Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Xtwh_CtIWPoCuxVh7s7J7CvQzIs.roa
File: Xtwh_CtIWPoCuxVh7s7J7CvQzIs.roa (raw, json)
Hash identifier: aRL29dd/R7yEF7b2PT5OZY0ob+natbpOKklRxkjLfuY=
Subject key identifier: 5E:DC:21:FC:2B:48:58:FA:02:BB:15:61:EE:CE:C9:EC:2B:D0:CC:8B
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018B6CE03AF7C48CDA7B25539F7B7750FEDB
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Xtwh_CtIWPoCuxVh7s7J7CvQzIs.roa
Signing time: Thu 26 Oct 2023 16:45:16 +0000
ROA not before: Thu 26 Oct 2023 16:45:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216192
IP address blocks: 185.17.138.0/24 maxlen: 24
212.68.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6c:e0:3a:f7:c4:8c:da:7b:25:53:9f:7b:77:50:fe:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 26 16:45:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5edc21fc2b4858fa02bb1561eecec9ec2bd0cc8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:74:7c:01:7e:eb:e9:70:2d:3d:0e:c5:c3:94:
b4:ac:71:cb:5f:52:22:ba:d3:41:fd:58:a8:81:5d:
35:0e:ee:e1:ed:14:76:a2:6b:ae:1f:ea:ce:17:1e:
45:d0:42:eb:c1:63:0e:5b:ec:7f:20:de:c2:e2:e9:
d0:bd:47:6f:07:90:4b:30:2b:d4:84:f7:e6:b5:40:
06:82:12:5a:db:1c:86:5b:76:0d:0d:82:19:8b:68:
e1:15:ac:b4:1c:40:5a:be:0b:02:e7:6b:19:1c:7f:
f3:63:e1:bb:43:bb:2b:cd:4c:c0:72:1f:48:80:76:
33:e3:4c:8d:63:71:73:91:92:c9:33:b0:b2:37:0c:
ec:e9:d9:74:62:8d:eb:ba:62:5b:7d:b6:8c:94:6b:
8b:bd:65:9d:17:2e:84:07:d5:ac:28:07:fb:ac:a0:
3f:93:e1:52:67:cd:5a:ae:a8:8b:f6:9a:a6:c3:c3:
33:49:f3:0b:44:6f:87:58:2a:5d:3f:e1:ed:8c:ac:
2b:84:2d:bb:0f:51:57:3d:4c:74:6a:c7:aa:17:27:
a6:1f:7e:29:03:46:1c:2b:e6:cb:51:f5:bb:87:ec:
99:3b:a8:cf:ee:a8:44:31:b6:3a:1d:41:58:cc:06:
1f:f9:f8:b4:0c:72:33:f3:00:64:ed:a1:11:10:eb:
04:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:DC:21:FC:2B:48:58:FA:02:BB:15:61:EE:CE:C9:EC:2B:D0:CC:8B
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Xtwh_CtIWPoCuxVh7s7J7CvQzIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.138.0/24
212.68.37.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:3a:cb:0f:53:cb:9a:8d:b6:94:06:ae:ed:0d:dd:69:03:d0:
a4:ab:20:66:28:a2:85:b6:1e:dd:6d:21:0c:43:ba:a6:f6:25:
6a:7d:d9:09:05:04:4b:16:b2:06:1b:d0:c2:36:7c:d3:66:35:
6b:3b:f6:c9:0d:e0:00:c5:fd:2f:72:42:c2:d1:cb:7a:af:9b:
fb:9f:b0:19:14:99:4e:1a:5e:5c:cd:05:63:d8:19:26:93:57:
3b:8d:98:91:d0:27:d2:53:6e:56:31:b9:b4:25:73:39:10:76:
0c:ba:3a:be:ce:86:30:d4:3e:b3:7a:5b:b8:23:25:0f:80:ba:
4d:a5:a1:c9:66:bf:23:3e:ce:68:16:15:60:45:3e:25:21:19:
af:c6:fd:3f:6e:5b:59:e8:e0:4e:4c:dd:ea:45:a7:72:fd:ce:
0b:5d:45:3c:0b:1b:c0:e4:e0:d1:ea:b9:f5:aa:cb:1c:e3:ed:
c0:a9:7e:0b:be:2d:30:4a:16:1b:8e:4b:dc:8c:35:7f:f4:e4:
4d:95:fa:e9:b7:d9:be:9f:ef:79:1c:64:6f:39:43:80:bd:14:
b5:59:ee:86:a6:e4:01:48:e6:39:de:cf:a5:22:e0:5f:d0:5a:
ea:07:a9:fb:c2:3e:9a:f2:86:14:16:24:2a:50:17:da:99:37:
0c:31:18:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org