Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/bLnWnCFkI6_Y0EA8Swl2aowtetQ.roa
File: bLnWnCFkI6_Y0EA8Swl2aowtetQ.roa (raw, json)
Hash identifier: 2zAxJL9YKqUfdkmE7xeS7a4EE7QumHzqmVUkKL4IVoQ=
Subject key identifier: 6C:B9:D6:9C:21:64:23:AF:D8:D0:40:3C:4B:09:76:6A:8C:2D:7A:D4
Certificate issuer: /CN=e168e36ba577ed47e6928729691991e4e7f235da
Certificate serial: 018BAA13ACB45B3245EA72AD81C6FA134BE2
Authority key identifier: E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/bLnWnCFkI6_Y0EA8Swl2aowtetQ.roa
Signing time: Tue 07 Nov 2023 13:58:17 +0000
ROA not before: Tue 07 Nov 2023 13:58:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 185.211.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:aa:13:ac:b4:5b:32:45:ea:72:ad:81:c6:fa:13:4b:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e168e36ba577ed47e6928729691991e4e7f235da
Validity
Not Before: Nov 7 13:58:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cb9d69c216423afd8d0403c4b09766a8c2d7ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fd:c4:5e:43:7f:08:2c:00:71:0e:53:80:8f:
7e:3a:0e:d4:fa:4b:3b:a3:1a:6b:05:70:42:1e:12:
68:ea:b7:e7:c3:14:66:09:c5:1e:6e:64:21:7b:20:
3a:94:c8:61:8e:e4:6a:3d:d9:df:c0:77:aa:0e:30:
dc:9d:49:50:4f:a5:af:77:c9:c9:38:42:8a:d5:78:
a9:81:7d:c1:71:3e:6a:30:86:ca:6b:e0:a2:27:b6:
5c:10:9c:c8:b6:ae:a7:f5:d5:28:1b:ba:81:1f:e8:
d1:7e:1f:00:b5:e6:53:f6:47:77:35:89:26:79:44:
aa:24:57:d8:14:2b:27:98:d3:2c:71:a9:16:49:65:
c5:26:4e:fd:d9:10:0e:c8:f4:2a:0d:61:91:1e:0a:
1f:08:bd:d6:55:21:67:77:36:ba:73:05:f6:0b:f2:
63:b5:45:28:9f:1a:c6:c1:78:c1:33:c4:99:09:db:
4a:6e:5f:ec:c1:ef:0d:4d:16:83:74:aa:cf:42:ca:
b8:eb:be:99:8b:b0:78:cc:44:97:02:eb:92:f2:e5:
5b:6d:3a:ef:62:e3:21:87:ff:b6:eb:c7:6d:66:fa:
d8:c2:da:4c:a2:ac:c1:d9:65:a0:c7:3b:dd:6b:62:
80:33:19:7a:64:42:83:15:cd:ed:09:71:fc:5b:8e:
47:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B9:D6:9C:21:64:23:AF:D8:D0:40:3C:4B:09:76:6A:8C:2D:7A:D4
X509v3 Authority Key Identifier:
keyid:E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/bLnWnCFkI6_Y0EA8Swl2aowtetQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.10.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:d4:71:b1:3d:d4:92:d0:fb:a3:ac:47:11:6c:04:f1:34:40:
7b:9d:de:0f:31:6e:aa:16:da:aa:49:18:27:ed:51:68:ea:2a:
28:02:1f:46:97:1a:01:ad:48:71:2e:16:1f:12:b5:2e:c0:6f:
b7:b0:64:3f:5f:a3:a5:5b:03:e2:e6:cb:15:1d:5a:b0:d0:f9:
fe:2e:37:13:6a:23:db:af:1d:50:35:36:47:ca:cf:74:cd:8d:
42:db:8c:55:da:4e:cb:7c:98:a1:6b:25:23:dd:fc:5d:36:08:
10:29:5e:0e:87:af:96:b2:12:f3:5d:7a:5c:bf:91:eb:91:0b:
3f:50:34:94:21:d9:75:10:19:d2:62:e4:6a:12:55:78:61:e6:
4d:1e:e0:00:cc:04:8e:ec:56:2f:70:ad:c3:d4:ad:a4:51:d9:
69:ed:b7:40:cb:b9:dc:19:8b:88:3d:73:46:c1:a5:44:74:47:
6e:6f:5e:98:6b:35:7a:74:78:fc:90:3d:41:1e:03:52:a7:31:
b7:ba:48:2c:54:e8:c6:57:a6:0e:5d:35:58:eb:2a:08:e1:07:
98:e6:87:4a:79:72:f0:a0:b3:67:a5:6b:e0:14:5d:e7:96:fd:
cd:91:c9:e4:6c:69:48:da:a1:59:65:6c:ac:2c:e0:d0:9f:2c:
87:23:ae:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:20 2024 by rpki-client on console-fra.rpki-client.org