Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/snLhgpKtdG1Lif8s9INTPxXfJMI.roa
File: snLhgpKtdG1Lif8s9INTPxXfJMI.roa (raw, json)
Hash identifier: TuDOk3g2h8F5bKyClELS/uvlzgnim9kgSxOlmUf60rs=
Subject key identifier: B2:72:E1:82:92:AD:74:6D:4B:89:FF:2C:F4:83:53:3F:15:DF:24:C2
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 018ACDB8D5D96F4044B2F7519FBF81E55C6C
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/snLhgpKtdG1Lif8s9INTPxXfJMI.roa
Signing time: Mon 25 Sep 2023 19:02:37 +0000
ROA not before: Mon 25 Sep 2023 19:02:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216394
IP address blocks: 185.88.175.0/24 maxlen: 24
185.98.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Nov 2023 15:03:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cd:b8:d5:d9:6f:40:44:b2:f7:51:9f:bf:81:e5:5c:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Sep 25 19:02:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b272e18292ad746d4b89ff2cf483533f15df24c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bf:b0:47:7d:37:78:fd:76:6b:f4:da:69:de:
2f:b9:6c:ee:e1:ad:e7:ff:62:d2:1f:6b:24:e1:47:
a7:2e:1c:6a:a6:61:9e:56:a8:e1:88:59:99:04:90:
27:c1:dc:1c:2b:fd:fc:a3:03:a0:e0:20:bd:62:c8:
71:5c:b3:52:5f:74:a1:08:73:2c:f8:dd:1a:c1:8e:
a2:0d:32:b9:bb:a1:b0:de:27:6e:2d:e6:51:87:d0:
47:16:b5:28:d3:d1:9b:83:db:89:ce:74:d1:d8:bf:
0b:2c:b9:3d:f9:84:a5:aa:7c:b4:00:0c:f7:ec:4c:
0f:8a:81:ff:b5:4e:52:fe:cd:f8:b6:20:8b:80:ec:
80:e2:c3:b0:75:63:10:0d:b2:5d:31:3f:74:ce:86:
11:96:38:18:47:4c:72:15:25:dc:98:29:3a:9f:a5:
da:8e:2d:e9:6c:fc:ee:6f:74:34:ff:98:8e:41:a0:
96:8e:ac:e0:19:80:65:2a:9a:af:ff:d8:2b:d2:15:
05:2e:8c:1d:c1:4b:2f:7d:3b:49:6a:03:7e:92:5a:
40:66:39:7a:4c:b6:04:9d:14:cb:c3:1a:e8:ed:01:
c6:df:e8:5a:13:f5:41:80:1f:f4:4f:84:ca:52:17:
24:75:3c:bd:f2:9b:0f:a4:57:e3:aa:d0:4b:ab:24:
bb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:72:E1:82:92:AD:74:6D:4B:89:FF:2C:F4:83:53:3F:15:DF:24:C2
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/snLhgpKtdG1Lif8s9INTPxXfJMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.175.0/24
185.98.63.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a9:28:73:eb:c9:e3:4a:ea:91:94:00:54:ab:6d:a5:48:01:
76:71:70:17:97:08:e0:8d:f4:af:18:08:82:93:af:2e:a5:85:
fd:97:aa:70:b2:e2:b3:5b:30:20:0e:13:a3:f1:1d:1e:68:da:
f8:51:63:6f:86:0c:38:ad:6d:7e:a5:ba:e1:7a:a7:3c:ba:c2:
40:77:6d:2f:18:16:27:80:b3:e5:b5:89:97:f3:4c:95:92:3c:
f7:9f:28:d9:e0:b0:5f:93:09:3f:7e:53:ed:a7:e8:3d:b4:46:
f5:13:bc:6b:27:84:67:f2:30:a7:62:fb:4d:2a:3d:41:6f:02:
68:52:7e:b4:e4:45:12:af:6e:35:de:a2:be:15:8b:2b:18:cd:
c5:11:35:9b:3c:5d:f4:cd:e7:2f:53:63:a4:ca:1a:84:22:26:
16:4c:4e:1e:54:52:e1:25:26:5f:ca:df:d9:a0:2f:ba:36:d6:
ee:82:73:c3:56:93:83:5b:97:dc:77:06:0d:11:82:f9:67:f3:
f7:41:c9:8f:6e:89:19:58:71:7b:e4:00:4c:78:fe:f5:57:df:
6f:f4:46:8c:79:ee:2e:c1:97:4f:fa:63:ea:e0:7a:fd:de:0c:
2c:61:c7:7a:7c:1d:26:66:41:e1:0e:02:c2:9b:f3:06:6f:1c:
fa:50:51:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org