Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/le2nvzNB36tyoI2uE4ylhscAzxY.roa
File: le2nvzNB36tyoI2uE4ylhscAzxY.roa (raw, json)
Hash identifier: To7gM9OgMe1NloGliS2ida8+Qp0wtngmB0529u42wK0=
Subject key identifier: 95:ED:A7:BF:33:41:DF:AB:72:A0:8D:AE:13:8C:A5:86:C7:00:CF:16
Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Certificate serial: 018DF726236968389BDAB02EFEE551244609
Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/le2nvzNB36tyoI2uE4ylhscAzxY.roa
Signing time: Thu 29 Feb 2024 23:14:48 +0000
ROA not before: Thu 29 Feb 2024 23:14:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50304
IP address blocks: 185.101.144.0/24 maxlen: 24
185.101.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:54:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f7:26:23:69:68:38:9b:da:b0:2e:fe:e5:51:24:46:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Validity
Not Before: Feb 29 23:14:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95eda7bf3341dfab72a08dae138ca586c700cf16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:21:e0:34:54:0d:e0:e3:1d:e2:ae:3c:96:19:
4f:5f:77:d4:e0:3d:b6:bb:50:cc:c9:a4:66:c0:22:
f1:40:dd:59:ac:5c:e8:d8:6e:69:a7:3d:36:ed:e3:
6e:c5:54:09:a4:bc:cd:56:9c:ce:a1:51:dd:be:b5:
1c:c7:42:3f:71:4a:38:d7:29:28:41:53:43:36:6c:
fd:e9:76:10:8c:91:d7:a3:62:34:f8:81:0d:ad:a4:
56:7a:2f:ab:d8:9e:38:12:8b:37:0a:38:86:d2:fe:
2f:22:d7:6b:3f:80:60:ed:8e:82:0c:d2:61:38:57:
64:03:14:ef:2c:4d:79:60:3a:45:f9:25:82:56:2d:
3e:2e:44:4d:c0:e6:19:fa:46:07:21:f8:7b:95:e1:
18:a5:33:af:01:28:a6:c3:ea:2a:36:5e:48:4c:2a:
1b:ef:fb:1a:21:8c:68:b3:e8:45:89:eb:23:e2:ec:
2a:31:10:20:15:63:70:00:ee:33:9a:fd:ac:22:5c:
23:22:71:14:b1:6e:68:3b:61:9f:d6:08:9d:d0:5f:
d0:94:17:46:60:99:55:ac:97:42:5b:76:cb:7c:9b:
73:43:50:20:ab:11:75:c2:00:97:82:75:c6:de:aa:
0e:57:ad:f0:12:5b:34:31:fd:81:b9:aa:72:02:8d:
0a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:ED:A7:BF:33:41:DF:AB:72:A0:8D:AE:13:8C:A5:86:C7:00:CF:16
X509v3 Authority Key Identifier:
keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/le2nvzNB36tyoI2uE4ylhscAzxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.144.0/23
Signature Algorithm: sha256WithRSAEncryption
53:ad:ad:e9:29:16:0c:cd:ad:38:c0:13:8c:b6:5d:b6:98:ca:
9f:a5:d6:4e:88:eb:fd:68:95:88:08:15:3a:b4:b6:c9:a8:bc:
14:e5:cf:fe:ea:21:3e:36:89:2a:be:94:49:d0:34:32:74:66:
aa:aa:90:01:d7:d3:f0:2e:a8:03:f5:3b:0f:b5:84:a0:3b:ef:
b0:05:50:9c:b6:47:db:d6:37:56:7a:ee:9c:3a:87:55:cd:3c:
53:7a:67:41:fe:6d:00:9f:6a:ea:0d:be:09:6a:50:42:ad:aa:
8b:7b:69:74:2b:ea:a2:71:c6:29:21:74:00:3c:bf:48:49:e2:
02:ca:3f:7b:d7:19:6f:73:80:b8:d2:f8:28:ca:ed:63:8c:a3:
ca:0a:0a:0f:4e:b9:5d:52:fd:80:7a:a6:c8:e9:99:08:d2:7c:
3f:e4:b6:1a:35:d9:00:9a:d1:17:cd:19:1e:17:78:8a:d0:f7:
a5:bb:85:1d:db:13:aa:29:29:00:42:d1:58:ff:f3:51:b2:51:
4d:0e:75:6f:bb:cf:6d:0e:41:83:a8:b5:b6:01:9f:75:47:4f:
b2:78:7e:be:ca:0e:09:31:ab:0a:97:40:5b:3b:59:92:7b:ae:
1b:eb:49:8f:87:c3:49:eb:a8:37:28:4e:90:ce:fa:da:63:01:
78:01:4f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:52 2025 by rpki-client