Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/RXcCN3CB6SqqOxKKNW6IDKq7Oew.roa
File: RXcCN3CB6SqqOxKKNW6IDKq7Oew.roa (raw, json)
Hash identifier: Nmga5C4XiWwAIKNUMQqFketvTEOwFbbWFIpkH2cgDcI=
Subject key identifier: 45:77:02:37:70:81:E9:2A:AA:3B:12:8A:35:6E:88:0C:AA:BB:39:EC
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018C1AAFDC3D3A66A69DA850E10572AD5574
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/RXcCN3CB6SqqOxKKNW6IDKq7Oew.roa
Signing time: Wed 29 Nov 2023 10:46:21 +0000
ROA not before: Wed 29 Nov 2023 10:46:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199159
IP address blocks: 217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
185.2.176.0/24 maxlen: 24
2a05:8900:36::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:af:dc:3d:3a:66:a6:9d:a8:50:e1:05:72:ad:55:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Nov 29 10:46:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=457702377081e92aaa3b128a356e880caabb39ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c9:56:fd:c4:c2:3a:25:82:35:d6:4c:e2:fa:
3b:a5:76:8e:8d:e7:51:0c:da:cd:bb:4c:52:dc:8b:
40:a6:ff:01:3c:b6:52:43:98:71:19:c0:0d:d8:40:
b3:92:05:bd:b0:7a:f8:81:14:2d:94:eb:7a:65:02:
66:41:1b:e5:3c:53:36:0e:47:46:7f:47:8d:49:45:
47:e0:5d:a3:35:42:3c:06:a7:25:ce:24:28:6c:2e:
db:a0:5c:a8:19:43:a4:d1:0d:1e:59:fe:1a:37:3e:
c2:54:cc:ac:e0:fd:e3:5a:29:eb:39:8f:fc:a4:8d:
ea:18:d5:fe:a1:7a:3f:79:a0:a6:18:2d:ae:c2:da:
41:de:3c:62:5f:78:80:0d:bf:92:0f:a1:28:9f:8b:
74:43:c5:20:0d:fa:07:09:62:e7:e5:1d:a0:55:ed:
44:8a:86:da:38:96:68:91:ad:c0:21:b0:d0:5d:12:
a0:52:ff:50:a9:60:de:76:df:5b:13:8c:eb:88:08:
a0:2c:e5:c9:fe:3f:13:41:a7:b6:f1:1c:dd:bb:47:
fc:e9:37:56:31:0c:97:23:ba:8f:6f:6d:9f:10:a2:
50:24:64:0c:2f:d3:28:41:31:cf:62:45:58:97:e4:
7c:f9:6d:fe:5a:19:91:a4:2f:86:1e:0e:88:03:06:
27:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:77:02:37:70:81:E9:2A:AA:3B:12:8A:35:6E:88:0C:AA:BB:39:EC
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/RXcCN3CB6SqqOxKKNW6IDKq7Oew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.176.0/24
217.146.6.0/23
IPv6:
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
27:ab:34:7a:f5:22:be:f2:73:fd:50:01:02:0e:53:24:51:ce:
60:72:57:b0:96:2d:b3:a8:5c:69:83:78:68:3e:7a:40:df:bd:
c6:b4:2a:86:2e:82:8e:44:5c:4e:f1:b2:32:dc:23:51:46:85:
2b:9c:25:a2:f6:7f:37:f7:ba:bb:eb:ef:92:f5:fb:b5:4f:12:
04:04:b9:f0:fa:8e:83:68:c3:5f:5c:c9:92:8a:8f:1d:92:76:
f0:14:7c:b6:f2:62:cc:d4:fb:d9:a6:db:35:3c:14:2c:6c:b6:
ae:f3:37:01:53:bb:b6:92:d0:64:87:f1:c1:97:09:0f:cd:b2:
80:7a:8e:fc:67:44:84:1c:09:6c:54:17:d9:02:24:cf:8d:cb:
36:a8:dc:78:6d:5f:6e:dc:be:5f:92:04:a1:d5:10:b1:17:1e:
1f:d9:f6:0c:6f:af:db:70:f9:f4:58:53:89:48:53:d8:18:41:
ca:72:35:d2:6a:b2:ac:ca:9d:49:2e:7a:9b:9c:4a:b7:4e:ae:
14:06:0f:99:a0:60:3f:1b:d9:ed:3a:27:70:5c:04:a7:c0:e4:
4c:58:68:f1:db:71:41:22:91:3b:39:33:77:2d:3f:b5:db:a7:
c9:ac:f9:0b:34:7f:0a:78:23:90:e7:4f:8a:96:21:97:e7:66:
00:34:73:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org