Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/KBojzLWMVpWo3YwmDcTmw6JsQVA.roa
File: KBojzLWMVpWo3YwmDcTmw6JsQVA.roa (raw, json)
Hash identifier: G0V9/C5q6LwSHMKlSNdy53Z80dePKmFfrwCggW3mdi0=
Subject key identifier: 28:1A:23:CC:B5:8C:56:95:A8:DD:8C:26:0D:C4:E6:C3:A2:6C:41:50
Certificate issuer: /CN=8b9b0163eee9e792aaa16b7d5105d347211f3123
Certificate serial: 01856DC1EB0F351DBDA597AE8AC3FF8C9CAC
Authority key identifier: 8B:9B:01:63:EE:E9:E7:92:AA:A1:6B:7D:51:05:D3:47:21:1F:31:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5sBY-7p55KqoWt9UQXTRyEfMSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/KBojzLWMVpWo3YwmDcTmw6JsQVA.roa
Signing time: Sun 01 Jan 2023 14:35:03 +0000
ROA not before: Sun 01 Jan 2023 14:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50873
IP address blocks: 185.237.176.0/24 maxlen: 24
2a0c:1b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:eb:0f:35:1d:bd:a5:97:ae:8a:c3:ff:8c:9c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9b0163eee9e792aaa16b7d5105d347211f3123
Validity
Not Before: Jan 1 14:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=281a23ccb58c5695a8dd8c260dc4e6c3a26c4150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:85:37:f6:67:ab:e1:a1:bf:22:0e:23:72:71:
31:4a:d5:6f:f5:27:e2:88:e8:30:90:b6:62:25:28:
a9:04:0c:98:80:b3:4b:fa:ba:72:e1:0f:20:e6:f1:
0a:1d:7b:50:46:9c:cf:f8:3c:3e:d4:e1:40:47:6e:
9f:56:34:e5:bb:10:4a:24:d8:d7:f2:d0:e7:0e:ff:
4f:ce:98:06:5f:36:05:74:6e:92:0a:6b:5f:1b:04:
47:f0:8d:a1:86:c5:96:ed:71:e5:d8:79:20:13:f1:
41:93:94:fc:8d:ea:c6:28:9e:ed:86:71:a3:c0:10:
b3:4a:d9:2e:a5:e9:c8:e6:02:37:4f:c8:dd:2b:1c:
cb:8c:87:c9:8e:5e:05:6d:04:b3:71:a8:a9:d4:38:
d8:25:40:78:1f:81:77:6e:13:c9:a0:4b:37:38:bf:
dc:84:38:52:3e:26:65:c2:a8:18:95:42:8f:91:55:
c9:23:77:5b:b5:67:ce:ae:10:4c:9d:d7:0e:99:ec:
b6:6f:0b:4e:92:9e:b0:c4:45:da:40:1d:bd:1f:80:
08:38:80:5f:6b:5e:e1:c7:fb:67:78:50:ac:38:0d:
b7:72:b9:6f:d1:81:4d:98:51:5c:38:65:67:d1:a7:
d0:64:fa:29:7f:3a:4b:ac:ce:0e:a1:c9:94:cc:7b:
90:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:1A:23:CC:B5:8C:56:95:A8:DD:8C:26:0D:C4:E6:C3:A2:6C:41:50
X509v3 Authority Key Identifier:
keyid:8B:9B:01:63:EE:E9:E7:92:AA:A1:6B:7D:51:05:D3:47:21:1F:31:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5sBY-7p55KqoWt9UQXTRyEfMSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/KBojzLWMVpWo3YwmDcTmw6JsQVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/i5sBY-7p55KqoWt9UQXTRyEfMSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.176.0/24
IPv6:
2a0c:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
53:84:9a:d2:89:96:9b:7a:8c:9b:80:0b:71:de:cf:dd:3f:51:
3f:90:02:a8:66:88:61:63:38:f6:17:b6:7e:57:ba:4b:34:71:
33:b4:78:be:28:db:c6:13:58:4c:14:1a:7b:cb:38:34:98:0a:
fc:1b:f7:b2:52:db:40:77:55:62:ef:c5:87:53:d6:f0:fc:d1:
a0:ea:31:f1:09:b9:9f:7f:a6:ed:96:ff:4a:3d:de:ed:0d:da:
63:57:eb:c8:6d:22:df:18:39:31:17:39:4c:3f:a9:8b:5b:3b:
66:46:b9:bb:2d:fb:16:91:ae:72:fd:21:73:12:29:44:bb:63:
84:0e:32:26:4e:29:38:c5:8b:a3:b2:62:9d:7f:b1:fd:df:38:
e6:44:fb:cb:e5:9b:9a:7e:d9:61:6a:82:43:2d:7d:54:ae:a0:
20:37:8f:40:9d:ce:f8:f5:7e:50:e8:3c:2f:2c:52:ca:f8:4f:
3e:31:ee:9f:68:66:44:58:f5:02:0c:d2:56:db:08:23:f2:cc:
06:7c:3b:9f:ba:65:69:63:82:3b:24:7c:c2:a0:90:41:3a:48:
60:5a:74:fd:53:65:00:b2:71:34:d3:a4:25:e8:b8:e8:0c:30:
f2:b0:35:89:d7:56:25:ad:6e:27:50:af:c0:3f:62:82:76:81:
9d:9a:be:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:28 2024 by rpki-client on console-ams.rpki-client.org