Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/Tw1Wj5YdlMDsiOkhGettP27LH6s.roa
File: Tw1Wj5YdlMDsiOkhGettP27LH6s.roa (raw, json)
Hash identifier: Lz05eQrdrBI3mVpW547yU6lUYmWUZZithK8Cwy+1kOE=
Subject key identifier: 4F:0D:56:8F:96:1D:94:C0:EC:88:E9:21:19:EB:6D:3F:6E:CB:1F:AB
Certificate issuer: /CN=66927b2b26b5214b9665d8dc85f414709714996c
Certificate serial: 018CB549BEC0E3857B154819DDA9DE7A6456
Authority key identifier: 66:92:7B:2B:26:B5:21:4B:96:65:D8:DC:85:F4:14:70:97:14:99:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/Tw1Wj5YdlMDsiOkhGettP27LH6s.roa
Signing time: Fri 29 Dec 2023 11:15:58 +0000
ROA not before: Fri 29 Dec 2023 11:15:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212098
IP address blocks: 185.223.163.0/24 maxlen: 24
2a10:8c80::/32 maxlen: 32
2a10:8c81::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b5:49:be:c0:e3:85:7b:15:48:19:dd:a9:de:7a:64:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66927b2b26b5214b9665d8dc85f414709714996c
Validity
Not Before: Dec 29 11:15:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f0d568f961d94c0ec88e92119eb6d3f6ecb1fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f9:4d:a9:93:77:88:0c:92:68:b2:1e:fe:13:
d4:be:93:a4:10:6f:94:78:20:ee:41:e3:73:c7:4c:
f6:54:43:ef:32:14:51:da:e6:0c:f9:29:e1:e6:8d:
5a:db:c5:d3:e8:10:dc:e7:54:34:25:de:8d:7c:23:
5a:c7:b3:33:19:06:5e:c3:bf:52:6a:d8:e9:eb:a3:
61:13:18:1d:f1:c6:81:ba:1c:bf:21:21:b5:01:11:
16:57:b9:52:0e:4c:46:17:67:39:3b:d4:79:e4:15:
71:fb:7e:9b:6e:5f:4f:26:ff:45:b4:de:1d:0c:f2:
32:91:8e:81:d2:77:3f:2a:1a:b3:09:a5:9f:a6:5a:
9f:1d:09:b6:9e:01:87:34:78:8e:f7:1a:fa:52:01:
4a:a7:8c:1f:2d:ad:7a:b1:94:b8:b1:3d:72:d6:61:
c3:b4:a3:22:97:82:1f:34:99:ff:9c:1f:18:70:e5:
fe:a4:6d:72:1d:43:7a:ba:5b:ca:c7:44:fa:4b:d7:
d2:f2:c3:02:b9:ce:5e:04:f5:e8:c1:ce:be:e1:e2:
30:e6:96:c8:cb:26:ff:65:f5:55:42:d8:cc:28:1b:
67:3f:6c:99:c4:8c:c1:6a:b0:8f:b5:4d:bb:5e:98:
b8:61:c7:7d:3e:48:7d:cb:9e:f1:2e:4a:7c:92:0a:
26:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:0D:56:8F:96:1D:94:C0:EC:88:E9:21:19:EB:6D:3F:6E:CB:1F:AB
X509v3 Authority Key Identifier:
keyid:66:92:7B:2B:26:B5:21:4B:96:65:D8:DC:85:F4:14:70:97:14:99:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/Tw1Wj5YdlMDsiOkhGettP27LH6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e4ce7c-ad7b-4006-8e6a-80352d1413d9/1/ZpJ7Kya1IUuWZdjchfQUcJcUmWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.163.0/24
IPv6:
2a10:8c80::/31
Signature Algorithm: sha256WithRSAEncryption
78:9d:0a:1b:95:69:c2:17:85:d8:92:e0:2f:13:ed:f4:2d:47:
9e:b9:e5:38:13:d4:1b:51:01:a4:eb:a0:69:9c:c2:2b:e0:2b:
2f:67:27:c5:24:57:ed:4b:1b:4f:23:b8:bc:1c:08:c6:d8:2c:
0e:3b:bf:be:36:11:57:41:d7:53:47:ce:e2:08:8c:55:8f:3e:
af:11:3b:24:9e:53:6c:88:d8:86:a6:8c:26:90:08:c3:75:67:
6f:48:9a:0a:2a:37:d5:7a:05:36:02:9b:c9:9a:9c:93:c6:88:
83:8c:2f:ae:93:12:b0:82:09:4e:fd:d7:e0:eb:d5:1f:14:40:
d2:fe:d0:9b:8b:2b:34:68:ea:bb:cf:2a:1a:a1:dd:2b:25:2e:
50:02:81:18:b8:37:d1:4e:77:2d:12:60:a2:5a:df:57:5a:83:
0c:27:65:2e:19:12:f0:14:74:33:da:ad:dd:f7:12:40:61:6d:
f9:5f:be:11:a1:8f:3b:47:57:b4:8b:15:a7:57:ff:43:5b:4c:
5e:bd:b2:44:57:3d:14:d3:f1:c4:62:26:ea:67:9f:cb:4c:5a:
a3:7c:fa:61:0d:63:55:f2:24:d3:44:1c:8c:20:db:19:4e:4d:
31:61:14:fa:bf:2d:09:07:e5:8f:45:70:f8:50:7f:f5:87:5e:
cc:20:ad:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:42 2024 by rpki-client on console-ams.rpki-client.org