Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fc803f-9675-4355-80f6-77730159c8d4/1/xqlypnCcQw5Mml20k2J5joc6VjA.roa
File: xqlypnCcQw5Mml20k2J5joc6VjA.roa (raw, json)
Hash identifier: 76exqd/H5iEUXBhjaoDknkZwtR1qPbdJ5R6IXIpYzAU=
Subject key identifier: C6:A9:72:A6:70:9C:43:0E:4C:9A:5D:B4:93:62:79:8E:87:3A:56:30
Certificate issuer: /CN=e6a54852077a007838303c1f61c84387cccdd684
Certificate serial: 0191743CBA910A09E7D4A5BC9993E165DBB4
Authority key identifier: E6:A5:48:52:07:7A:00:78:38:30:3C:1F:61:C8:43:87:CC:CD:D6:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qVIUgd6AHg4MDwfYchDh8zN1oQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc803f-9675-4355-80f6-77730159c8d4/1/xqlypnCcQw5Mml20k2J5joc6VjA.roa
Signing time: Wed 21 Aug 2024 09:20:22 +0000
ROA not before: Wed 21 Aug 2024 09:20:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199378
IP address blocks: 185.151.116.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:74:3c:ba:91:0a:09:e7:d4:a5:bc:99:93:e1:65:db:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a54852077a007838303c1f61c84387cccdd684
Validity
Not Before: Aug 21 09:20:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6a972a6709c430e4c9a5db49362798e873a5630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:64:a2:f1:1e:d0:b5:a1:28:a7:c8:9d:9a:c1:
4e:2e:8f:c9:3b:6f:bd:3e:f8:08:2c:70:22:17:cb:
a1:c9:2e:29:cf:a7:12:a6:a2:af:d1:b0:c4:9d:f3:
18:1b:52:74:f6:fe:14:c0:fc:48:90:56:4f:bf:b1:
f9:8e:3e:50:e3:2c:71:30:1f:81:45:f7:ff:96:d9:
46:23:0d:75:74:cd:3e:c4:fb:01:47:a8:dd:0c:8a:
d0:bc:7a:30:b2:72:f9:6e:b7:b9:7b:1f:f5:9d:cf:
a1:cc:d7:89:d5:38:37:ae:a0:8e:45:30:9e:87:d6:
30:4b:cc:1c:15:f9:7b:53:ad:01:84:df:7f:a6:d8:
73:fd:08:05:4f:e7:2a:3a:c7:8d:2b:ed:2e:36:7b:
8a:67:15:ab:67:f8:88:eb:0d:9a:b0:cb:bf:26:c7:
85:20:a3:df:f4:68:77:c5:06:98:1f:b2:11:ed:0c:
11:e8:db:8f:9a:b1:26:55:2d:3f:8a:3c:6a:26:9a:
c1:e3:f5:9c:da:ec:85:bc:0c:ac:30:46:8b:05:54:
66:3d:19:a7:f0:c5:83:fb:bc:9f:98:fa:9c:b1:64:
d9:65:0d:ab:cb:d2:8a:a0:95:2b:9b:8a:2a:61:b8:
54:3c:40:bf:6a:e3:65:d5:d9:6c:50:5a:5a:93:4e:
a6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A9:72:A6:70:9C:43:0E:4C:9A:5D:B4:93:62:79:8E:87:3A:56:30
X509v3 Authority Key Identifier:
keyid:E6:A5:48:52:07:7A:00:78:38:30:3C:1F:61:C8:43:87:CC:CD:D6:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qVIUgd6AHg4MDwfYchDh8zN1oQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc803f-9675-4355-80f6-77730159c8d4/1/xqlypnCcQw5Mml20k2J5joc6VjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc803f-9675-4355-80f6-77730159c8d4/1/5qVIUgd6AHg4MDwfYchDh8zN1oQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.116.0/23
Signature Algorithm: sha256WithRSAEncryption
11:65:5c:f7:f7:2e:67:50:1e:9f:04:c4:eb:43:ef:c7:a2:40:
5d:f0:86:a5:fa:9a:2b:90:f4:36:97:7b:61:87:e4:12:c5:f2:
02:29:d6:44:f0:43:79:cd:fe:4c:48:52:d4:b3:af:7b:12:93:
7a:8f:4b:c0:5f:75:8a:e1:16:06:5a:72:37:ba:75:a0:f3:92:
a3:14:c2:cf:a7:06:b1:b4:a1:7c:21:8d:0f:e5:8c:e6:c5:18:
39:97:1e:22:27:c7:63:72:58:cb:ec:00:2c:c6:2a:c6:28:05:
9a:e0:29:6b:a1:6d:ec:09:24:72:3f:0a:67:df:62:96:de:a7:
66:d5:a5:39:80:bd:af:9f:f5:ad:21:10:8b:57:8a:e8:e6:4b:
f8:94:65:c7:47:00:ba:00:1d:75:2a:5b:d9:2e:f4:04:6f:c8:
6a:e5:3e:91:13:47:59:8f:88:41:04:a7:a6:cd:20:2d:c0:bf:
2e:89:09:b2:7f:bf:9a:d1:14:58:74:0a:e8:1b:27:9d:e7:5d:
85:1c:41:98:49:ce:98:23:80:6c:26:ae:d5:4a:b5:0c:d1:b7:
5b:73:fe:2f:6e:73:57:41:c9:73:67:92:02:f7:0c:6f:b6:42:
65:45:ec:0d:58:7b:8d:f7:d5:4f:3a:5a:4e:77:ee:7b:38:06:
7d:b7:7d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:33:12 2025 by rpki-client