Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/ebf6cb-a779-464f-8bee-8f08e0272df8/1/xwulwUlon6Bq4vjdI-AOEuLgwPo.roa
File: xwulwUlon6Bq4vjdI-AOEuLgwPo.roa (raw, json)
Hash identifier: Ru0w9eY5YBF7hfqgOFIB/5PQktNjyxmpq+yJPYhbEaU=
Subject key identifier: C7:0B:A5:C1:49:68:9F:A0:6A:E2:F8:DD:23:E0:0E:12:E2:E0:C0:FA
Certificate issuer: /CN=9301ea05963c9756f28ee2e98b8f3cc479dc9f58
Certificate serial: 01856D4AC80513CE2D587F1496BD13AC5239
Authority key identifier: 93:01:EA:05:96:3C:97:56:F2:8E:E2:E9:8B:8F:3C:C4:79:DC:9F:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwHqBZY8l1byjuLpi488xHncn1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/ebf6cb-a779-464f-8bee-8f08e0272df8/1/xwulwUlon6Bq4vjdI-AOEuLgwPo.roa
Signing time: Sun 01 Jan 2023 12:24:55 +0000
ROA not before: Sun 01 Jan 2023 12:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206746
IP address blocks: 185.176.100.0/24 maxlen: 24
185.176.102.0/24 maxlen: 24
185.176.103.0/24 maxlen: 24
185.176.101.0/24 maxlen: 24
2a0a:1181::/32 maxlen: 32
2a0a:1180::/32 maxlen: 32
2a0a:1182::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 25 Jun 2023 19:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:c8:05:13:ce:2d:58:7f:14:96:bd:13:ac:52:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9301ea05963c9756f28ee2e98b8f3cc479dc9f58
Validity
Not Before: Jan 1 12:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c70ba5c149689fa06ae2f8dd23e00e12e2e0c0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e9:a0:2d:74:90:71:46:65:82:5f:da:05:04:
33:b3:f9:8c:c6:69:95:f1:89:9b:32:95:47:5e:1a:
5c:a9:22:ac:95:ea:56:34:ce:47:60:e9:f5:6a:27:
8f:de:52:cf:81:21:30:34:5c:df:70:70:d9:50:aa:
0c:39:74:dc:ef:f0:59:c4:ac:61:24:a6:72:f2:e8:
e2:4f:52:22:96:fe:cc:9a:01:5e:b5:c5:aa:47:97:
97:b7:0a:c4:13:ae:d0:15:70:1d:6f:64:01:7c:4a:
24:20:25:aa:e8:8a:69:ed:04:4b:3a:56:8c:d0:a5:
44:b1:3e:b3:e9:10:05:d5:58:1b:4a:e9:9e:91:6d:
2e:85:26:86:52:f8:d6:b0:79:ba:63:f6:a8:62:38:
21:2d:03:89:1e:30:97:8c:99:d7:b7:64:ff:7f:c8:
48:3d:8d:1c:c5:9d:b1:bc:17:ad:61:74:49:2e:ce:
0c:a1:a7:c7:24:f2:f5:79:35:4d:c3:ab:23:41:56:
ba:fd:d6:69:a0:7a:1d:8d:f8:7e:10:65:c7:2c:ab:
e1:e7:90:ea:60:bc:bb:88:bd:8e:a1:7e:b0:3c:b1:
ac:07:a1:a3:71:80:b3:9d:65:68:e7:0c:c0:ac:2d:
b4:49:d0:d3:ea:d6:af:73:f4:ca:c3:cb:56:04:b4:
c6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0B:A5:C1:49:68:9F:A0:6A:E2:F8:DD:23:E0:0E:12:E2:E0:C0:FA
X509v3 Authority Key Identifier:
keyid:93:01:EA:05:96:3C:97:56:F2:8E:E2:E9:8B:8F:3C:C4:79:DC:9F:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwHqBZY8l1byjuLpi488xHncn1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ebf6cb-a779-464f-8bee-8f08e0272df8/1/xwulwUlon6Bq4vjdI-AOEuLgwPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ebf6cb-a779-464f-8bee-8f08e0272df8/1/kwHqBZY8l1byjuLpi488xHncn1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.100.0/22
IPv6:
2a0a:1180::-2a0a:1182:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
53:cc:fa:fd:97:d7:b5:57:a5:db:09:d3:b4:ea:4a:95:c1:53:
1e:9e:f4:50:8f:92:c7:1d:c3:3e:34:ae:e8:6d:ae:6f:d1:f5:
32:af:bd:c5:7a:72:ab:b5:43:78:63:d0:bf:88:64:25:fb:30:
0f:c7:46:d2:49:a3:4c:54:2c:17:bd:e0:b2:40:5d:a6:1c:3a:
a1:1c:f6:e9:82:ef:4f:47:34:e2:ea:5e:13:d3:e5:ec:35:48:
8a:f3:30:85:24:94:29:88:4a:c3:8c:2a:d7:23:a2:86:c0:eb:
46:26:6c:74:e1:37:60:ad:82:50:38:f1:72:54:85:13:d6:ee:
80:4b:e2:f0:ec:4e:7c:08:6b:9f:1d:95:5c:cf:53:31:47:dc:
24:b4:9e:6f:f2:e1:d5:d1:ed:0f:f4:8a:cf:95:e6:4c:a3:2f:
93:02:74:29:f4:c5:4b:e8:ed:46:39:43:c7:5d:01:99:47:91:
ef:3a:e0:80:36:28:bc:25:d4:dc:94:44:aa:91:12:7f:7d:0c:
f6:d1:e3:b7:db:a4:ff:f2:3f:be:44:7f:df:60:24:eb:5d:45:
ad:53:0c:db:e0:81:c5:1b:60:ce:0d:c4:62:83:af:a7:b4:98:
91:07:5f:10:f2:c4:95:87:22:82:c4:b4:f8:00:d7:c4:36:31:
08:f9:53:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:02 2024 by rpki-client on console-ams.rpki-client.org