Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/6V3lDQGa4dte_NP07VtrycfQa0o.roa
File: 6V3lDQGa4dte_NP07VtrycfQa0o.roa (raw, json)
Hash identifier: camUmhY66IoVv/12yNUazNC06vxFbvptDWMSGrJUMaA=
Subject key identifier: E9:5D:E5:0D:01:9A:E1:DB:5E:FC:D3:F4:ED:5B:6B:C9:C7:D0:6B:4A
Certificate issuer: /CN=25ae551af0bb5d7977ea73f6896f25f1eca28f9d
Certificate serial: 01856C8A5F3D7DB35383CDE7071024B6D661
Authority key identifier: 25:AE:55:1A:F0:BB:5D:79:77:EA:73:F6:89:6F:25:F1:EC:A2:8F:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ja5VGvC7XXl36nP2iW8l8eyij50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/6V3lDQGa4dte_NP07VtrycfQa0o.roa
Signing time: Sun 01 Jan 2023 08:54:45 +0000
ROA not before: Sun 01 Jan 2023 08:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.178.168.0/24 maxlen: 24
185.178.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Oct 2023 12:28:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:8a:5f:3d:7d:b3:53:83:cd:e7:07:10:24:b6:d6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25ae551af0bb5d7977ea73f6896f25f1eca28f9d
Validity
Not Before: Jan 1 08:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e95de50d019ae1db5efcd3f4ed5b6bc9c7d06b4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:68:a5:97:f5:9e:9e:9e:3b:1b:c4:6f:9f:7c:
c3:3b:89:d0:1b:d0:53:f2:c2:74:ab:50:5b:ec:06:
fb:3a:96:19:c6:e7:1f:5a:41:30:c5:bb:cf:49:8b:
d7:47:fd:e9:d0:77:51:eb:59:45:d4:da:55:3f:3a:
3f:36:89:28:fc:d3:f6:09:b0:13:fb:9d:17:9f:bd:
83:1c:00:36:c0:4c:28:6f:23:02:cc:bb:52:5c:90:
0a:65:2b:26:82:af:1d:3e:8f:bc:70:40:18:93:d6:
9a:3d:2a:cd:cc:f9:11:95:11:c2:37:0d:c3:cd:16:
9f:25:cc:31:61:17:1e:0d:4f:69:37:48:26:bb:ac:
7e:73:99:11:73:05:f4:c8:e2:e4:4e:c9:b3:41:f4:
3e:46:57:3a:fd:81:02:ee:b1:fb:ff:3f:03:27:cb:
3b:8a:6e:00:95:10:e2:6a:99:d6:0c:05:95:b7:9b:
de:5c:58:38:65:23:0c:b2:b3:e5:c4:42:65:0d:90:
0a:78:8d:cc:4d:77:85:1d:d9:90:27:76:1e:ff:34:
e6:9a:c5:e0:49:8d:a5:e8:df:c9:a2:4c:54:70:ad:
f0:55:95:74:09:58:7a:37:5d:d6:ef:df:d0:ad:17:
d6:bf:c9:b9:3e:b8:8a:17:a1:98:a0:86:13:70:55:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5D:E5:0D:01:9A:E1:DB:5E:FC:D3:F4:ED:5B:6B:C9:C7:D0:6B:4A
X509v3 Authority Key Identifier:
keyid:25:AE:55:1A:F0:BB:5D:79:77:EA:73:F6:89:6F:25:F1:EC:A2:8F:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ja5VGvC7XXl36nP2iW8l8eyij50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/6V3lDQGa4dte_NP07VtrycfQa0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/Ja5VGvC7XXl36nP2iW8l8eyij50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.168.0/24
185.178.170.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:6e:db:4d:e7:b4:bb:b8:de:3f:9a:7d:6e:a6:cd:a1:6a:cb:
e4:c5:de:98:c1:89:e1:1f:18:63:f1:75:bb:8b:6d:92:65:ab:
b2:17:e7:e4:3a:39:76:b7:74:c9:f1:34:04:8a:7e:ec:86:e0:
50:f8:d6:a1:25:d4:df:26:18:5b:3c:3f:90:09:5d:f5:5a:5a:
e1:99:ca:e4:94:11:75:30:58:4b:2a:bd:69:b8:2c:93:96:96:
a7:4c:3d:a1:45:9c:ce:35:c6:57:e3:0f:ef:c5:3d:e0:be:21:
9d:bf:30:5b:cc:5f:e1:3b:a3:16:eb:af:3d:eb:21:5a:6b:01:
39:98:4c:9c:3a:00:87:22:fb:61:a8:86:3b:2b:33:74:4d:e8:
03:e6:1d:c6:20:fb:ab:a4:a3:a9:88:80:b2:87:be:a6:da:d4:
cc:df:c4:09:10:0f:65:3a:5d:46:66:9b:12:07:d2:07:5f:16:
48:f7:9e:30:6b:51:ef:b6:7e:9d:ae:f1:20:6e:70:36:95:73:
f8:ec:f8:ac:16:76:da:f3:74:3a:bd:f3:fd:12:1d:2f:8c:1f:
14:6b:ef:c9:90:aa:25:eb:48:2e:7d:78:12:eb:7b:e4:e3:7c:
53:c4:a9:c6:a1:61:4e:96:6c:87:a2:db:aa:cd:f5:af:39:a5:
c5:d0:32:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:29 2024 by rpki-client on console-fra.rpki-client.org