Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/Xwcu4IkL-hGtu0K17jAsPIu-t1w.roa
File: Xwcu4IkL-hGtu0K17jAsPIu-t1w.roa (raw, json)
Hash identifier: tPYgySqrx/liMB5AHMpEhcJtY1mWKlY485zJnR1rIBQ=
Subject key identifier: 5F:07:2E:E0:89:0B:FA:11:AD:BB:42:B5:EE:30:2C:3C:8B:BE:B7:5C
Certificate issuer: /CN=335ca521362226d03c1829003d81d498aa838f33
Certificate serial: 01856E4B01D1BD51100572CF206E169A4FF5
Authority key identifier: 33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/Xwcu4IkL-hGtu0K17jAsPIu-t1w.roa
Signing time: Sun 01 Jan 2023 17:04:47 +0000
ROA not before: Sun 01 Jan 2023 17:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 185.186.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Nov 2023 17:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:4b:01:d1:bd:51:10:05:72:cf:20:6e:16:9a:4f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335ca521362226d03c1829003d81d498aa838f33
Validity
Not Before: Jan 1 17:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f072ee0890bfa11adbb42b5ee302c3c8bbeb75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:52:55:9f:af:68:68:20:83:cd:0c:89:a4:ca:
fc:39:be:95:11:1d:e0:30:69:54:e2:12:0d:55:2d:
c8:d5:32:82:d9:37:71:06:43:ba:a8:9c:9b:fb:7e:
ed:5e:df:63:6e:fb:31:ed:b2:b8:44:5c:67:b4:ed:
49:3f:b2:e7:0c:21:30:dd:6e:c9:90:4d:e3:d1:1a:
4b:9f:f2:8e:f2:98:96:7f:70:fa:95:91:f6:e0:7e:
42:2e:f0:69:8b:cf:e8:9b:54:ff:4a:d7:12:18:dd:
70:7c:6e:25:d0:8c:9c:33:7f:8c:ae:d6:9f:b4:4b:
fb:11:80:e1:30:db:c2:21:3c:5d:98:10:35:33:bd:
4d:2a:81:2c:53:d0:60:d7:d3:5a:01:64:84:b0:ea:
d6:ab:ef:8b:e4:78:dd:a2:39:46:06:10:37:90:4d:
fd:a2:62:4c:80:9a:dc:02:c5:c8:e6:78:23:c3:7f:
90:8c:e2:6b:14:fc:0e:4e:cf:b0:f0:76:0d:25:4e:
79:d1:c3:85:58:1c:c9:f1:3e:23:3a:10:25:8e:4c:
6b:9b:c4:34:23:35:76:d3:0c:17:8a:c7:f0:91:be:
90:f6:d5:4a:9c:bc:39:42:94:79:7a:0c:f5:55:65:
4d:e4:7b:40:f2:3a:17:cc:fa:47:72:ae:11:ea:d0:
9b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:07:2E:E0:89:0B:FA:11:AD:BB:42:B5:EE:30:2C:3C:8B:BE:B7:5C
X509v3 Authority Key Identifier:
keyid:33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/Xwcu4IkL-hGtu0K17jAsPIu-t1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.222.0/24
Signature Algorithm: sha256WithRSAEncryption
91:d6:ab:b4:2d:40:dc:3c:97:ba:22:e1:82:d5:13:8e:20:36:
c5:60:f3:fb:b5:9a:ca:62:1c:b0:fd:b0:0c:d5:4d:76:28:59:
ae:d5:18:ec:da:49:0e:e2:f2:60:cd:17:4d:83:86:e5:90:67:
63:58:08:83:87:62:5b:bd:d8:32:56:10:95:e7:aa:93:56:54:
b0:f1:ae:a7:78:a6:3c:c4:8a:5c:86:50:9b:b7:b0:b4:9d:b4:
8f:f9:a1:e0:58:36:09:ad:6c:4f:2d:0b:84:08:16:8f:29:a7:
c3:b0:74:72:ab:43:c8:81:22:84:4b:27:43:e3:f5:1a:13:d4:
9a:08:41:34:5d:8b:cc:46:8d:52:69:71:a1:97:3c:71:ee:b7:
a8:7a:e9:47:dd:6e:e2:c5:13:58:d2:40:8b:10:58:7d:2f:ca:
94:a0:a0:83:eb:da:88:d9:90:7a:93:aa:4d:3f:dc:34:88:fe:
da:f6:9a:f7:15:4d:b1:63:e4:5e:70:54:60:5e:df:4d:17:ac:
7c:22:33:a3:91:fd:e8:25:e3:dc:b2:e8:91:db:e5:18:f2:19:
8b:74:e2:53:11:98:b7:96:80:53:a0:16:57:5d:e4:38:06:76:
fa:f2:c9:95:a1:63:20:d7:42:7e:59:4d:92:17:76:24:55:2c:
64:75:c6:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org