Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/5XCk8gZ-Gp7t_2Mj-2Ap3V9JDnU.roa
File: 5XCk8gZ-Gp7t_2Mj-2Ap3V9JDnU.roa (raw, json)
Hash identifier: ySgad2oNkUKhpdoJ5BVxnjST4loEEuNVtDpvYUyIusk=
Subject key identifier: E5:70:A4:F2:06:7E:1A:9E:ED:FF:63:23:FB:60:29:DD:5F:49:0E:75
Certificate issuer: /CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Certificate serial: 01856F302382981F46299EB826EE43CBA50A
Authority key identifier: BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/5XCk8gZ-Gp7t_2Mj-2Ap3V9JDnU.roa
Signing time: Sun 01 Jan 2023 21:15:03 +0000
ROA not before: Sun 01 Jan 2023 21:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.151.44.0/23 maxlen: 23
185.151.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:23:82:98:1f:46:29:9e:b8:26:ee:43:cb:a5:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Validity
Not Before: Jan 1 21:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e570a4f2067e1a9eedff6323fb6029dd5f490e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:83:8f:c6:03:d5:61:ba:24:d5:6c:6f:c2:99:
2b:ba:2b:08:49:59:69:c5:d0:1b:89:f2:91:cb:ef:
ad:bc:4d:88:5f:fb:17:d8:0b:5c:b8:5b:58:11:48:
6f:03:9e:d6:b0:74:19:63:d0:89:90:a5:6f:bf:94:
a8:2a:bc:ca:09:87:03:0e:29:79:84:d0:c0:16:27:
1e:9e:87:b2:c9:a9:59:ad:fc:91:d4:03:38:43:86:
e8:80:26:50:3c:e3:14:59:1d:e6:bd:83:16:ab:82:
c1:e2:a0:8a:39:a8:9c:e3:b9:75:d6:11:04:7a:af:
40:d3:21:6c:14:34:7f:39:e5:3e:56:34:b3:38:be:
85:10:19:af:48:af:57:d6:19:a9:54:74:1c:c0:17:
66:4b:6d:11:91:d3:5c:4e:35:81:2a:d7:fc:57:60:
92:59:38:6c:05:79:41:04:5e:d7:6a:a0:6c:78:0c:
1a:e0:d1:6a:d5:9a:1c:41:a3:0e:ce:5c:14:95:b6:
93:42:70:6f:00:5f:50:f5:44:26:22:bc:5f:08:75:
9a:9f:17:fb:9b:0a:9b:7a:33:8b:0c:e2:1f:b0:67:
ce:20:bf:16:63:a2:3f:1d:ff:d6:96:68:6c:09:41:
38:78:0e:f3:60:82:ed:f7:0f:a0:b7:ea:d4:d7:56:
16:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:70:A4:F2:06:7E:1A:9E:ED:FF:63:23:FB:60:29:DD:5F:49:0E:75
X509v3 Authority Key Identifier:
keyid:BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/5XCk8gZ-Gp7t_2Mj-2Ap3V9JDnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/vE4hsn1vhOvdiIxo55zlVchG2ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.44.0/23
185.151.47.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:6e:aa:04:3c:89:72:91:7b:c5:a8:63:a1:40:c0:f0:bc:77:
c0:cf:50:6b:b1:2f:35:29:37:22:a9:66:06:7f:35:17:f4:e5:
39:b3:0b:e2:2d:aa:70:23:65:34:00:7c:00:20:21:32:22:78:
d9:a7:41:63:66:63:4b:b2:2f:53:f9:83:06:72:cf:20:52:46:
de:33:31:f4:3d:a5:a9:6a:e8:11:1c:79:5a:20:60:96:8a:75:
92:38:9f:33:06:59:54:f6:65:73:a6:ae:bc:2c:d0:91:75:25:
bc:8d:34:a9:2d:28:7e:0c:ce:61:d8:ef:ec:6b:9f:63:51:46:
78:68:b1:bc:48:f9:15:c5:e9:23:7d:8f:00:16:64:50:b9:f4:
7c:3c:3b:02:5a:83:75:11:77:c4:3f:28:05:9d:1f:fb:fb:ec:
ed:7a:06:5d:55:c7:a4:f0:e4:7f:bc:80:42:b2:76:9e:38:92:
78:4b:01:ba:ce:21:2b:81:de:76:a3:dc:b2:6e:b4:18:93:98:
d6:8b:f7:78:4b:18:43:a3:05:3a:04:6f:3c:18:b1:27:43:df:
5f:66:96:0f:b8:6e:c3:36:b8:c7:53:79:cf:ec:2d:15:2b:b2:
e1:93:b7:76:04:36:6e:dc:45:be:d3:10:41:56:4e:31:cd:0a:
62:72:f7:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:01 2024 by rpki-client on console-fra.rpki-client.org