Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/qDkKLgyxkMs9-6smO5-duUVt2y4.roa
File: qDkKLgyxkMs9-6smO5-duUVt2y4.roa (raw, json)
Hash identifier: zloWt6hPw8lZtv9jJClzyMu+vxwpo9JXuy5H1lMUvXw=
Subject key identifier: A8:39:0A:2E:0C:B1:90:CB:3D:FB:AB:26:3B:9F:9D:B9:45:6D:DB:2E
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 018CC8DF1F93DD3EFD8DCFDCF30555DE0E78
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/qDkKLgyxkMs9-6smO5-duUVt2y4.roa
Signing time: Tue 02 Jan 2024 06:31:54 +0000
ROA not before: Tue 02 Jan 2024 06:31:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205463
IP address blocks: 193.164.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:48:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:1f:93:dd:3e:fd:8d:cf:dc:f3:05:55:de:0e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Jan 2 06:31:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8390a2e0cb190cb3dfbab263b9f9db9456ddb2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1b:72:8e:a5:ea:c9:f0:7c:ca:44:98:03:60:
3c:6e:3a:d5:fa:10:ba:c1:ee:36:2a:e3:ba:d8:52:
2f:fe:34:87:c6:ad:3b:a3:19:66:15:b8:16:a8:16:
76:4b:07:88:07:9e:03:55:61:0e:b0:b9:fa:7a:2b:
68:a1:ae:46:3c:b4:d7:d1:d8:f1:22:92:2c:97:98:
55:17:eb:88:b2:fe:c9:a1:76:a4:83:d2:22:ae:cb:
c1:6d:33:d8:18:c9:04:8f:82:61:a1:8a:ef:b8:ab:
fe:dd:f4:aa:4e:21:81:35:e0:81:de:7f:ed:fe:4f:
a3:80:d0:00:ed:dc:5b:b3:b6:69:24:d7:ac:10:bd:
1d:40:7b:a9:5c:0a:fe:ff:5c:05:93:60:0e:29:33:
97:7e:46:49:bf:ca:c4:f6:a2:68:41:a8:34:14:c3:
c0:3b:dd:f9:62:9b:25:90:9a:36:5f:a9:d0:b7:95:
3c:4e:ab:5a:67:90:38:f2:d8:97:18:13:8f:0a:84:
32:ed:aa:0a:75:a3:59:26:ac:99:f6:b4:54:d3:fb:
99:74:5d:3e:36:69:d8:87:29:58:74:da:7b:e9:7f:
f7:7d:7d:6d:af:e9:26:71:a9:4d:5c:56:16:e0:b8:
99:c4:18:76:7b:aa:85:a9:97:4b:30:cb:9d:76:4b:
00:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:39:0A:2E:0C:B1:90:CB:3D:FB:AB:26:3B:9F:9D:B9:45:6D:DB:2E
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/qDkKLgyxkMs9-6smO5-duUVt2y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.5.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c1:e1:59:d5:1f:1a:93:a2:8f:32:de:14:0d:62:20:ce:d9:
90:f1:8e:37:e9:e5:8e:77:00:e4:1e:64:07:e2:3d:51:8b:ca:
7f:2d:81:06:1f:ce:db:e9:c2:94:31:f9:88:25:5b:3f:02:bb:
a0:a2:a9:7b:ed:89:2a:f2:1c:8c:eb:c8:d7:69:b0:06:ac:2f:
b7:f9:1f:44:71:c1:cc:06:56:53:73:e0:de:fd:a8:e5:28:70:
f8:ae:33:f6:db:da:74:21:dc:40:11:3d:91:86:0b:81:12:f4:
44:34:75:6f:91:44:55:80:37:a4:21:cd:51:5c:95:97:3f:a6:
17:d6:58:84:86:1e:3a:ab:15:c3:53:b4:f7:2e:88:24:49:64:
f2:ec:c4:8c:55:3c:d7:f2:cd:e6:db:be:18:dd:5d:fb:a1:b5:
47:7a:9b:2c:25:8c:74:2c:4b:4e:34:43:16:0c:83:5a:bc:98:
04:46:de:ba:bb:48:9c:19:f1:11:27:63:78:89:7a:66:71:36:
d0:a1:ac:41:cf:e2:ab:b8:5a:56:99:15:c6:c8:d7:f8:ec:eb:
c5:36:ea:a5:fc:35:2e:e0:d5:dd:b1:72:04:e7:5e:32:68:fe:
4a:ca:c4:9e:ea:78:fe:c8:82:ff:89:54:f2:c4:5f:2c:8a:7b:
cc:26:db:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:59:16 2025 by rpki-client