Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/wsIpplhrzzAi2xf106M_dbhv0xY.roa
File: wsIpplhrzzAi2xf106M_dbhv0xY.roa (raw, json)
Hash identifier: XsvZYbAsc3ugka6CNTkcT2O2/cgqVJegf9611C4RQv0=
Subject key identifier: C2:C2:29:A6:58:6B:CF:30:22:DB:17:F5:D3:A3:3F:75:B8:6F:D3:16
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018D64405EA28B9F5934E46CFB7173B85753
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/wsIpplhrzzAi2xf106M_dbhv0xY.roa
Signing time: Thu 01 Feb 2024 10:39:16 +0000
ROA not before: Thu 01 Feb 2024 10:39:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212335
IP address blocks: 185.164.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 14:31:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:64:40:5e:a2:8b:9f:59:34:e4:6c:fb:71:73:b8:57:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Feb 1 10:39:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2c229a6586bcf3022db17f5d3a33f75b86fd316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b1:66:af:92:06:0b:44:8e:08:e1:e9:38:da:
93:7e:05:a3:a4:3a:b2:a8:71:60:75:12:13:66:fc:
e5:9a:b8:4a:ab:e2:b8:1e:04:07:57:df:9b:db:c5:
7d:e2:6e:8e:b7:bb:f7:36:e7:82:77:5c:76:33:21:
5c:59:9a:0d:7d:58:9f:6b:6f:cc:8f:c8:9d:31:ef:
1c:07:f7:8b:10:d7:88:2a:7c:4d:ba:57:88:c2:48:
21:7b:37:81:a0:33:38:b4:d5:69:68:fc:52:d5:84:
14:c3:7a:a7:e9:d6:86:5a:f7:ff:dd:0e:d7:d0:e9:
90:de:3d:2e:f9:3a:9b:c8:89:19:1a:ed:b0:f7:a9:
32:a3:64:de:f9:66:81:6e:41:37:d9:13:84:bb:c6:
2b:58:bf:1d:7e:0d:b0:15:c6:29:f6:c3:2a:6b:89:
aa:75:67:73:17:64:5a:cd:b9:ad:7c:a8:69:33:01:
c3:c3:a8:be:ea:6b:81:3c:a5:b9:74:00:69:9e:de:
e7:d7:fd:7d:d8:02:bd:2b:6d:c3:71:b8:f9:b4:f4:
36:54:a9:2e:6f:5b:9e:ca:38:ca:52:67:34:3e:6d:
2b:ab:87:83:74:c6:9a:7f:8d:12:0c:3b:30:a2:6c:
e3:9d:7f:92:9c:31:7d:e0:22:ba:9c:ea:ed:53:31:
07:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C2:29:A6:58:6B:CF:30:22:DB:17:F5:D3:A3:3F:75:B8:6F:D3:16
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/wsIpplhrzzAi2xf106M_dbhv0xY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.175.0/24
Signature Algorithm: sha256WithRSAEncryption
35:93:1e:ef:f0:ca:2b:b8:b2:1e:ea:c5:39:4a:42:2b:e4:b3:
4c:6a:da:02:32:ee:63:63:9e:d5:f7:f4:19:54:7d:2c:0b:15:
17:b3:56:fc:4e:6a:e4:ac:27:bb:62:f7:01:3b:d8:7c:7d:fe:
00:df:fe:17:3e:84:b2:6e:d8:58:21:5c:27:78:bf:ed:db:d8:
5e:db:cc:74:83:86:61:8d:80:55:5e:24:ab:15:8c:e0:07:3b:
d5:3f:c1:68:17:97:22:d2:39:79:92:bb:3a:dd:90:5e:a4:f6:
40:76:95:c5:46:fc:b3:c8:7c:d4:78:d8:c1:97:91:1f:f7:43:
0c:91:9a:f4:5a:d6:3c:2a:ec:7e:7c:12:d6:e0:80:4a:d4:37:
ea:ed:c2:d6:20:2d:3f:07:f8:92:35:87:4a:d4:a6:72:e1:a6:
2d:da:8b:8a:62:73:2b:12:0f:88:e3:6b:4c:5e:20:67:4d:e4:
40:31:92:3d:8a:d3:ba:23:e5:f2:9d:de:5e:32:4d:71:da:9b:
ae:d5:0b:cc:2e:46:6f:81:08:0b:ac:82:f5:f1:55:81:c1:de:
76:d0:6c:3e:2a:37:21:9e:51:ea:55:e6:0e:9b:c4:57:82:b6:
b2:84:ee:87:0d:34:29:cd:b6:ef:49:39:16:55:14:f8:ff:19:
6b:ab:36:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org