Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/XNeQFu7hBnIIQil4ibqscejl-_w.roa
File: XNeQFu7hBnIIQil4ibqscejl-_w.roa (raw, json)
Hash identifier: vgpQYpVI66IzqJRyRUHaT0HgmCz86+jLOInqqlpJtfU=
Subject key identifier: 5C:D7:90:16:EE:E1:06:72:08:42:29:78:89:BA:AC:71:E8:E5:FB:FC
Certificate issuer: /CN=4d88eb730ab1a501ea36ea3482d764544e141111
Certificate serial: 018C69648D9D24BC114A754971B0A2904D87
Authority key identifier: 4D:88:EB:73:0A:B1:A5:01:EA:36:EA:34:82:D7:64:54:4E:14:11:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TYjrcwqxpQHqNuo0gtdkVE4UERE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/XNeQFu7hBnIIQil4ibqscejl-_w.roa
Signing time: Thu 14 Dec 2023 17:34:06 +0000
ROA not before: Thu 14 Dec 2023 17:34:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59851
IP address blocks: 185.225.237.0/24 maxlen: 24
2a04:f280::/40 maxlen: 128
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:69:64:8d:9d:24:bc:11:4a:75:49:71:b0:a2:90:4d:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d88eb730ab1a501ea36ea3482d764544e141111
Validity
Not Before: Dec 14 17:34:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cd79016eee106720842297889baac71e8e5fbfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a7:f8:1e:cc:1b:be:ff:cf:6c:32:67:86:98:
43:d8:43:62:ef:b6:3e:75:71:09:83:88:b5:f7:38:
97:67:c9:b7:bd:f1:4e:15:58:89:90:1e:f0:ca:c5:
44:4b:a6:7f:58:ec:22:f4:d3:26:b4:ae:5e:cb:5e:
b0:04:36:5c:b3:d4:0c:18:15:a9:65:7d:3f:63:cb:
c7:06:e1:09:c9:22:cc:1c:40:d7:19:0d:e8:cb:df:
fb:e8:65:09:98:42:ff:65:f2:e5:d0:8b:93:09:be:
ac:d1:29:e1:ba:67:a2:e7:89:d8:18:94:15:39:d5:
2d:f3:5c:1d:90:13:70:6e:71:4b:90:29:18:87:b8:
d6:62:43:ce:be:f8:7f:6f:ad:df:1c:d8:3c:e6:48:
6e:38:43:03:26:62:cc:31:f9:1e:1f:e3:ee:e7:f7:
80:19:30:4a:7b:89:a7:dc:ab:6c:35:a2:1c:ac:03:
6d:54:e0:49:ca:10:fa:f4:e6:01:67:96:6b:2c:f0:
57:af:ad:c0:f7:32:36:25:24:f9:27:9a:88:75:cc:
13:97:a5:61:a2:0b:0b:fe:a9:9c:04:5c:c6:b5:4d:
e2:ef:f8:82:8f:ab:6b:2a:1d:80:8d:74:1e:69:a1:
a2:be:8e:40:b8:0b:93:1b:57:d3:8b:c4:03:0b:ea:
18:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D7:90:16:EE:E1:06:72:08:42:29:78:89:BA:AC:71:E8:E5:FB:FC
X509v3 Authority Key Identifier:
keyid:4D:88:EB:73:0A:B1:A5:01:EA:36:EA:34:82:D7:64:54:4E:14:11:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TYjrcwqxpQHqNuo0gtdkVE4UERE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/XNeQFu7hBnIIQil4ibqscejl-_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c493ee-f66e-4208-a31d-726f83d23892/1/TYjrcwqxpQHqNuo0gtdkVE4UERE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.237.0/24
IPv6:
2a04:f280::/40
Signature Algorithm: sha256WithRSAEncryption
67:43:33:f2:31:87:9b:b1:b1:f4:1d:12:5c:ee:ce:33:ad:77:
30:34:6b:7b:96:03:25:6f:21:ad:e2:8a:23:00:47:16:3d:27:
0a:e8:9f:ad:a7:20:a5:fa:36:e8:58:31:39:f3:0f:f7:2a:39:
b3:3b:78:5b:89:55:54:b9:75:0d:2e:d3:37:d6:2b:28:5a:c5:
e1:1a:1d:bd:ff:64:0a:da:12:0c:28:0e:f7:8f:47:66:62:d2:
d2:9e:53:88:3f:52:50:1d:6c:41:2a:83:29:70:45:00:4e:7c:
c7:62:97:5d:f4:6f:15:15:29:75:3b:93:20:c3:49:b7:88:4f:
fd:8c:20:90:e1:e4:26:ea:74:ad:08:db:60:7f:c4:ca:b0:4e:
c6:40:d3:b0:68:20:b9:6c:d0:2b:f3:55:75:91:27:7d:90:bf:
b9:34:d8:94:20:12:c0:93:0e:d9:62:f4:95:5a:3d:a3:72:98:
04:89:78:c6:1e:cc:15:be:8c:ec:37:67:05:e5:5f:40:2b:79:
6d:7b:ae:48:c4:17:49:24:6f:b0:37:35:c6:22:23:e9:d1:32:
02:20:97:6e:05:e7:f8:ef:73:b0:b9:43:a2:45:e6:4d:52:d9:
2a:0a:5b:54:25:17:3c:78:0f:3d:05:fe:18:ed:80:f3:db:98:
14:d0:00:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org