Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/w4-ibs3oWKD5KQCIcNgc_vP20_A.roa
File: w4-ibs3oWKD5KQCIcNgc_vP20_A.roa (raw, json)
Hash identifier: xym506089/6Z1iUHWfo/ZzT7sMxg5U2BAzZepGGRjaA=
Subject key identifier: C3:8F:A2:6E:CD:E8:58:A0:F9:29:00:88:70:D8:1C:FE:F3:F6:D3:F0
Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Certificate serial: 018A373B2C2021695E9A192651D37F508F4F
Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/w4-ibs3oWKD5KQCIcNgc_vP20_A.roa
Signing time: Sun 27 Aug 2023 13:42:19 +0000
ROA not before: Sun 27 Aug 2023 13:42:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57053
IP address blocks: 185.155.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:37:3b:2c:20:21:69:5e:9a:19:26:51:d3:7f:50:8f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Validity
Not Before: Aug 27 13:42:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c38fa26ecde858a0f929008870d81cfef3f6d3f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:89:c6:dd:85:a9:a6:54:41:73:c6:ef:63:a3:
fb:c0:5c:6e:a8:a8:bf:b3:7b:f8:3d:5a:2f:24:c5:
53:44:2f:d8:d9:a1:c2:5f:b6:e7:ca:1e:d0:10:66:
81:64:33:3b:ff:b7:19:a0:44:99:6e:54:b5:e3:7d:
c2:f8:6c:15:4f:7e:cc:db:ab:c6:55:2c:bf:f3:7a:
7c:74:ed:53:03:bc:15:4e:26:21:ce:d3:df:25:2c:
a2:60:60:76:bd:bc:9f:8d:b1:21:ff:a7:14:40:9f:
2e:e0:0f:0a:9c:7f:9b:8f:63:fd:14:77:7b:6b:40:
0a:08:e9:99:84:43:d8:9e:c0:9e:35:33:0c:91:7b:
84:01:9a:47:e9:e0:44:dc:37:59:ee:4d:84:2c:fd:
9e:41:4d:f2:0f:94:61:72:09:59:7a:e6:2e:f4:78:
d4:c6:09:91:c8:77:44:4c:2a:ff:9d:1b:e3:ec:da:
eb:18:a4:1a:49:c8:41:9d:7d:22:a6:14:71:43:94:
91:c5:9f:4a:45:a6:7f:89:99:ef:19:4d:f0:80:14:
a9:d0:5f:07:aa:1c:e6:c3:7d:44:db:44:d5:90:19:
a5:84:c8:ee:d2:61:d4:bc:5f:a4:df:b8:4b:a4:83:
73:c1:e1:6c:a6:f4:6d:3a:49:a7:87:93:02:4d:75:
e1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:8F:A2:6E:CD:E8:58:A0:F9:29:00:88:70:D8:1C:FE:F3:F6:D3:F0
X509v3 Authority Key Identifier:
keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/w4-ibs3oWKD5KQCIcNgc_vP20_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.159.0/24
Signature Algorithm: sha256WithRSAEncryption
26:5f:ec:5f:30:cd:4b:f5:5d:8e:8a:11:0c:4e:8d:4f:bc:fe:
9b:a4:ed:a5:19:74:da:7a:0b:d7:9a:28:29:c4:e5:5c:b7:f0:
03:de:8f:ee:a7:5a:b1:20:f8:14:d4:a9:d3:c5:66:f9:64:84:
92:c3:6d:ed:37:e8:ed:60:30:e6:b0:86:3a:4b:1b:17:3c:e0:
c1:ad:40:54:4d:5d:8d:45:12:25:9f:9c:02:5a:cc:c1:2a:79:
d4:26:d5:0f:9a:ba:f5:71:5f:88:9d:ed:d9:7c:39:f6:0d:f3:
2b:7c:b9:0a:f9:a2:a6:c8:73:58:e8:d4:b6:09:b7:85:8d:48:
21:20:4a:02:2b:53:a8:1f:fa:7f:9b:94:f2:c2:24:83:a8:a5:
a3:50:1b:c6:6b:f1:e1:5a:86:63:dc:75:aa:5a:cf:d8:84:b9:
31:f2:f0:6d:9c:f4:1a:eb:21:b2:0d:40:ae:26:cd:35:1b:4b:
2a:5b:bc:e7:10:d8:c1:3d:61:92:9b:5c:b5:1c:2c:27:80:86:
ea:ca:70:d3:0d:f7:f6:90:1a:4d:08:c1:43:7c:90:11:c6:58:
ae:d7:7d:87:89:81:d8:14:d3:4c:9a:d5:a2:da:28:20:df:80:
84:f1:42:18:80:a2:69:76:99:d7:5c:c3:e8:2a:20:6a:dc:0d:
5d:d1:ab:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:20 2024 by rpki-client on console-fra.rpki-client.org