Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/wgfdcZIOutNtyqVTHQE_FHfmf2Y.roa
File: wgfdcZIOutNtyqVTHQE_FHfmf2Y.roa (raw, json)
Hash identifier: pK5bXKh4dbu6UFYNZqsrAYHm8z0hb3TtLueotOyVMfQ=
Subject key identifier: C2:07:DD:71:92:0E:BA:D3:6D:CA:A5:53:1D:01:3F:14:77:E6:7F:66
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 0185A6E44FC5D2A5AED39B1943EF15202F07
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/wgfdcZIOutNtyqVTHQE_FHfmf2Y.roa
Signing time: Thu 12 Jan 2023 16:50:58 +0000
ROA not before: Thu 12 Jan 2023 16:50:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.207.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Dec 2023 10:48:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:e4:4f:c5:d2:a5:ae:d3:9b:19:43:ef:15:20:2f:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Jan 12 16:50:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c207dd71920ebad36dcaa5531d013f1477e67f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ae:8a:c6:35:68:eb:d8:10:65:76:85:93:8a:
fb:39:62:60:51:4b:39:66:93:28:43:da:23:29:60:
2e:dd:5d:20:7c:31:69:e6:45:d5:e6:d1:67:5a:2f:
df:b9:16:3f:fb:b3:4c:f6:ba:5b:4e:23:49:73:33:
c7:42:e5:c2:33:57:e6:ce:aa:2f:48:52:59:41:86:
68:14:1b:38:bf:d2:56:39:1e:69:a9:0a:1d:23:69:
4f:30:3e:70:6e:32:c8:fa:ed:c9:f8:98:31:7a:4d:
2f:95:59:25:fa:b6:82:0e:4f:a5:a9:3f:a0:45:75:
2d:83:51:3d:0e:b9:dc:1e:de:6e:c4:d9:a5:fb:08:
01:37:6c:1c:ea:df:c0:a3:47:57:68:6f:fb:c1:b4:
d1:69:52:e9:47:cc:7e:81:52:ea:57:ef:7b:98:eb:
3a:c3:11:7a:5c:6f:6a:db:cf:07:b3:55:74:e0:7e:
87:90:0f:a5:88:93:ec:4e:4f:4e:b3:c6:1e:32:e6:
33:19:db:cc:12:5b:1e:52:5c:26:cb:25:89:54:4f:
83:10:6f:03:e9:7a:40:67:25:5d:29:2d:f3:9b:f2:
9c:62:6f:41:ac:b0:96:4e:25:bd:8f:24:68:ec:db:
43:84:97:5a:79:79:76:72:b3:e5:2f:dd:34:d5:08:
d5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:07:DD:71:92:0E:BA:D3:6D:CA:A5:53:1D:01:3F:14:77:E6:7F:66
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/wgfdcZIOutNtyqVTHQE_FHfmf2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.135.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e6:5f:c8:37:b0:ef:d2:38:3a:01:d9:01:ea:cf:ec:05:0a:
5c:16:f6:ab:8b:18:39:c8:ff:c3:8e:47:f2:f7:9f:2b:9e:c7:
54:d9:c3:82:d9:05:a9:94:15:78:e5:ed:09:c3:39:ad:ee:80:
5a:ef:5d:7b:64:2c:23:be:dc:95:f1:48:af:12:30:0b:1a:a8:
57:dc:04:b9:2a:85:83:c3:0a:22:e1:31:08:cb:0f:d0:47:1b:
20:8d:60:a0:1c:89:d4:65:a5:25:fe:23:e3:dc:41:10:3a:8b:
b2:ce:32:00:9e:42:4d:62:10:9d:29:f1:05:71:f6:88:a5:4a:
95:12:fd:1a:3e:ec:52:7b:20:a4:cb:c1:cf:86:49:6e:45:72:
ab:11:69:fa:ee:c2:45:57:d4:3b:14:62:bf:1a:3c:5a:a5:8e:
5f:5f:e4:da:17:f7:f6:0c:db:86:60:1e:64:34:59:ec:5b:31:
80:56:28:74:d1:34:b6:7d:4d:f8:70:56:17:58:05:89:a9:ae:
1f:ee:aa:a1:70:74:6f:ee:b7:53:87:71:a2:25:51:e1:96:c9:
39:c5:18:01:18:5c:d1:8d:91:37:94:a7:a8:e2:db:12:ec:71:
44:95:1b:5d:1b:53:74:ff:e0:ab:cd:81:a4:8e:20:89:09:cb:
06:7e:4f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:43 2024 by rpki-client on console-fra.rpki-client.org