Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/Bh5WUFPp4pOAOEpHgZLqtdkZbxw.roa
File: Bh5WUFPp4pOAOEpHgZLqtdkZbxw.roa (raw, json)
Hash identifier: Ei5z9/QfUVQr6C3/xO6ARfH5RmXLmjqkzd8dn9ibHwQ=
Subject key identifier: 06:1E:56:50:53:E9:E2:93:80:38:4A:47:81:92:EA:B5:D9:19:6F:1C
Certificate issuer: /CN=ce5649dbba592f1c9f3f2889bcf81fd225989367
Certificate serial: 01856DE675716CD908DA3C5243DBBF51B3F3
Authority key identifier: CE:56:49:DB:BA:59:2F:1C:9F:3F:28:89:BC:F8:1F:D2:25:98:93:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlZJ27pZLxyfPyiJvPgf0iWYk2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/Bh5WUFPp4pOAOEpHgZLqtdkZbxw.roa
Signing time: Sun 01 Jan 2023 15:14:57 +0000
ROA not before: Sun 01 Jan 2023 15:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58273
IP address blocks: 185.217.156.0/22 maxlen: 24
2a0b:cac0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:75:71:6c:d9:08:da:3c:52:43:db:bf:51:b3:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5649dbba592f1c9f3f2889bcf81fd225989367
Validity
Not Before: Jan 1 15:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=061e565053e9e29380384a478192eab5d9196f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3f:cd:b2:c6:f8:63:2d:cd:60:43:8a:b4:ea:
52:50:4d:7b:3a:7c:1b:16:8c:fb:46:d7:90:99:13:
29:1d:05:56:fb:c6:1a:6f:c8:1c:dc:46:47:5a:c4:
28:71:cd:83:62:6a:c1:18:9d:df:c9:2b:22:6a:67:
5c:b7:04:4d:c8:58:ba:52:9a:2b:35:96:08:73:77:
b3:47:96:96:8c:c7:2a:37:73:88:d9:10:8b:ac:04:
51:b4:2a:de:78:8f:22:41:82:65:25:cd:e3:18:1f:
8a:37:6a:04:b2:67:83:9b:7f:cf:1d:b4:7c:15:32:
18:86:a1:fa:da:8a:e9:e3:2f:a0:86:57:e6:f0:d7:
bf:5b:29:38:6d:b4:e1:59:61:5e:07:6d:cf:82:41:
53:fd:82:4b:3f:c9:9f:8c:b7:76:02:ff:1e:e6:92:
17:a4:76:e3:ce:9a:24:c6:d9:b1:cd:69:85:a5:05:
0e:34:69:47:68:34:b3:f1:e3:cc:68:80:0d:d8:74:
f7:64:43:a8:8e:88:ad:e3:fb:2a:49:6b:ce:d1:8b:
82:5e:2d:ef:c5:31:2c:8f:61:95:81:b1:49:dd:d6:
47:32:8c:01:df:ac:a3:c4:75:8e:36:20:6c:21:e1:
7c:f3:29:f0:c9:88:4f:83:5d:7b:c7:e1:4e:f0:4d:
28:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1E:56:50:53:E9:E2:93:80:38:4A:47:81:92:EA:B5:D9:19:6F:1C
X509v3 Authority Key Identifier:
keyid:CE:56:49:DB:BA:59:2F:1C:9F:3F:28:89:BC:F8:1F:D2:25:98:93:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlZJ27pZLxyfPyiJvPgf0iWYk2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/Bh5WUFPp4pOAOEpHgZLqtdkZbxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/zlZJ27pZLxyfPyiJvPgf0iWYk2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.156.0/22
IPv6:
2a0b:cac0::/29
Signature Algorithm: sha256WithRSAEncryption
94:0c:82:b6:a8:cd:31:86:80:66:e5:7b:91:18:d1:66:3f:e5:
e5:e8:31:02:8a:95:c6:a1:c8:44:b4:0c:ac:ab:7d:d4:02:f3:
ed:97:5b:e8:d5:a5:7e:ff:10:5a:0e:b6:eb:04:99:9c:cd:5a:
71:9e:ba:3a:88:f2:d9:11:98:5f:4d:a7:3b:7c:51:06:7c:89:
57:55:04:45:85:40:a7:40:a6:16:30:25:ad:c7:d4:74:ed:b8:
0c:26:fb:ba:f6:5b:cb:07:be:3e:cb:87:fd:2b:27:38:ee:2a:
c0:38:d4:2d:ab:40:7c:81:0e:5d:ac:6f:8c:66:33:0a:ea:b4:
c1:f4:65:ba:c0:6b:02:f9:8c:c2:6e:c1:d3:3d:57:41:d2:f7:
de:a2:cf:86:11:b2:4e:f9:5b:fa:b0:0c:2f:ae:d2:bd:98:c7:
f4:1e:b0:c5:db:4c:93:36:0b:09:d3:98:62:2f:20:70:cd:7c:
a6:de:50:29:24:07:28:ba:78:48:6a:74:c6:e1:67:09:d7:8c:
c0:28:ae:a5:5a:57:ed:c4:b4:e6:ed:de:51:34:1b:52:7c:76:
1f:46:77:77:8e:45:41:d2:82:89:42:3f:ce:51:86:2b:f0:4f:
52:00:a1:e8:19:e9:e6:3f:a9:67:79:75:f0:f7:94:74:4d:e1:
24:b1:63:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:14 2024 by rpki-client on console-ams.rpki-client.org