Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Y15ZxR5R2xl6yOzgpB15YzkYdWQ.roa
File: Y15ZxR5R2xl6yOzgpB15YzkYdWQ.roa (raw, json)
Hash identifier: vq3HTaZEwd7LqXPMBImi61TWP1CGPOHaf+gfFplmZ8c=
Subject key identifier: 63:5E:59:C5:1E:51:DB:19:7A:C8:EC:E0:A4:1D:79:63:39:18:75:64
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 018CC801DDB2F7CD9B791F9FAE943F4A60BD
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Y15ZxR5R2xl6yOzgpB15YzkYdWQ.roa
Signing time: Tue 02 Jan 2024 02:30:14 +0000
ROA not before: Tue 02 Jan 2024 02:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 133115
IP address blocks: 185.184.221.0/24 maxlen: 24
185.184.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 06:20:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:dd:b2:f7:cd:9b:79:1f:9f:ae:94:3f:4a:60:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 2 02:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=635e59c51e51db197ac8ece0a41d796339187564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d7:02:ad:56:4b:44:27:93:5f:af:e9:d2:8a:
4f:8a:e6:8f:b5:18:fe:7f:10:b7:e4:b2:50:5a:c0:
b4:df:a5:48:77:18:29:40:22:25:4d:81:44:3f:30:
8f:57:97:00:a5:59:77:32:a6:22:51:c5:d2:23:d7:
a8:ee:f3:72:54:f4:09:e4:16:a7:ec:9e:4c:b9:fb:
a4:c6:3e:b0:6d:43:28:2a:8c:12:80:03:d4:30:82:
bf:fc:70:f4:a1:97:27:0f:d4:1e:e0:a7:9d:9e:ae:
a0:6d:32:8d:a2:ef:7f:50:d1:fc:bf:9b:ca:80:30:
cc:64:af:5e:97:cb:8d:05:03:ae:77:e3:2c:b3:dc:
f2:21:e4:97:a6:ee:8e:fc:e4:f7:bd:91:19:82:48:
3d:5a:df:54:af:0d:8c:a2:45:53:f3:fa:b8:81:7d:
61:00:9a:0b:52:e1:ad:4d:99:a5:5b:d6:3e:4f:dc:
4c:96:2f:77:96:7a:3c:b6:11:57:23:1e:9c:01:ba:
91:9f:1c:75:12:78:12:40:75:d6:ab:ce:9e:69:ea:
1e:a5:7e:6a:1b:51:6a:f5:f4:7d:d4:90:e6:c4:d0:
6a:af:ad:31:5b:5a:b5:c3:ca:29:be:9c:20:09:0b:
20:4f:09:4c:9f:95:15:ba:73:69:c0:b5:15:71:7d:
1b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:5E:59:C5:1E:51:DB:19:7A:C8:EC:E0:A4:1D:79:63:39:18:75:64
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Y15ZxR5R2xl6yOzgpB15YzkYdWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.220.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:97:8f:fd:10:e4:7b:65:75:66:4d:c2:60:ab:91:b6:62:14:
e5:a5:df:ec:d0:6e:a3:38:b0:a6:94:f1:5a:05:13:b6:f8:20:
30:a2:78:20:4e:b2:fd:a1:c7:ff:a4:1f:9c:dd:b7:a0:ee:58:
f9:d9:fa:c8:a1:ef:45:bd:11:ed:88:b4:79:f6:d1:be:1b:5c:
78:86:04:fa:07:55:6e:8a:9f:f8:18:e7:61:d7:85:ea:60:e2:
ca:3d:69:fa:61:ba:91:c2:22:3b:fd:b3:67:6e:ba:19:d1:48:
c2:47:08:50:4f:98:13:c8:e4:c6:f1:a9:c4:db:8a:22:74:20:
96:9e:d1:27:70:00:ce:7e:d7:c2:41:ed:f0:72:6a:89:80:32:
1d:60:b6:44:59:c0:d8:97:f9:aa:33:0a:87:03:bb:ec:0a:91:
07:65:45:17:11:ea:ca:54:ef:f2:a7:d8:c2:37:8d:eb:1b:ac:
39:d5:e7:9c:c4:4c:c2:b5:fc:c1:22:29:cc:c5:83:0b:77:11:
06:61:9b:e5:d6:09:05:23:fb:d2:ec:54:97:50:b0:71:6b:8d:
76:4b:6a:7a:c9:39:2d:53:21:a7:6a:d1:6b:f1:55:1c:a2:ad:
8f:da:2a:27:c0:e4:bb:a7:a5:6d:2f:c6:aa:3a:ea:af:67:33:
7c:32:24:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 09:26:00 2024 by rpki-client on console-ams.rpki-client.org