Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/2xVKqEiYMX0sjpasnflvawZtl8w.roa
File: 2xVKqEiYMX0sjpasnflvawZtl8w.roa (raw, json)
Hash identifier: PCeNjj5f038GSy4cNbzpfWt1GDwkcrp7UfTmMU+ExaA=
Subject key identifier: DB:15:4A:A8:48:98:31:7D:2C:8E:96:AC:9D:F9:6F:6B:06:6D:97:CC
Certificate issuer: /CN=2becef943d34c80e0a0fd81426e6136b31508fee
Certificate serial: 01878E374DD4E0879E2B23CB9E09A42760B5
Authority key identifier: 2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/2xVKqEiYMX0sjpasnflvawZtl8w.roa
Signing time: Mon 17 Apr 2023 07:56:41 +0000
ROA not before: Mon 17 Apr 2023 07:56:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15704
IP address blocks: 185.195.178.0/24 maxlen: 24
185.195.177.0/24 maxlen: 24
185.195.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Oct 2023 15:36:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:37:4d:d4:e0:87:9e:2b:23:cb:9e:09:a4:27:60:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2becef943d34c80e0a0fd81426e6136b31508fee
Validity
Not Before: Apr 17 07:56:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db154aa84898317d2c8e96ac9df96f6b066d97cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:dc:4c:b8:46:f2:ef:da:93:d3:27:fb:1b:
fa:be:0a:fd:d5:91:c5:b3:01:86:9b:70:cc:05:36:
47:74:af:75:14:af:03:61:f3:1f:0c:0e:6a:b2:54:
d4:e8:c6:b5:5b:b5:50:5c:dc:2d:7e:5e:20:3f:e2:
1d:49:c3:0b:2d:46:fe:1f:b7:41:08:73:10:51:93:
80:9c:6d:7e:f1:29:af:bc:d5:98:b9:aa:28:77:ea:
54:03:4a:13:0d:5e:80:af:a6:d9:5e:3a:b5:27:af:
b4:73:c0:11:4c:9d:84:ed:3d:cd:25:2a:b5:4e:ce:
33:f1:d5:f9:b6:02:4f:6a:38:fa:8e:aa:ad:61:65:
8c:62:5f:6a:40:9b:84:e1:6e:7c:0d:e7:a8:c5:54:
55:0c:48:a3:a2:d8:a4:9a:28:20:7c:9d:01:39:8c:
ce:14:5c:91:e9:57:e4:e0:f5:3f:cb:db:42:bb:41:
4b:60:32:21:43:4e:27:e4:91:b8:99:39:9e:99:0d:
4e:0e:a0:f6:00:e2:07:74:71:8a:e9:61:ca:ad:23:
b8:84:84:95:40:de:cf:99:da:b3:5e:62:15:cd:a4:
d4:c8:07:fe:0e:b8:ee:f0:93:13:d9:73:80:c2:b9:
3d:95:3c:1d:c2:ad:e5:5d:a6:8d:3c:de:19:a6:2c:
a5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:15:4A:A8:48:98:31:7D:2C:8E:96:AC:9D:F9:6F:6B:06:6D:97:CC
X509v3 Authority Key Identifier:
keyid:2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/2xVKqEiYMX0sjpasnflvawZtl8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/K-zvlD00yA4KD9gUJuYTazFQj-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.176.0-185.195.178.255
Signature Algorithm: sha256WithRSAEncryption
1d:4e:f6:59:8c:7f:07:b0:02:9c:53:93:bb:6f:ea:2b:ab:14:
85:04:4a:ce:a3:c9:ba:53:b4:18:2d:48:f4:ca:4a:10:60:5a:
74:b7:c1:04:d0:ea:e1:72:f3:a2:16:5b:43:d2:c6:39:b4:d7:
49:d7:ff:9b:78:b9:ae:cd:89:c3:12:90:45:d1:70:97:36:80:
89:b2:f5:ae:0b:01:6e:85:3c:29:78:f9:15:d0:30:36:5d:47:
6d:e6:d5:47:c5:07:5d:d7:e1:0d:69:60:f9:d2:a8:29:80:63:
9f:75:0a:76:2a:a8:e4:6a:4f:05:99:a2:14:f3:dc:86:fa:f1:
36:1d:e3:b4:70:16:08:d9:e4:4c:f3:04:bf:6b:de:ed:ae:f3:
ad:77:10:32:f0:6f:b4:76:c0:88:54:98:fd:c9:26:63:1a:26:
26:0b:93:9f:c4:aa:55:d8:6e:c7:98:de:57:67:57:e0:43:95:
63:04:d1:51:92:90:02:ce:03:31:2b:44:ae:ab:60:8d:dd:3a:
55:12:62:b6:c6:35:94:bb:67:08:4f:72:6f:d9:c8:db:09:b6:
08:a9:df:29:63:5d:f5:e7:a9:04:7a:40:59:b9:a3:aa:9f:8a:
5a:ef:cd:f5:8a:83:fd:15:55:ae:10:36:99:99:c3:cd:64:59:
aa:ee:c1:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:02 2024 by rpki-client on console-fra.rpki-client.org