Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/gyPBdS7KhQngdeZS7xF7Y2ou_3o.roa
File: gyPBdS7KhQngdeZS7xF7Y2ou_3o.roa (raw, json)
Hash identifier: BElHl6++/WuV+cl+3j8j2C3WtpeUWQZ4UvJtY6fn9Sw=
Subject key identifier: 83:23:C1:75:2E:CA:85:09:E0:75:E6:52:EF:11:7B:63:6A:2E:FF:7A
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 019058F96A27B5B2FA0BC46C28B70D204E75
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/gyPBdS7KhQngdeZS7xF7Y2ou_3o.roa
Signing time: Thu 27 Jun 2024 09:14:18 +0000
ROA not before: Thu 27 Jun 2024 09:14:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39521
IP address blocks: 185.101.168.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 08:45:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:58:f9:6a:27:b5:b2:fa:0b:c4:6c:28:b7:0d:20:4e:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Jun 27 09:14:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8323c1752eca8509e075e652ef117b636a2eff7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:09:28:cf:06:e7:68:14:f1:b8:de:37:06:d2:
e6:b8:d4:34:01:b1:5c:34:d2:bd:8f:7c:8b:e6:5a:
e1:a6:6e:a6:a7:97:3e:05:0e:68:2e:d1:45:57:38:
95:81:6f:94:95:4b:d5:22:70:69:fd:dd:10:b1:ee:
f2:b6:56:bb:c3:a3:ac:bc:ad:0d:fd:24:bb:87:96:
09:39:f5:02:d2:c9:d1:df:30:80:61:14:47:03:d3:
51:19:b1:07:7d:d6:72:61:46:3a:1d:c8:3d:36:c3:
ca:9e:64:59:cb:71:ab:80:5a:f4:2b:9a:2a:eb:7e:
12:d3:66:1f:70:94:b1:af:90:8e:99:b3:ab:b9:d5:
c9:25:cf:b5:e6:ee:14:85:14:db:88:df:22:5b:ff:
3b:d4:39:5e:24:c3:be:74:00:e4:7c:f4:a2:d7:20:
3d:23:43:91:7f:68:46:bb:01:52:cd:ca:f6:6c:99:
ea:8f:9c:32:10:e7:21:19:bc:d4:b8:02:70:fb:36:
fe:e4:cb:00:4a:09:08:37:1b:0c:2a:98:48:08:d4:
0a:81:57:80:a9:08:74:f0:95:bd:4b:a2:2a:d4:da:
94:05:d0:d9:ea:0b:65:7f:bc:78:a6:de:01:40:16:
89:35:8a:7b:d3:ca:d9:d7:e7:11:13:cf:47:7a:11:
94:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:23:C1:75:2E:CA:85:09:E0:75:E6:52:EF:11:7B:63:6A:2E:FF:7A
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/gyPBdS7KhQngdeZS7xF7Y2ou_3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.168.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:68:60:d5:a7:e4:1c:d2:94:3e:67:62:0b:64:d9:2a:b1:35:
74:2f:ff:8b:c6:29:ff:25:d5:51:ef:15:81:4b:ba:68:ed:74:
e3:09:bc:df:ef:4b:3a:c0:bb:a7:2e:c9:e2:24:56:a1:5a:0c:
7f:5f:98:e4:9b:d0:ff:4b:65:b7:52:36:ee:25:0a:af:33:cf:
40:7b:ff:39:37:b0:bd:de:87:7d:63:2e:ca:ed:95:d1:be:b2:
86:43:a9:4b:6c:9c:aa:7f:b0:9c:6c:b5:58:08:1d:31:8b:64:
c2:99:ed:fb:46:b8:1b:36:ca:7a:4e:c0:c2:58:6f:9e:30:c2:
6b:2c:9b:bd:2b:c8:f1:b2:88:aa:90:e7:8c:78:33:98:e5:fd:
c6:de:ac:08:0a:11:ae:5e:f1:d8:7a:0d:5e:f3:f5:bf:58:99:
f5:d5:7c:e8:5a:4d:d9:5c:ab:06:f4:69:93:9c:17:cf:77:02:
4c:89:2a:a1:36:1d:60:dd:fa:79:10:28:83:26:14:81:1f:e5:
18:ea:79:c6:cf:d7:e7:a7:ec:14:6f:c3:e1:2b:4d:cc:6a:50:
5b:84:64:7d:25:91:0b:5f:cb:62:93:9e:3c:8b:2e:69:5a:4d:
c2:99:15:f4:0a:13:34:4c:d3:ce:e8:bb:32:dc:f1:6a:0d:58:
d5:80:c6:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:30 2025 by rpki-client