Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_XEDgw-1wKx0hZxYkoXADGQHxvY.roa
File: _XEDgw-1wKx0hZxYkoXADGQHxvY.roa (raw, json)
Hash identifier: XY9RGdT7tyx0wS4mf2hedSVyxaiaXcqaZFgzsMXf1Fg=
Subject key identifier: FD:71:03:83:0F:B5:C0:AC:74:85:9C:58:92:85:C0:0C:64:07:C6:F6
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0185CEC4798B4814B03EC938FF67DF8D3D19
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_XEDgw-1wKx0hZxYkoXADGQHxvY.roa
Signing time: Fri 20 Jan 2023 10:41:00 +0000
ROA not before: Fri 20 Jan 2023 10:41:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.179.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Feb 2023 08:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ce:c4:79:8b:48:14:b0:3e:c9:38:ff:67:df:8d:3d:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 20 10:41:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd7103830fb5c0ac74859c589285c00c6407c6f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c2:05:42:00:7b:bc:83:e4:85:ef:89:3d:69:
cf:cd:f2:cc:97:0f:46:fa:ee:cc:11:a4:0e:33:f1:
56:9b:81:9b:9f:04:c6:62:43:7f:03:90:9a:7d:10:
ae:32:ea:69:c7:7b:df:0a:4f:99:4d:81:d5:ec:8b:
05:fa:f1:eb:eb:1b:90:bd:62:4c:eb:cc:4e:19:e1:
90:36:d1:7d:f4:87:70:87:52:14:09:4a:48:53:98:
6c:b8:18:d3:fe:e7:af:7e:0a:66:89:b5:0c:b5:49:
1d:1a:58:7e:35:22:bf:b0:3e:bc:9b:1b:fd:5a:16:
2f:db:88:7c:48:9e:48:fc:61:47:39:67:ba:f0:87:
a3:b6:74:f9:92:59:9b:95:f3:81:61:e9:f2:63:27:
a5:b1:60:26:5b:4b:05:16:3f:ac:6d:11:91:27:e8:
34:0a:08:b5:e5:90:e0:ce:c6:63:eb:2f:51:22:4a:
38:6e:38:ed:51:7b:1a:b0:5a:bf:f0:b9:9a:3c:db:
be:f2:4e:6b:4f:e1:70:c9:2f:84:2a:47:10:c7:af:
93:df:98:c5:36:93:ca:8e:11:b0:52:ad:4c:16:e1:
7e:77:ed:66:c3:1a:3b:21:11:dd:39:e5:0a:41:2c:
c3:94:ea:bf:f1:02:f4:97:04:2b:de:7e:9c:98:d1:
64:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:71:03:83:0F:B5:C0:AC:74:85:9C:58:92:85:C0:0C:64:07:C6:F6
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_XEDgw-1wKx0hZxYkoXADGQHxvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.216.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:53:58:2b:cd:c7:25:3b:08:e5:89:7e:9d:1b:66:81:80:3b:
df:cd:b3:c8:00:ea:6d:eb:c9:e5:52:84:92:0a:3c:9a:92:3b:
0d:09:a2:a5:e8:24:38:c9:fb:48:78:1a:15:34:97:62:00:57:
6d:5b:fb:fd:5a:fe:b5:56:ad:d9:08:59:7e:b1:4c:13:07:a7:
b3:59:da:e2:ae:35:ea:2b:54:7e:93:e4:51:c5:a5:f9:64:74:
f3:52:c3:d2:40:90:0f:28:01:ac:c3:01:f2:0f:77:09:a2:c3:
fb:78:07:ce:35:eb:e8:b7:d9:05:cf:7b:9e:9c:97:7f:b1:30:
c8:86:6a:c4:79:b2:50:29:0e:f4:4b:81:d5:16:a6:cc:95:f7:
0d:af:9e:1e:eb:3c:f0:67:d1:50:51:e5:5f:30:2f:73:47:44:
45:c4:42:1f:12:7d:39:8d:4f:79:ab:9d:30:ae:50:67:b1:d8:
40:69:29:48:5f:ae:7b:61:cb:ad:f4:79:e1:19:eb:40:ae:1a:
b0:f9:19:3c:7c:1f:06:4e:85:0a:65:d8:ea:16:c0:61:fc:86:
97:f3:47:07:f4:e7:a1:ec:91:1b:55:f0:52:f0:19:55:38:d5:
36:aa:27:ab:ee:83:c0:d8:35:8d:72:15:d5:1b:9b:f6:84:36:
1e:12:15:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org