Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/w6_XGBabL2bkevfb5mHuvZzUEwo.roa
File: w6_XGBabL2bkevfb5mHuvZzUEwo.roa (raw, json)
Hash identifier: hEnyST2/oUnpvYNVd4MfMOdcdh54DztLedKUUTRHIr0=
Subject key identifier: C3:AF:D7:18:16:9B:2F:66:E4:7A:F7:DB:E6:61:EE:BD:9C:D4:13:0A
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 018CC7933B9BDBE63B8CD20E4BF4D8D3F1D0
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/w6_XGBabL2bkevfb5mHuvZzUEwo.roa
Signing time: Tue 02 Jan 2024 00:29:24 +0000
ROA not before: Tue 02 Jan 2024 00:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 185.235.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 13:40:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:3b:9b:db:e6:3b:8c:d2:0e:4b:f4:d8:d3:f1:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jan 2 00:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3afd718169b2f66e47af7dbe661eebd9cd4130a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:67:20:23:b0:3c:78:b0:e5:f9:4a:22:7b:3c:
99:66:84:64:9b:64:ff:91:d0:56:32:c0:92:8d:88:
3a:b5:a1:46:46:0b:d3:c7:09:83:40:a8:87:c5:64:
91:6d:53:89:c7:87:e9:b8:1d:28:7b:7f:df:65:43:
fa:08:59:a4:ec:86:90:f1:42:52:55:08:b6:2c:51:
69:ae:a8:36:20:dc:79:60:9b:f6:77:91:71:0e:ed:
bd:c1:84:3c:fb:50:0e:3d:87:00:80:12:80:8e:4c:
71:b7:fc:7b:59:44:5b:ab:e3:2a:4e:3d:25:09:99:
3b:81:1e:07:0a:6b:51:7e:2c:ee:e0:47:fb:17:0d:
9f:65:1d:2e:78:a4:d5:93:5d:be:9a:98:c9:ff:f0:
18:2b:2e:f4:74:99:ba:85:e0:5e:36:da:6c:6e:07:
18:30:10:8a:02:83:0e:86:2b:47:12:c9:6c:5c:03:
95:64:e4:e2:55:52:ad:56:61:07:84:b1:69:b3:9e:
db:6f:99:c4:5c:34:85:c5:ef:ef:cb:03:ae:b1:21:
25:e3:34:3f:6c:7e:f6:b6:d1:d1:21:9d:70:dd:9c:
eb:d7:ab:51:30:ad:27:70:6e:a5:1e:8a:15:13:5a:
f4:c8:8f:51:9a:d7:f4:2a:3c:1e:8d:d8:58:06:e9:
ba:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AF:D7:18:16:9B:2F:66:E4:7A:F7:DB:E6:61:EE:BD:9C:D4:13:0A
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/w6_XGBabL2bkevfb5mHuvZzUEwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.71.0/24
Signature Algorithm: sha256WithRSAEncryption
50:c6:60:8b:b4:b7:12:b6:d4:c5:fd:68:c8:72:65:46:10:76:
22:8e:99:ca:3d:2c:2c:8a:97:9b:af:17:63:72:80:fd:f3:8a:
60:70:fb:b2:f1:a2:20:d4:73:91:2c:9d:97:3e:08:92:73:4a:
f0:7a:91:db:21:30:f7:62:ae:d7:10:df:4e:f6:c0:1d:54:65:
e2:40:71:59:a4:4d:40:9a:cd:53:72:ae:af:16:37:1d:0d:71:
77:7e:b8:6c:c1:cb:68:0b:ef:14:d6:f6:f7:c2:76:77:5e:9e:
0b:23:34:51:22:05:49:6e:28:33:d5:66:7e:ed:8c:1d:b8:de:
24:e8:58:0a:87:e0:65:f8:65:1b:19:a7:25:a2:69:56:e9:44:
05:b3:0e:88:81:a4:23:e9:fd:5e:76:e3:01:6b:ca:9d:7f:b7:
d4:d3:9d:ce:2c:e3:d0:c5:72:de:fa:ea:71:5c:af:e6:f6:08:
36:b2:e4:44:bf:c6:e6:83:f9:dc:75:c0:b5:bb:9c:57:20:16:
42:ef:53:42:98:92:72:a5:f8:44:83:a2:27:45:dc:ed:52:2c:
f5:1e:75:47:fa:b1:2e:3e:2c:3f:1b:e7:15:8d:5b:f1:cf:72:
2a:37:0b:58:36:8a:66:75:fc:96:54:c3:e1:93:6c:95:ab:9b:
e6:42:c2:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 16:11:02 2024 by rpki-client on console-fra.rpki-client.org