Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/B5JaOR3VexAtOXtjKKf8cbWtHpI.roa
File: B5JaOR3VexAtOXtjKKf8cbWtHpI.roa (raw, json)
Hash identifier: XU3OPGp1ToUbwXuOpWR3+SMZ98aKtZThuonmwJvQ9Ek=
Subject key identifier: 07:92:5A:39:1D:D5:7B:10:2D:39:7B:63:28:A7:FC:71:B5:AD:1E:92
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 018B3751271E5616FADCC1ED1B511D9DE03C
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/B5JaOR3VexAtOXtjKKf8cbWtHpI.roa
Signing time: Mon 16 Oct 2023 07:09:07 +0000
ROA not before: Mon 16 Oct 2023 07:09:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213107
IP address blocks: 185.88.175.0/24 maxlen: 24
185.98.63.0/24 maxlen: 24
185.86.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:51:27:1e:56:16:fa:dc:c1:ed:1b:51:1d:9d:e0:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Oct 16 07:09:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07925a391dd57b102d397b6328a7fc71b5ad1e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:01:2e:2c:c8:15:d3:25:56:83:c5:0a:88:45:
bd:fe:77:e8:d6:75:8b:ad:54:31:a0:5e:f3:66:3f:
84:80:bc:0c:18:3d:68:6f:e2:4f:8f:38:87:54:9f:
70:04:6c:97:5c:19:fb:42:82:36:d7:b7:85:80:c2:
82:75:69:17:ba:f4:08:eb:93:c2:d4:35:10:da:49:
51:97:c1:ab:19:e8:29:7b:5d:fc:0f:2e:7e:df:5e:
8e:bb:0b:02:a2:12:60:f8:c2:3b:17:8b:d3:26:5d:
a6:62:47:e5:2d:33:16:28:2b:32:42:ba:e7:41:68:
30:98:76:3e:14:55:18:de:21:5b:f9:33:9a:5a:0d:
6e:5a:28:87:c7:6b:8c:d0:e7:95:e5:32:5a:1a:a0:
f0:bb:8e:52:07:06:5f:f1:48:02:0f:79:ce:8f:a9:
08:da:c0:94:b5:c2:6e:23:e6:b9:02:60:7c:c7:cb:
65:62:bc:cc:6b:10:02:05:ee:38:e9:ef:7b:9c:1c:
2c:1d:d6:07:39:ff:27:92:ed:d3:35:44:5d:db:de:
94:b3:f8:71:15:cd:31:96:0f:38:c5:70:a1:06:15:
85:fe:d6:66:a4:5f:d6:b4:30:4f:a9:f8:ee:49:cf:
db:1d:34:36:88:4f:d8:be:a2:b8:38:89:89:55:4e:
58:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:92:5A:39:1D:D5:7B:10:2D:39:7B:63:28:A7:FC:71:B5:AD:1E:92
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/B5JaOR3VexAtOXtjKKf8cbWtHpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.14.0/24
185.88.175.0/24
185.98.63.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:23:fa:94:f8:97:1e:78:fa:f2:a8:4f:69:ba:60:11:97:39:
d3:39:53:b3:f6:98:82:a3:e7:bd:9c:92:8d:a1:5c:f9:50:29:
25:77:07:3c:69:27:a1:08:0c:10:55:d1:6f:47:38:a4:23:17:
1c:83:fb:8f:f4:8d:94:97:52:4b:02:6d:a9:99:a2:ac:da:f2:
0e:00:59:ad:45:5b:f6:3b:15:fc:f6:25:f9:a2:89:77:2f:57:
1c:01:f4:56:f5:db:8e:33:76:6b:ae:56:51:e1:3b:c9:f5:0a:
4b:17:c9:2d:39:2a:9c:50:7e:ce:4e:48:f4:96:91:60:3e:53:
b1:02:28:cb:cb:72:9a:8c:78:44:56:b6:ed:e0:f8:c5:b9:8d:
39:da:1e:ea:72:d6:93:3e:24:31:9f:1a:58:47:38:33:ee:12:
ab:f9:c5:d2:5a:da:51:95:d1:df:a6:d9:bb:7c:4f:cb:e5:45:
a5:01:87:51:06:b1:e8:1a:1c:ec:6f:9d:57:f2:c1:f3:4b:6a:
63:ac:87:e4:ab:22:b5:de:89:5e:c5:28:cc:05:f6:7b:6f:09:
28:e9:20:5c:89:4c:9f:2a:64:ce:f5:07:c4:b4:7b:ac:a4:20:
9c:e9:ac:77:3d:8d:c6:89:1c:89:64:17:6c:30:f6:6e:aa:62:
dc:57:27:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org