:58:eb:a1:e9:50:
27:de:da:b0:9d:82:a1:36:b4:03:fa:83:0e:9a:7b:4d:3f:25:
f5:97:2d:9c:90:db:d7:56:2f:f8:b2:da:e0:79:c4:46:04:ee:
ad:99:72:69:57:45:60:7a:8f:8e:4d:a2:57:8f:e6:a4:82:5d:
99:d3:40:a1:48:cd:94:47:50:0e:c1:e7:1d:1f:69:a3:34:84:
bf:63:bf:d5:47:75:0a:0d:25:85:68:5e:67:66:07:e6:c1:33:
b0:97:88:cf:c5:ac:da:be:73:6e:eb:d7:99:d1:c4:8a:26:9c:
3e:c6:0f:04:c1:22:85:89:5c:0d:93:5c:b8:ff:4c:70:87:a9:
6a:06:15:5c:85:31:88:98:ef:9d:4e:87:9a:e8:19:88:6f:5a:
aa:25:77:2e:b4:27:18:76:94:3b:8a:51:ef:1c:28:a1:21:9d:
72:89:79:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 15:34:20 2025 by rpki-client