Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/w0zHKVLTDrjBm5fg1HiIsXedcN4.roa
File: w0zHKVLTDrjBm5fg1HiIsXedcN4.roa (raw, json)
Hash identifier: g0XxHtNzym0s4Q6P7/KwAOI1mADiTKssknlsKbZ1Ct8=
Subject key identifier: C3:4C:C7:29:52:D3:0E:B8:C1:9B:97:E0:D4:78:88:B1:77:9D:70:DE
Certificate issuer: /CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Certificate serial: 018CCA2B866F2D1AECAF54F3B47FF1BF7EA0
Authority key identifier: B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/w0zHKVLTDrjBm5fg1HiIsXedcN4.roa
Signing time: Tue 02 Jan 2024 12:34:59 +0000
ROA not before: Tue 02 Jan 2024 12:34:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47242
IP address blocks: 185.73.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 May 2024 15:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:86:6f:2d:1a:ec:af:54:f3:b4:7f:f1:bf:7e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Validity
Not Before: Jan 2 12:34:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c34cc72952d30eb8c19b97e0d47888b1779d70de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cd:e2:17:1b:e7:f5:59:1e:6c:a0:a9:53:d2:
7e:a6:47:98:5a:1a:b1:12:7a:fa:ec:3e:dd:59:29:
17:2a:52:26:bf:65:0c:b5:ef:10:d2:f5:56:76:b7:
ab:7b:da:f0:76:2e:ae:ff:1b:b9:cc:91:34:62:3a:
13:c8:68:bd:2a:f1:7f:20:e8:75:03:a0:dc:ef:f8:
bd:0a:32:ed:67:ac:7a:e6:c6:45:ed:64:dd:dd:ff:
69:64:7a:f8:3e:ae:49:19:a7:0b:58:f7:99:c4:87:
61:51:55:4c:a5:2b:e6:2c:fa:13:62:12:0a:b4:0f:
90:8f:e0:7a:fb:bc:0f:49:b1:81:11:6b:1f:de:e5:
19:22:df:85:7c:74:d7:6f:84:83:f6:69:98:4b:1e:
37:09:68:a8:dc:85:75:c4:7c:22:e1:37:f7:d5:02:
00:51:83:45:ac:92:5b:54:08:a0:79:cc:a9:0c:7c:
ae:78:a5:9c:29:21:b4:d6:8b:9a:c0:a6:56:ac:d5:
0f:d3:2d:f6:19:e1:5e:72:33:86:10:e3:46:3b:0c:
5a:e2:ef:7f:41:bf:c6:02:8c:80:4d:0d:95:5a:e2:
d8:d9:3b:57:6f:9f:86:6e:a6:77:69:87:16:6b:da:
75:9f:89:1a:6a:94:41:4c:dc:24:bd:83:e1:6f:f5:
7f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:4C:C7:29:52:D3:0E:B8:C1:9B:97:E0:D4:78:88:B1:77:9D:70:DE
X509v3 Authority Key Identifier:
keyid:B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/w0zHKVLTDrjBm5fg1HiIsXedcN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.138.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5a:eb:40:57:5c:59:a7:0d:82:2b:cd:cf:fb:70:f0:da:25:
fc:86:b5:1c:39:fb:38:b5:2a:fb:a3:9f:bf:0b:1c:40:07:c1:
22:b9:bc:55:1c:1e:32:2c:f6:5b:d4:0c:7f:af:bb:08:c5:99:
69:ff:65:07:4b:7a:30:6c:e3:42:5f:c9:44:39:e1:82:41:f7:
7a:93:14:92:d9:8e:c3:55:c4:2d:ba:91:5c:59:00:f2:d8:9e:
8e:31:a9:cc:ce:27:4f:6e:0f:85:c1:22:14:88:e4:20:33:42:
87:d8:9a:95:c4:5f:15:15:4d:f8:97:67:5a:57:10:2f:96:eb:
ee:0a:d6:13:8c:40:86:bf:af:fa:5c:70:1a:04:08:4e:ee:e2:
2d:92:78:a0:21:7a:8f:0b:61:20:d5:d0:de:96:36:e3:79:de:
f7:6a:c1:1b:1f:98:f5:f8:33:f7:ef:df:6a:bd:17:fe:61:23:
1d:4a:dc:49:ab:c3:f0:55:8e:27:39:0b:3f:e7:7a:ef:14:0f:
f4:66:62:68:da:0c:7a:44:f6:e5:6c:29:75:2a:03:3e:48:2f:
c4:97:d6:fb:e8:7b:ee:fa:c1:67:af:80:14:e6:79:b7:ba:7c:
67:28:68:bb:45:8f:c8:8e:0c:e1:eb:51:58:81:b2:10:c3:0b:
08:1f:76:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:04 2024 by rpki-client on console-fra.rpki-client.org