Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ae6e3a-9cea-47c7-ab13-ef4cda5f52cf/1/QoxLHq3N58WlOor_4rlrpQeILbw.roa
File: QoxLHq3N58WlOor_4rlrpQeILbw.roa (raw, json)
Hash identifier: b6gaRakpomgv9rsfqYSOB1ICjUtYykXMBbXPdp0mdEg=
Subject key identifier: 42:8C:4B:1E:AD:CD:E7:C5:A5:3A:8A:FF:E2:B9:6B:A5:07:88:2D:BC
Certificate issuer: /CN=cb2762070f12543f1b0ac71982ac71025810ff5f
Certificate serial: 018CC9BCD791EF5019290EB46FAD322DA1A0
Authority key identifier: CB:27:62:07:0F:12:54:3F:1B:0A:C7:19:82:AC:71:02:58:10:FF:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yydiBw8SVD8bCscZgqxxAlgQ_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ae6e3a-9cea-47c7-ab13-ef4cda5f52cf/1/QoxLHq3N58WlOor_4rlrpQeILbw.roa
Signing time: Tue 02 Jan 2024 10:34:05 +0000
ROA not before: Tue 02 Jan 2024 10:34:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199525
IP address blocks: 185.65.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:53:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:d7:91:ef:50:19:29:0e:b4:6f:ad:32:2d:a1:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2762070f12543f1b0ac71982ac71025810ff5f
Validity
Not Before: Jan 2 10:34:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=428c4b1eadcde7c5a53a8affe2b96ba507882dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a5:7d:05:7d:82:54:4c:94:f3:c0:ab:ad:d4:
49:d8:a2:16:ea:7e:87:e7:14:e9:46:05:34:48:c8:
0c:ef:d0:56:43:d0:62:4c:ab:3c:83:a8:5d:8a:b7:
4a:5d:f0:85:ce:04:34:6f:9e:84:92:4a:a0:a3:c5:
3f:98:65:7a:54:dc:d7:b8:41:20:9f:47:0f:7d:1b:
6e:af:4a:ba:75:a8:73:fe:2b:f7:a4:ce:e3:19:5c:
9f:c1:7b:2f:f5:0f:72:2c:f9:73:e7:d8:73:38:52:
89:8c:fe:09:b7:12:19:f0:87:62:d6:82:30:60:b3:
5f:f2:35:19:c9:c6:9b:aa:40:b0:57:c0:75:e1:fb:
b0:7f:fb:59:f2:64:a4:af:ae:97:f4:2a:79:b2:49:
f3:ae:a8:5e:d0:bb:15:12:91:87:61:ab:e3:f2:07:
08:37:55:60:cb:d0:d6:8f:5b:25:68:8c:c8:5e:ad:
5e:55:b5:ab:9e:86:f0:fe:88:46:87:e2:6f:b6:d1:
59:2b:1e:9d:6e:e1:3d:66:89:88:8b:f5:fd:41:00:
51:f6:19:d7:5c:83:9f:c8:e2:00:8d:fc:b0:2b:2f:
ba:00:6b:6a:99:e7:07:5e:52:c0:39:52:d6:9e:a6:
e9:75:99:f6:d5:63:ef:34:4e:e7:b1:3d:7e:47:bf:
a9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:8C:4B:1E:AD:CD:E7:C5:A5:3A:8A:FF:E2:B9:6B:A5:07:88:2D:BC
X509v3 Authority Key Identifier:
keyid:CB:27:62:07:0F:12:54:3F:1B:0A:C7:19:82:AC:71:02:58:10:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yydiBw8SVD8bCscZgqxxAlgQ_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ae6e3a-9cea-47c7-ab13-ef4cda5f52cf/1/QoxLHq3N58WlOor_4rlrpQeILbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ae6e3a-9cea-47c7-ab13-ef4cda5f52cf/1/yydiBw8SVD8bCscZgqxxAlgQ_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.107.0/24
Signature Algorithm: sha256WithRSAEncryption
37:97:6b:df:b1:fe:55:b3:2d:c2:ec:b2:16:41:18:02:66:8b:
24:e6:e6:5c:9b:a7:77:1c:3b:01:84:42:f5:c1:ac:f4:c6:3c:
f4:86:28:35:de:56:c5:8a:e1:13:bb:25:de:36:a1:3e:94:31:
84:a5:a3:7c:e2:32:b3:9e:71:73:db:40:af:54:e2:a8:20:92:
cf:c6:06:7f:b8:a1:40:e3:b2:fe:64:2d:31:9a:2f:97:07:9d:
d6:c7:ce:00:9c:54:78:4b:5c:4c:6c:3c:9a:49:c4:20:9d:83:
d0:53:00:2c:24:8a:1f:5d:03:a3:99:66:44:b1:10:43:59:48:
88:95:ac:8e:3d:ca:7c:22:bb:68:9c:3a:c2:9f:bd:93:c2:f3:
66:c7:27:9e:eb:50:ac:3f:f9:7d:98:7b:72:4c:d6:e5:52:b4:
93:87:93:d0:39:3a:0f:d4:7e:e5:67:44:a8:48:6e:43:92:11:
03:b9:d5:f7:37:76:87:cf:20:af:a7:f9:0d:73:0e:06:1a:40:
ef:b4:2c:8c:14:3a:09:aa:af:cf:72:73:82:03:71:80:c9:5c:
3c:53:68:ef:a1:6d:20:fb:87:8c:dc:a0:10:89:d0:45:dd:68:
12:d8:ca:f4:dd:86:d3:78:ec:a6:51:8d:3c:b7:c0:c9:21:a4:
6e:59:0a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:05:22 2025 by rpki-client