Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/SHWS-LjJYlakRfZukNXhyuk58wc.roa
File: SHWS-LjJYlakRfZukNXhyuk58wc.roa (raw, json)
Hash identifier: 6ItiT7DVESf12yaoACNnhoYQKqnoBcaAmDKiAxMyyLo=
Subject key identifier: 48:75:92:F8:B8:C9:62:56:A4:45:F6:6E:90:D5:E1:CA:E9:39:F3:07
Certificate issuer: /CN=6fa32e6581183f2c4897a7652333901f7f5bee73
Certificate serial: 0188786BD193C9AC8A6FF6E6D8FAA584BF9B
Authority key identifier: 6F:A3:2E:65:81:18:3F:2C:48:97:A7:65:23:33:90:1F:7F:5B:EE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6MuZYEYPyxIl6dlIzOQH39b7nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/SHWS-LjJYlakRfZukNXhyuk58wc.roa
Signing time: Thu 01 Jun 2023 19:25:11 +0000
ROA not before: Thu 01 Jun 2023 19:25:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211488
IP address blocks: 185.218.107.0/24 maxlen: 24
2a10:d1c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:78:6b:d1:93:c9:ac:8a:6f:f6:e6:d8:fa:a5:84:bf:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa32e6581183f2c4897a7652333901f7f5bee73
Validity
Not Before: Jun 1 19:25:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=487592f8b8c96256a445f66e90d5e1cae939f307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:48:01:4e:2b:81:e9:86:df:d2:63:d2:fb:a9:
95:24:90:96:d1:80:37:b8:0b:61:44:36:2b:51:23:
31:3f:ae:5e:fd:9b:8d:90:02:da:79:3c:e5:25:fb:
45:0c:d6:b3:3f:b5:47:28:12:c3:b3:9f:a2:aa:05:
40:fa:7d:45:69:c3:1c:29:c3:40:58:38:0d:ab:e3:
2c:7d:7f:36:0e:35:b0:ff:d4:25:0e:50:98:5f:eb:
60:91:02:3f:a6:63:13:32:d5:de:2c:50:15:cb:cd:
bb:22:1c:17:c9:63:e1:73:10:16:ef:81:e2:d6:54:
18:c8:91:e1:df:25:c3:0c:58:be:11:dd:d2:1b:cd:
d9:1d:73:ef:b0:4c:4a:0d:a8:76:64:e3:14:18:b9:
30:89:0d:39:64:7f:42:b6:fc:73:87:4e:97:12:d5:
a5:ce:b0:51:d5:b9:f2:e7:46:da:62:b5:72:64:a2:
76:e7:f6:84:d2:70:6b:6d:fc:3c:cc:ca:1f:3c:75:
87:f5:4b:4d:f2:aa:75:fa:3d:e6:9e:c1:73:6e:e9:
fd:2d:78:14:03:fd:1a:07:a5:85:57:82:a3:27:fb:
7b:c3:cc:df:fb:8a:68:67:dd:fa:c4:08:d8:f3:e4:
27:2b:18:d1:f1:86:dd:ae:6e:b3:02:fb:00:5a:ee:
e2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:75:92:F8:B8:C9:62:56:A4:45:F6:6E:90:D5:E1:CA:E9:39:F3:07
X509v3 Authority Key Identifier:
keyid:6F:A3:2E:65:81:18:3F:2C:48:97:A7:65:23:33:90:1F:7F:5B:EE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6MuZYEYPyxIl6dlIzOQH39b7nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/SHWS-LjJYlakRfZukNXhyuk58wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/b6MuZYEYPyxIl6dlIzOQH39b7nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.107.0/24
IPv6:
2a10:d1c0::/32
Signature Algorithm: sha256WithRSAEncryption
71:00:be:93:9b:37:2b:10:21:4f:72:d6:e1:2d:6a:f9:1d:3c:
32:b7:0f:d9:df:29:68:ca:5f:ed:ee:3a:a6:7f:f4:9a:09:dc:
35:7c:9d:c0:08:bf:e9:28:4a:2e:1f:e9:c8:bf:d2:1b:5a:24:
90:d7:4a:d4:34:39:f4:51:18:64:55:45:e9:fd:87:c3:31:3c:
1a:c2:6d:3e:bb:e5:a1:eb:35:91:3b:56:5e:05:da:07:8a:21:
23:00:90:25:21:6c:55:4d:2b:82:e6:69:cb:17:f4:27:9b:74:
96:e3:e8:89:35:f1:33:63:93:32:d1:70:76:16:12:ad:fb:81:
35:47:82:51:bc:10:07:0d:d5:ac:c9:60:b6:23:85:2d:3b:10:
f5:d9:ce:02:c4:27:be:b7:18:59:24:81:2c:ae:26:d5:08:09:
4b:be:a0:f0:a6:42:18:ae:46:59:fe:53:65:58:0e:35:7f:04:
29:00:15:89:25:00:87:24:d9:d5:4c:2a:ae:5f:d7:2d:50:37:
75:8d:5a:cf:2c:69:ca:61:8a:ad:3d:b7:86:b2:91:3d:24:de:
62:87:2a:1f:09:f7:da:29:46:db:3b:c0:39:7c:41:75:03:53:
57:ff:fa:ad:29:23:0f:d7:a0:de:c6:97:d1:f7:4d:ce:2d:6d:
ca:71:56:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:02 2024 by rpki-client on console-fra.rpki-client.org