Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/VltRE5rQOmyvL92OJqUs6pm20q0.roa
File: VltRE5rQOmyvL92OJqUs6pm20q0.roa (raw, json)
Hash identifier: KwSqMziLO7HS5wBwKwxBsQN+5M2IAeUtFUocx+oBeKc=
Subject key identifier: 56:5B:51:13:9A:D0:3A:6C:AF:2F:DD:8E:26:A5:2C:EA:99:B6:D2:AD
Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Certificate serial: 0190B52588AF45B723CD84B949D67717BD9B
Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/VltRE5rQOmyvL92OJqUs6pm20q0.roa
Signing time: Mon 15 Jul 2024 06:47:34 +0000
ROA not before: Mon 15 Jul 2024 06:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197737
IP address blocks: 185.157.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 09:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b5:25:88:af:45:b7:23:cd:84:b9:49:d6:77:17:bd:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Validity
Not Before: Jul 15 06:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=565b51139ad03a6caf2fdd8e26a52cea99b6d2ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:07:9d:6d:e2:f1:ba:34:d1:1c:2b:1d:2a:87:
19:9d:b3:bc:c1:85:5a:6d:40:62:6d:aa:1a:ab:5d:
f0:d3:0c:23:42:99:c9:da:7e:9b:85:34:49:7b:bb:
bb:b0:22:a9:4d:a2:6d:ea:a5:38:de:b5:8e:77:12:
1b:6b:7f:e9:5e:9b:8d:d6:0d:92:14:61:e6:b7:5a:
fd:d3:d4:2a:c3:8a:f5:e2:9a:30:99:b4:6c:69:40:
d7:58:30:81:f2:d8:6c:8c:f9:2b:26:c1:86:27:04:
db:74:5e:ff:a9:19:02:c7:92:03:c4:6e:11:1b:89:
50:bd:7e:84:68:04:ec:84:b2:82:49:b7:29:5d:15:
4c:0d:37:9a:ae:af:38:f9:4b:8c:af:30:41:60:4e:
cf:a9:91:3a:b5:ec:38:9d:28:60:85:53:91:16:ad:
24:b1:fb:3a:75:f9:a9:a8:8b:a3:3f:80:56:ab:56:
14:11:10:b4:d6:10:4a:56:d2:e8:52:98:ed:1a:a8:
3d:01:99:01:82:ee:50:f7:14:1f:01:3d:78:79:56:
69:3e:01:c9:c6:82:ca:49:1a:b5:f8:d1:b5:78:01:
f9:e7:12:85:b8:1a:ce:17:5f:c9:bb:90:81:a0:54:
b3:21:ed:64:85:42:61:1e:58:73:23:8f:cf:0b:92:
4b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5B:51:13:9A:D0:3A:6C:AF:2F:DD:8E:26:A5:2C:EA:99:B6:D2:AD
X509v3 Authority Key Identifier:
keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/VltRE5rQOmyvL92OJqUs6pm20q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.51.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:83:96:46:58:e0:d0:d6:ad:22:75:71:2b:e1:99:12:e6:b7:
6c:85:65:7b:35:65:58:e6:06:f1:63:1a:9a:b8:1a:f9:36:b8:
c1:16:71:b9:e0:fe:c9:e3:2d:37:0b:d1:69:c1:c1:c1:0b:fb:
77:30:ff:80:25:3b:ad:b7:55:f7:93:a4:a0:f4:01:cf:88:eb:
f3:02:17:d3:24:34:29:a5:1e:56:5b:5c:a2:3f:e3:34:af:f3:
1e:33:d0:6b:6a:f5:1b:02:26:00:e2:68:a6:ff:cc:af:cc:fd:
fa:eb:4c:42:6d:fb:03:ba:ab:0b:99:3d:40:0e:37:84:92:84:
85:ab:d2:06:5f:a8:e2:f9:08:bc:a4:a0:16:50:3c:7a:81:03:
77:96:7e:e1:83:d4:15:17:2f:c4:6e:a5:ce:b5:a2:9e:28:1b:
9e:50:a1:23:c7:cb:5e:0f:cc:ed:94:7b:9d:9b:f6:2e:e0:7d:
a2:a3:d5:90:8d:47:19:a7:7e:81:6d:7c:8e:c5:12:5b:f9:99:
d0:e5:ff:eb:c1:bb:65:d7:7e:f0:55:de:71:5d:86:f3:d5:d1:
5e:7a:09:93:9b:7f:1d:0e:4c:5b:d9:e4:28:33:1e:e0:a2:70:
6d:23:79:99:df:e4:92:6f:06:1a:53:1b:ee:88:1c:82:29:e7:
4d:eb:8c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:06:27 2025 by rpki-client