Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bcccb8-6c74-4d0a-895f-01d19a74be23/1/wV2RmlhtriLZ16OllHJIZ_2FNX4.roa
File: wV2RmlhtriLZ16OllHJIZ_2FNX4.roa (raw, json)
Hash identifier: qT18qx2sxaXKYvWslsD4RJ5xPIUOxkf2dXF1v0zqmDI=
Subject key identifier: C1:5D:91:9A:58:6D:AE:22:D9:D7:A3:A5:94:72:48:67:FD:85:35:7E
Certificate issuer: /CN=bfa5f0e76547575957bc92c6dddd084d3ea7f863
Certificate serial: 01856B93572D173FC43083236673C199648B
Authority key identifier: BF:A5:F0:E7:65:47:57:59:57:BC:92:C6:DD:DD:08:4D:3E:A7:F8:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v6Xw52VHV1lXvJLG3d0ITT6n-GM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bcccb8-6c74-4d0a-895f-01d19a74be23/1/wV2RmlhtriLZ16OllHJIZ_2FNX4.roa
Signing time: Sun 01 Jan 2023 04:24:56 +0000
ROA not before: Sun 01 Jan 2023 04:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60064
IP address blocks: 185.63.253.0/24 maxlen: 24
185.63.252.0/24 maxlen: 24
185.63.255.0/24 maxlen: 24
185.63.254.0/24 maxlen: 24
91.239.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:57:2d:17:3f:c4:30:83:23:66:73:c1:99:64:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfa5f0e76547575957bc92c6dddd084d3ea7f863
Validity
Not Before: Jan 1 04:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c15d919a586dae22d9d7a3a594724867fd85357e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:10:50:49:2d:95:34:bf:65:74:35:ab:e0:56:
00:dd:39:45:f4:05:a8:04:b9:5c:eb:7e:8a:85:c6:
21:3f:0e:a5:1d:08:68:c7:bb:ad:eb:c6:59:11:ce:
1b:7d:d0:fd:e7:ce:93:c2:ce:db:c2:59:eb:a5:e3:
3e:54:89:58:36:31:3c:09:34:c7:47:e3:d6:e3:29:
7a:56:7a:7c:ec:a1:ad:38:ec:0c:59:41:05:95:da:
fc:b5:ca:13:37:94:32:9f:ec:f4:9e:05:65:0b:31:
64:22:25:a4:0f:5d:db:c4:bf:7f:50:9c:e5:e5:75:
3a:26:18:e9:6d:0e:3d:96:4b:cf:f2:fa:b8:79:ba:
3e:40:6d:b9:1e:60:58:b9:f6:69:8d:7b:46:e0:2d:
85:4e:61:c8:1e:99:0f:22:15:0b:32:d2:3d:07:96:
01:52:ed:68:05:29:da:d5:71:c8:6d:47:57:8f:75:
d0:26:5e:f1:50:93:a4:1a:d4:ee:1a:6b:bc:47:73:
96:45:33:1e:9e:1d:49:bc:a1:2d:f0:f8:52:88:89:
6f:09:ec:ab:01:05:31:c0:91:4f:51:97:53:3f:b0:
e5:08:6e:dc:ab:e4:c9:4a:c7:60:75:b3:12:30:c5:
13:79:ca:b3:1a:9e:69:cf:a6:8c:e9:d6:15:d4:1b:
50:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5D:91:9A:58:6D:AE:22:D9:D7:A3:A5:94:72:48:67:FD:85:35:7E
X509v3 Authority Key Identifier:
keyid:BF:A5:F0:E7:65:47:57:59:57:BC:92:C6:DD:DD:08:4D:3E:A7:F8:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v6Xw52VHV1lXvJLG3d0ITT6n-GM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bcccb8-6c74-4d0a-895f-01d19a74be23/1/wV2RmlhtriLZ16OllHJIZ_2FNX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bcccb8-6c74-4d0a-895f-01d19a74be23/1/v6Xw52VHV1lXvJLG3d0ITT6n-GM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.55.0/24
185.63.252.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:cd:82:57:80:36:0f:43:98:89:d1:ed:5a:f1:f0:96:e9:12:
7f:d5:66:bf:73:03:f2:1c:1d:4b:85:ca:7c:b4:ab:51:d6:e3:
68:e3:70:01:00:26:39:34:82:72:5f:13:48:13:b7:67:84:c8:
f3:e5:e9:46:8f:04:4d:af:51:db:a7:f1:53:55:a3:b6:cf:18:
05:89:c4:b9:fa:47:3c:dd:6f:d5:32:2c:a9:ee:f3:82:d9:40:
0c:98:56:a0:21:f5:cc:d9:79:1d:b4:1e:70:87:f8:1d:ed:85:
e6:4a:05:a6:4c:74:f8:8e:45:48:76:f8:6f:aa:d1:a5:13:9b:
33:bc:fe:14:fd:b8:fc:84:11:16:f9:98:68:7c:15:1d:55:c8:
92:b5:dd:d3:00:54:90:4f:0f:06:0a:61:a9:d4:2b:4a:40:91:
4b:c8:76:6d:f0:c4:53:b5:cf:f2:3c:0d:bb:b0:84:4d:e2:a2:
67:3c:c2:cf:2b:79:a7:0d:08:90:12:2e:25:19:ea:80:6d:34:
c1:a8:a7:3f:49:9f:3d:c3:50:73:73:13:4f:b0:23:c0:b0:73:
dd:d3:d0:d3:64:bc:90:1c:60:29:93:05:a3:0c:75:e7:db:f2:
b6:6c:8d:90:e6:a6:54:45:9b:44:d4:7f:70:4b:29:a6:31:53:
0a:aa:b6:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:55 2024 by rpki-client on console-ams.rpki-client.org