Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/d5cc4a-d266-40e6-88f9-d91484eb0c38/1/WUM0rhdz6L_AdpX93z3gt5Ibp2E.roa
File: WUM0rhdz6L_AdpX93z3gt5Ibp2E.roa (raw, json)
Hash identifier: /+x4PcQtV23X5HWCwUwR4i3JRw7L/BIhGZIcaz5Cptg=
Subject key identifier: 59:43:34:AE:17:73:E8:BF:C0:76:95:FD:DF:3D:E0:B7:92:1B:A7:61
Certificate issuer: /CN=6a6fdd2fd42fabf872720952468d29634c68c9dc
Certificate serial: 018CC56EA67E5A3AA3A0E32F6E12CBDCBF0A
Authority key identifier: 6A:6F:DD:2F:D4:2F:AB:F8:72:72:09:52:46:8D:29:63:4C:68:C9:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/am_dL9Qvq_hycglSRo0pY0xoydw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/d5cc4a-d266-40e6-88f9-d91484eb0c38/1/WUM0rhdz6L_AdpX93z3gt5Ibp2E.roa
Signing time: Mon 01 Jan 2024 14:30:12 +0000
ROA not before: Mon 01 Jan 2024 14:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205886
IP address blocks: 185.85.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 14:38:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:a6:7e:5a:3a:a3:a0:e3:2f:6e:12:cb:dc:bf:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a6fdd2fd42fabf872720952468d29634c68c9dc
Validity
Not Before: Jan 1 14:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=594334ae1773e8bfc07695fddf3de0b7921ba761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0b:59:f8:cc:4f:13:d2:a3:62:e2:88:a8:b3:
aa:ea:64:c7:71:1d:7a:65:46:2f:a1:7c:a1:0f:4e:
61:ac:46:36:44:53:27:47:01:9e:5b:c3:e6:82:15:
ef:58:3b:30:8a:09:cf:d3:92:ee:fb:a1:39:1f:33:
c7:bd:df:b7:c5:93:16:90:ee:46:7f:f8:ae:6e:0e:
e2:c6:56:eb:12:7e:99:e7:c9:10:ea:99:64:0d:b6:
c6:d0:ab:b4:1a:bb:25:22:34:18:46:e3:3f:8a:83:
7f:ac:3e:24:0c:e4:f2:83:d0:92:b6:16:e7:2a:a9:
3b:db:f8:a5:29:b5:ac:38:26:11:f7:7f:22:00:7c:
b3:de:04:8d:f1:32:8b:11:90:f7:dc:2e:14:4f:4c:
d5:99:f6:6b:d3:71:44:97:39:d4:eb:5c:df:2a:2e:
9d:c2:f2:90:e6:47:51:c3:23:22:da:11:af:34:be:
c2:f5:82:0f:2e:6d:88:8d:7c:99:24:20:d0:43:98:
6a:40:e0:61:0f:32:e9:4d:19:75:62:73:d5:2d:2f:
ed:72:e6:e9:32:ab:6d:53:c6:8a:b0:ed:23:53:8c:
f9:c6:93:41:22:f2:24:39:72:85:cb:13:97:13:22:
d3:d8:c8:d0:e6:d3:2e:a4:8c:55:7c:52:8f:d4:29:
3d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:43:34:AE:17:73:E8:BF:C0:76:95:FD:DF:3D:E0:B7:92:1B:A7:61
X509v3 Authority Key Identifier:
keyid:6A:6F:DD:2F:D4:2F:AB:F8:72:72:09:52:46:8D:29:63:4C:68:C9:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/am_dL9Qvq_hycglSRo0pY0xoydw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d5cc4a-d266-40e6-88f9-d91484eb0c38/1/WUM0rhdz6L_AdpX93z3gt5Ibp2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d5cc4a-d266-40e6-88f9-d91484eb0c38/1/am_dL9Qvq_hycglSRo0pY0xoydw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.123.0/24
Signature Algorithm: sha256WithRSAEncryption
15:a3:f6:92:58:83:ed:09:17:64:a0:f8:00:11:57:30:eb:fd:
2c:ad:71:73:29:53:54:0b:01:86:bb:43:46:a2:af:fd:9a:7d:
6f:9c:3e:0a:a8:2c:8a:67:05:89:f3:4b:d1:ab:fd:6a:22:6a:
61:9f:e1:29:04:2e:3a:b1:14:fb:9d:6f:56:44:e1:40:53:3e:
19:f6:79:14:d7:b6:90:88:9b:c9:87:91:6c:e0:fa:3f:5a:36:
87:e2:59:a3:0f:bd:f4:45:b2:fb:3b:c6:bb:25:b1:dc:13:b7:
23:cf:f7:5f:ac:7f:28:18:d0:08:7d:3b:31:04:11:3c:71:34:
67:16:1f:cc:e3:ea:21:24:44:38:2b:e1:65:bf:ba:b1:d0:a8:
98:b7:ce:77:f8:c1:fc:f2:ef:a5:26:e3:6e:0c:4b:fd:19:a2:
fa:14:c1:7f:5f:95:aa:70:10:98:b8:e6:bf:db:54:fa:10:d1:
bf:4a:de:55:ec:2e:3f:97:64:91:ec:9a:db:a5:d0:5b:22:3b:
3c:d4:dc:99:58:3e:d2:5c:c0:7e:fd:ba:be:80:89:e2:2f:00:
b1:05:5f:01:3a:23:b8:62:8f:bb:a9:2b:11:16:63:a7:db:0b:
ed:af:14:06:41:16:4e:2e:10:4e:8a:f5:a9:99:3c:91:dc:ee:
2a:bb:db:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:37 2024 by rpki-client on console-fra.rpki-client.org