Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/BQLl5OpXAZWIGdt7M1ceDj5Gxyw.roa
File: BQLl5OpXAZWIGdt7M1ceDj5Gxyw.roa (raw, json)
Hash identifier: HURZiApJNUI4fW8IrCXDijTimPYpWFn9GQEIRAD82H4=
Subject key identifier: 05:02:E5:E4:EA:57:01:95:88:19:DB:7B:33:57:1E:0E:3E:46:C7:2C
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 0192F22BFC0B719BCCB051EB3F51F81372A5
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/BQLl5OpXAZWIGdt7M1ceDj5Gxyw.roa
Signing time: Sun 03 Nov 2024 13:17:01 +0000
ROA not before: Sun 03 Nov 2024 13:17:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15353
IP address blocks: 185.101.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 07 Nov 2024 08:27:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f2:2b:fc:0b:71:9b:cc:b0:51:eb:3f:51:f8:13:72:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Nov 3 13:17:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0502e5e4ea5701958819db7b33571e0e3e46c72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:13:1a:a0:ec:d5:bf:03:54:69:b8:81:73:
f4:bf:e2:68:ad:0a:e1:7c:af:ef:92:b7:da:38:d6:
32:04:6f:85:74:ce:7e:ef:81:46:b4:2a:6f:ee:28:
84:08:fd:6c:79:de:dd:e2:66:86:be:c6:eb:6f:87:
c4:a7:3c:36:1a:4d:e7:eb:dc:96:f3:4b:1e:8b:2a:
3f:c0:fe:c8:f1:0b:cc:68:f2:cc:24:aa:f5:a6:65:
95:2f:86:70:a0:14:96:59:eb:7e:9e:83:96:bb:ce:
91:a6:48:d2:3f:7d:1a:e2:ca:76:33:0f:67:a9:3d:
25:ad:cf:f9:ea:d5:f9:60:05:95:16:03:71:76:d0:
e1:2d:61:41:c3:ea:28:bc:ad:a0:ac:51:3d:99:d6:
d8:37:9a:dd:38:43:ec:68:7a:ac:73:2e:6a:60:74:
59:b4:34:1d:26:ec:41:39:a1:57:fd:d1:36:35:ed:
41:ea:32:63:8a:4a:20:a7:1d:34:a3:53:4c:ce:93:
5d:21:3e:e5:00:8c:18:18:52:cf:29:60:6c:67:94:
c4:d0:b3:4c:d2:eb:60:2d:ec:19:53:28:4d:f0:ba:
e7:ef:27:81:3a:e7:2b:06:f3:ca:d8:f3:43:8b:38:
e4:70:9e:a3:f0:9b:d0:b9:d0:e9:bf:bb:22:cc:38:
44:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:02:E5:E4:EA:57:01:95:88:19:DB:7B:33:57:1E:0E:3E:46:C7:2C
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/BQLl5OpXAZWIGdt7M1ceDj5Gxyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.168.0/23
Signature Algorithm: sha256WithRSAEncryption
59:be:61:0d:3f:f5:cb:4d:2e:41:16:0b:ea:04:d7:c4:27:d1:
bb:c7:99:b4:c2:76:3e:af:93:80:4f:d2:b0:8b:ad:c2:be:25:
5c:28:9d:17:89:71:c6:b8:0e:51:3a:02:31:15:40:cc:cf:a0:
ed:09:56:73:c5:db:c0:c3:6d:93:5a:6e:73:5d:a1:9d:04:66:
9b:47:89:44:f1:77:22:76:cc:51:7d:74:76:79:2e:6d:0c:29:
b6:f6:80:1b:c5:10:96:0b:0c:6c:84:6d:32:f7:96:b3:87:c9:
07:ea:66:23:70:6b:7d:17:7a:83:38:17:42:78:b6:14:ac:84:
53:d7:75:b8:ce:7b:ec:95:0c:6e:ba:b9:11:6d:aa:2d:23:ea:
a1:05:05:b1:21:35:b0:76:a7:5d:e0:1d:70:61:00:20:43:53:
86:d7:9e:82:90:24:6c:c9:7c:18:14:c1:c9:0f:bf:83:cf:8a:
dd:e9:ff:28:4f:2c:7a:c1:29:d7:9a:00:a8:71:0c:d8:15:ed:
7b:b0:7d:71:b1:97:e5:af:b8:d1:d9:7c:86:2c:b2:fd:a4:f8:
f4:bb:5e:4f:2b:1d:55:93:c0:35:2d:61:30:4e:b2:19:1e:bf:
12:1a:b4:e1:d6:e2:d9:57:27:58:4c:76:e1:7b:d2:3c:1d:72:
86:ef:a0:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:41 2025 by rpki-client