Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/A8uBWR15benTqe3QaKGhkboWZjE.roa
File: A8uBWR15benTqe3QaKGhkboWZjE.roa (raw, json)
Hash identifier: Xu4es2LQYuSK8kARcNPpHfvzzFxs9A7Ag+tUZLZyJkU=
Subject key identifier: 03:CB:81:59:1D:79:6D:E9:D3:A9:ED:D0:68:A1:A1:91:BA:16:66:31
Certificate issuer: /CN=77c6fb655461d73fcf21e8612c318706a089a5c2
Certificate serial: 018DA3615715C36D9F1499BFB3FEC1960D53
Authority key identifier: 77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/A8uBWR15benTqe3QaKGhkboWZjE.roa
Signing time: Tue 13 Feb 2024 16:51:21 +0000
ROA not before: Tue 13 Feb 2024 16:51:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211090
IP address blocks: 185.172.230.0/24 maxlen: 24
185.172.231.0/24 maxlen: 24
2a0b:81c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 17 Feb 2024 03:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a3:61:57:15:c3:6d:9f:14:99:bf:b3:fe:c1:96:0d:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c6fb655461d73fcf21e8612c318706a089a5c2
Validity
Not Before: Feb 13 16:51:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03cb81591d796de9d3a9edd068a1a191ba166631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:08:f3:00:d6:d7:53:2c:62:b9:d8:3a:54:40:
41:56:4d:0e:96:36:74:16:77:07:71:8a:bd:46:60:
fd:cc:eb:e2:02:d2:4f:f7:d9:7b:2d:51:8e:68:a6:
95:66:b5:0b:a3:0c:51:08:f0:c4:a0:08:73:01:19:
7f:fe:45:5a:59:70:3b:1e:d9:ca:d8:27:d5:5f:46:
e6:ab:54:7b:c8:0b:48:59:b4:1c:3b:cf:1a:ff:28:
d8:d0:38:37:a6:b4:9b:52:60:2a:0a:a6:a0:a5:5f:
2d:ff:81:a0:fd:46:65:ef:24:8c:46:cb:3e:4e:3c:
91:c0:92:21:8c:b9:4d:d3:0c:a4:d9:e6:2a:63:f8:
32:bc:23:1b:d1:76:54:02:f5:1d:58:99:17:fe:ef:
9c:49:c4:4e:8c:18:8c:37:2f:22:9d:b8:b2:d6:f1:
37:17:1f:27:77:4a:44:41:da:0d:ab:29:92:a1:5f:
fb:a4:62:8f:d4:58:6a:8a:d7:f5:19:e1:6f:43:a1:
0c:4a:f7:7f:ae:d7:92:aa:97:c2:2b:e8:cb:aa:91:
ef:21:f1:40:97:c9:1c:3a:e0:2d:24:a5:e9:b8:16:
01:f1:7f:25:9a:ac:37:42:f3:93:76:e9:1a:db:ad:
ac:87:20:7b:be:3e:ad:9b:82:3e:45:bd:af:dd:23:
39:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CB:81:59:1D:79:6D:E9:D3:A9:ED:D0:68:A1:A1:91:BA:16:66:31
X509v3 Authority Key Identifier:
keyid:77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/A8uBWR15benTqe3QaKGhkboWZjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.230.0/23
IPv6:
2a0b:81c0::/48
Signature Algorithm: sha256WithRSAEncryption
32:4c:f0:9c:db:14:42:d7:07:b1:ef:a7:83:cd:be:cc:5f:80:
74:10:fc:85:d4:1b:97:3f:d5:ec:b6:79:75:64:54:3c:38:47:
7d:d2:86:86:bb:7f:6a:fb:29:6d:98:87:aa:75:80:30:da:98:
24:e6:84:ba:04:81:6b:a6:9d:50:86:d0:f6:62:3a:dc:ae:19:
8d:8c:3b:2d:0d:f7:0a:dc:51:2f:bd:df:31:df:5b:50:1c:1d:
f9:7c:44:c6:c0:c4:f9:78:ac:45:66:98:a0:75:02:29:c6:bf:
29:f5:12:d8:1c:6d:53:b5:f3:ef:39:1b:d7:a8:1e:54:4a:52:
04:5c:d5:56:b6:76:b6:b8:2b:b9:47:cc:7a:28:26:6b:b6:c5:
b7:0b:d9:15:ad:a7:4f:1f:4b:92:45:d2:91:02:1e:4e:b7:6c:
d5:c7:1d:53:c0:b1:6f:bd:cd:9d:5a:5d:2d:b9:f2:c9:df:7d:
35:8b:17:f0:57:c2:86:db:81:28:59:e8:d3:82:c8:3c:63:5d:
6b:71:82:09:ea:03:2a:df:8e:c4:1e:0d:5f:31:95:bf:aa:57:
8e:e2:9e:9c:13:45:2a:ab:40:54:b7:b5:c2:f0:6f:9a:a5:c0:
3a:4c:df:16:ef:34:80:e4:e4:f5:0e:26:79:94:85:45:9d:a7:
ce:09:d3:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:44 2024 by rpki-client on console-fra.rpki-client.org