Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/h6uEiWKXVJNIpkJ52eIC5Ll7uGo.roa
File: h6uEiWKXVJNIpkJ52eIC5Ll7uGo.roa (raw, json)
Hash identifier: Jzv0iZVe5g2VO0SnU4Cb0+zPo3hONP0FAxaj3jd+2iA=
Subject key identifier: 87:AB:84:89:62:97:54:93:48:A6:42:79:D9:E2:02:E4:B9:7B:B8:6A
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 01905F570BBD470189ADA64332D3AE5C4FA6
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/h6uEiWKXVJNIpkJ52eIC5Ll7uGo.roa
Signing time: Fri 28 Jun 2024 14:54:18 +0000
ROA not before: Fri 28 Jun 2024 14:54:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 185.167.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 14:46:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5f:57:0b:bd:47:01:89:ad:a6:43:32:d3:ae:5c:4f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: Jun 28 14:54:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87ab84896297549348a64279d9e202e4b97bb86a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d7:0b:3b:e2:f6:89:87:2c:31:04:b3:39:37:
e5:b6:a7:11:73:09:cc:67:8f:3b:d2:80:b6:f9:2a:
38:46:13:a6:87:57:88:bd:6c:a4:b7:43:4d:6d:2a:
f8:87:eb:c2:6d:1a:40:e1:6c:e5:19:c7:2c:df:db:
94:07:26:ae:31:2e:89:82:8b:df:72:8c:3c:9d:ab:
85:b5:c9:1e:ab:60:86:8b:1c:60:5f:58:04:46:e8:
79:8f:e3:98:3d:5b:bd:68:10:2c:c0:3f:05:24:5c:
53:8c:96:af:39:cd:b8:ad:16:bf:5b:d3:ff:cd:c7:
88:4e:12:95:a2:77:4a:9f:07:0d:61:09:87:27:02:
95:26:9b:36:e3:3e:ff:61:75:35:01:57:8a:8b:c1:
47:59:23:c0:a3:c5:8b:9f:53:af:e9:64:73:78:92:
40:3f:8c:85:0b:53:df:cf:b5:e7:56:28:63:16:34:
01:c4:58:16:77:e7:25:76:b6:73:f8:b2:e4:00:f4:
73:31:d0:53:50:1e:b7:c1:44:ca:64:f1:e4:2a:6f:
ab:8f:8a:30:1b:8d:ce:68:29:86:9b:b6:57:59:fa:
c0:49:76:89:9e:d3:f0:d0:df:82:23:90:e6:59:41:
4f:11:73:3c:b5:31:59:ad:94:f5:6c:03:1e:60:f6:
c8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AB:84:89:62:97:54:93:48:A6:42:79:D9:E2:02:E4:B9:7B:B8:6A
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/h6uEiWKXVJNIpkJ52eIC5Ll7uGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.232.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:97:03:3c:9c:d3:93:b3:5c:d6:a6:8d:f9:9d:fb:07:8a:74:
6c:6f:ce:1b:6c:e4:c8:50:c9:07:b4:d8:20:4d:46:a1:92:62:
88:61:1c:9e:73:78:e7:ac:bc:7a:fa:ba:67:7e:69:2a:af:c9:
e4:40:b9:be:eb:b6:45:67:c7:c9:a4:c4:f4:f5:db:f6:08:b4:
18:7e:67:07:ca:9d:e4:44:96:aa:fd:1a:0c:d2:f8:52:6f:77:
e1:6d:5f:05:c3:c7:01:e9:5c:58:62:eb:e0:f9:34:27:85:35:
1b:a4:8a:18:41:63:2d:43:de:a9:9e:b6:9c:01:7a:29:86:36:
bf:3f:06:7f:79:b4:5a:9e:7d:cb:c9:d3:3b:02:6a:14:66:b1:
1a:fd:82:67:38:ae:26:ad:01:23:a5:62:d9:75:0b:2a:df:93:
08:e7:99:cf:f7:61:1a:51:91:d4:24:4f:c6:b2:78:8c:93:35:
78:d7:a2:25:f5:df:2b:62:91:18:4e:4f:4b:4d:ed:35:c2:e3:
d5:4b:86:7e:06:69:60:a6:18:b7:18:0b:d4:98:b3:95:f6:b9:
2b:f0:a6:ea:dd:09:21:76:71:eb:29:11:8d:1e:c4:07:81:23:
93:2a:4b:1a:de:ea:88:f8:e3:0a:9c:7d:9c:f6:c3:81:a0:92:
cf:de:e7:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 18:05:18 2024 by rpki-client on console-ams.rpki-client.org