Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/XwzwUsLYjJ0U46wZlZs3IMlU7IY.roa
File: XwzwUsLYjJ0U46wZlZs3IMlU7IY.roa (raw, json)
Hash identifier: ncYrB4UKmJyMbc30hq2KcM1yxeoUR9jRS1LXRBwwelQ=
Subject key identifier: 5F:0C:F0:52:C2:D8:8C:9D:14:E3:AC:19:95:9B:37:20:C9:54:EC:86
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 01856C0A2DF1244FD1E5347C695505905586
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/XwzwUsLYjJ0U46wZlZs3IMlU7IY.roa
Signing time: Sun 01 Jan 2023 06:34:44 +0000
ROA not before: Sun 01 Jan 2023 06:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209181
IP address blocks: 185.167.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:2d:f1:24:4f:d1:e5:34:7c:69:55:05:90:55:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: Jan 1 06:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f0cf052c2d88c9d14e3ac19959b3720c954ec86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:25:16:49:f0:75:82:66:4b:ba:94:6e:a2:8d:
f3:73:a7:4a:fb:4c:35:90:61:88:b2:71:40:1b:fc:
1c:76:65:bc:84:f6:6a:7c:15:6d:07:c9:cd:1d:1f:
47:0f:65:d9:84:73:7e:2b:94:40:01:cb:8e:e0:45:
85:4d:76:8a:15:89:93:21:e0:a3:05:2a:64:65:93:
5a:03:d5:a9:7e:14:68:49:9e:50:81:f3:41:ba:a1:
d8:a0:dc:bc:7a:c9:21:7a:90:8b:a0:c3:93:39:e7:
9c:e3:ef:5c:57:31:f1:a7:7d:be:b3:62:8b:dc:47:
f8:af:08:3f:af:e5:11:7e:2b:92:1f:34:e8:31:61:
ef:05:47:26:60:ef:0c:66:6d:1b:de:2d:43:51:9d:
a8:ae:80:60:71:92:6c:5b:11:bf:39:75:29:83:5e:
26:b6:ec:e9:26:69:e7:fe:b7:96:01:26:fa:83:42:
96:40:39:1f:e0:4b:4f:74:94:c6:47:7c:c2:5c:f3:
25:69:9b:42:8c:1a:99:c1:04:40:2e:ab:44:a2:71:
c8:03:23:90:5e:f2:df:fd:b2:02:ba:c8:9c:54:1b:
87:89:f1:a4:30:98:a9:e5:28:5c:d8:ec:0b:0d:74:
9e:fe:03:91:88:6e:b3:4e:26:29:4e:a6:38:4c:31:
f8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:0C:F0:52:C2:D8:8C:9D:14:E3:AC:19:95:9B:37:20:C9:54:EC:86
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/XwzwUsLYjJ0U46wZlZs3IMlU7IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.235.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:f4:6b:cb:75:c0:28:91:25:e6:2b:1c:ea:92:b7:05:6c:2f:
fb:00:47:02:f1:cf:0a:5c:37:7f:ce:d2:e6:26:77:00:a3:15:
d2:16:0d:29:4b:72:98:98:e9:89:8e:77:44:68:e4:aa:4c:93:
d8:0e:0d:47:0c:ae:6c:09:ac:11:f2:4c:ea:ed:6e:2a:0d:fb:
ff:92:d1:90:a1:8f:23:ac:eb:a6:16:1c:9b:a6:6c:cb:3f:f5:
3e:e0:48:dd:35:a6:3c:ee:df:52:bf:3e:5a:98:5a:7a:db:04:
c9:ba:0a:60:38:a2:10:1c:c6:7e:57:2d:37:1e:8d:7c:9f:9b:
0d:6c:71:dd:9f:df:91:e9:bb:d1:2b:c4:48:0e:cd:98:a5:de:
01:e5:e4:3c:2c:bf:fb:ee:97:17:92:24:a4:bd:64:d7:5a:c0:
4f:0f:f0:4b:88:dc:e3:34:4e:9b:41:ed:4a:09:18:3d:b5:4f:
69:78:01:23:6f:d0:f4:0e:21:b1:ad:ea:5b:43:c4:79:9f:af:
68:a5:84:87:77:00:b6:56:76:e4:8d:85:3f:35:1a:cb:6f:73:
47:1b:08:17:47:df:33:e2:55:69:7b:1c:9e:ab:33:ce:7c:6c:
3e:67:58:7c:ee:48:34:9f:95:89:12:ac:71:9c:aa:52:73:6a:
33:ab:cd:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:30 2024 by rpki-client on console-fra.rpki-client.org