Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/BwEc5UlpVWQ2GoKTJahsTzPXw18.roa
File: BwEc5UlpVWQ2GoKTJahsTzPXw18.roa (raw, json)
Hash identifier: Za/0oLcS/lPPRxhqAOXdoyvZTqX0menDmMVto7g5HXQ=
Subject key identifier: 07:01:1C:E5:49:69:55:64:36:1A:82:93:25:A8:6C:4F:33:D7:C3:5F
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 01874FCF8B64A4BDDF690D7A2DFAC86D8065
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/BwEc5UlpVWQ2GoKTJahsTzPXw18.roa
Signing time: Wed 05 Apr 2023 05:06:54 +0000
ROA not before: Wed 05 Apr 2023 05:06:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34820
IP address blocks: 185.225.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 19:16:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4f:cf:8b:64:a4:bd:df:69:0d:7a:2d:fa:c8:6d:80:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Apr 5 05:06:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07011ce549695564361a829325a86c4f33d7c35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a2:2d:fb:76:60:be:07:b2:4d:10:13:a2:d6:
6e:3e:83:30:fe:c0:a4:e0:10:04:73:0b:ac:6e:eb:
63:6a:37:35:ce:57:3b:2b:1d:50:13:5d:1c:14:ef:
5f:94:a9:fc:86:0c:91:14:cd:a9:2a:75:e4:84:98:
16:10:17:8d:94:dc:ea:b2:90:9f:6a:e8:f3:b7:51:
ba:5d:c8:f0:dd:b4:62:7e:74:75:ce:4b:01:07:77:
8f:13:18:21:8d:bf:96:c1:85:66:2c:b3:34:7b:b0:
8b:3d:76:b1:06:fe:25:82:b2:cc:52:6f:12:29:fa:
1c:52:bb:ba:97:f7:f9:35:31:ae:2a:88:c9:ad:24:
30:4b:ec:eb:56:89:2e:66:4a:22:d6:c9:2e:aa:7f:
c4:00:02:db:7d:2a:ef:bd:84:30:e5:a1:4d:b0:bb:
f5:10:d1:f7:b1:91:bf:c4:1f:2e:a9:66:95:f4:92:
dd:b7:03:ec:0b:8d:0b:ee:c1:51:cc:7c:d3:44:5c:
ff:fe:0b:85:05:1e:c6:0b:63:cb:3a:ed:29:fc:0c:
0b:f8:de:92:6c:6a:a8:bc:e4:e9:46:c8:ce:2f:d1:
58:db:e3:eb:9f:fa:4e:5d:87:e2:41:27:51:d2:e6:
f8:e5:ca:2a:8e:78:b3:24:7b:0c:76:a6:e3:ff:bb:
eb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:01:1C:E5:49:69:55:64:36:1A:82:93:25:A8:6C:4F:33:D7:C3:5F
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/BwEc5UlpVWQ2GoKTJahsTzPXw18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.204.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ea:5b:47:1b:05:40:b7:d6:6a:3a:3a:09:e1:87:85:88:4e:
f6:d1:e3:e2:8e:18:1d:17:ab:1c:27:5a:34:5e:e4:2e:7e:d7:
0a:5e:34:27:07:17:d1:27:9b:b0:ef:58:f7:e3:93:65:b2:f2:
dd:ac:80:2a:87:06:6d:e0:0c:5d:86:e7:46:24:69:12:a7:7f:
08:88:90:ab:57:75:f0:4e:f7:15:95:8a:67:aa:cd:72:d2:22:
66:6e:f9:26:8c:21:dc:b3:2b:88:85:4b:b9:fb:ca:81:5b:b1:
b1:b5:73:7b:4c:9d:2c:7f:7f:0b:aa:c3:e4:f9:bb:d7:20:25:
3a:dc:c6:3a:fd:a3:23:61:00:5c:e2:1c:ea:73:43:fe:b6:b2:
5a:f1:17:c6:c2:34:0d:91:28:d4:d7:1c:89:50:d5:c6:f2:f6:
18:4c:60:50:75:81:e7:c0:5a:d0:88:45:0c:11:6b:84:37:b7:
72:7d:3f:17:47:55:16:bc:df:52:2d:91:4a:c5:27:60:af:df:
99:1e:67:48:c2:9a:10:e8:19:3d:59:54:3b:3c:fb:55:95:38:
4c:a4:8d:00:f2:a5:45:a8:d8:fc:e4:d0:a5:c0:79:a7:59:2b:
c9:d9:09:bf:1d:58:d4:90:f7:ab:03:c0:16:62:18:fb:9b:c1:
de:bf:61:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org