Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/bqOluGKlWj7BD6ZYUL4GpOTkcBM.roa
File: bqOluGKlWj7BD6ZYUL4GpOTkcBM.roa (raw, json)
Hash identifier: rs3pFAJZlPIK6JBu66I1FXrk42knG7PAfU+mlOUAwLs=
Subject key identifier: 6E:A3:A5:B8:62:A5:5A:3E:C1:0F:A6:58:50:BE:06:A4:E4:E4:70:13
Certificate issuer: /CN=ed64691c31892cc991ad4e9a9671147759e417ab
Certificate serial: 0187C2EDFD1D6B0123C1E826AD0392300B30
Authority key identifier: ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/bqOluGKlWj7BD6ZYUL4GpOTkcBM.roa
Signing time: Thu 27 Apr 2023 13:36:29 +0000
ROA not before: Thu 27 Apr 2023 13:36:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207645
IP address blocks: 185.75.242.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:ed:fd:1d:6b:01:23:c1:e8:26:ad:03:92:30:0b:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed64691c31892cc991ad4e9a9671147759e417ab
Validity
Not Before: Apr 27 13:36:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ea3a5b862a55a3ec10fa65850be06a4e4e47013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:25:1a:4b:29:3b:e3:c7:e9:ef:3d:ed:ec:3e:
50:97:e4:28:88:52:ae:0c:20:8e:65:b8:70:63:23:
36:b4:94:f8:ff:9d:b9:3d:a9:7f:0f:43:77:04:65:
fe:ce:a4:c9:af:8c:5e:15:89:4d:4f:b0:2e:bf:dd:
a6:7e:90:a4:94:9e:62:48:17:0d:0e:08:95:e3:94:
21:d4:57:71:cb:f0:53:54:e3:91:ea:4e:f3:bd:4e:
4c:8d:2b:4a:24:7a:43:1f:36:27:84:5b:f6:d3:00:
0c:ab:c3:76:64:77:40:53:77:c5:8e:af:e4:6d:e8:
09:dd:73:7f:26:91:65:5f:32:1c:9c:a3:f9:74:d2:
77:2d:25:74:24:a6:c3:1a:5a:fa:74:ae:68:3d:f1:
9d:66:b9:be:2d:84:31:8d:c1:a6:82:90:8a:7b:43:
3c:58:11:47:ef:c2:be:49:ba:53:87:37:b1:3b:4c:
60:29:b6:be:e6:f0:c2:f7:1a:59:84:16:c3:bd:65:
bb:6d:52:f2:f4:3e:b7:4c:09:b0:ef:9e:88:6d:00:
ce:5c:41:49:ac:4b:35:02:4c:a0:50:b6:81:cc:f4:
0c:60:3a:a9:3b:e7:2e:c1:1c:25:b5:99:0a:2a:6a:
1b:da:06:eb:86:33:79:a1:04:46:da:90:98:01:72:
61:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:A3:A5:B8:62:A5:5A:3E:C1:0F:A6:58:50:BE:06:A4:E4:E4:70:13
X509v3 Authority Key Identifier:
keyid:ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/bqOluGKlWj7BD6ZYUL4GpOTkcBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/7WRpHDGJLMmRrU6alnEUd1nkF6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.242.0/23
Signature Algorithm: sha256WithRSAEncryption
65:5b:3c:37:db:6f:f2:9c:61:38:a5:2a:b4:c0:cb:5d:f6:a6:
0f:2e:fc:7d:d2:92:4c:3e:73:8b:b6:a9:d9:09:ee:1f:1b:80:
44:a4:56:dc:3a:80:37:d4:11:7e:68:3b:db:7a:7f:b2:c3:71:
5c:4d:a0:dd:a1:e3:27:d7:7f:34:60:05:bd:5a:50:10:a6:bf:
4b:ae:32:94:ca:dd:6e:42:15:ca:4e:c1:a2:43:46:00:75:e1:
02:0d:08:ef:c6:91:0c:4f:91:28:a9:6a:3d:c3:79:30:1d:05:
b5:1a:25:fd:13:8d:ba:fe:b6:56:3f:2a:5d:0e:16:dd:59:79:
13:0d:17:1b:b6:0e:87:ba:87:4c:21:78:cb:ee:fc:25:96:e4:
f5:3d:37:95:47:5d:19:ae:76:03:0a:0f:71:71:f7:1f:2d:68:
61:5e:59:2a:dd:a4:1c:ca:2c:9e:53:5b:21:a3:24:bb:78:28:
63:c8:36:08:cc:1c:16:e5:8d:af:98:40:84:a1:75:1c:de:78:
a6:5a:bc:75:77:28:2a:3e:c5:49:0c:52:41:17:ce:81:0c:78:
42:e9:1d:04:b8:8a:33:0c:7b:0b:93:9d:aa:34:66:9c:a6:69:
05:b1:99:89:c3:2d:31:e0:7e:b0:51:11:02:eb:09:28:21:00:
2c:44:64:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:03 2024 by rpki-client on console-fra.rpki-client.org