Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/RiWBL8PNW1t8IFURhoGz84rh7Ns.roa
File: RiWBL8PNW1t8IFURhoGz84rh7Ns.roa (raw, json)
Hash identifier: uVqWUEHNBKO5FnEpY9P/Mrm+7a6Na8dvhqhQr47XLuM=
Subject key identifier: 46:25:81:2F:C3:CD:5B:5B:7C:20:55:11:86:81:B3:F3:8A:E1:EC:DB
Certificate issuer: /CN=1f9510606ad94c4f7c7a63e5c1ec26c40fb4aa88
Certificate serial: 01903A4405A7D554564ADAF7897965D239BC
Authority key identifier: 1F:95:10:60:6A:D9:4C:4F:7C:7A:63:E5:C1:EC:26:C4:0F:B4:AA:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5UQYGrZTE98emPlwewmxA-0qog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/RiWBL8PNW1t8IFURhoGz84rh7Ns.roa
Signing time: Fri 21 Jun 2024 10:07:34 +0000
ROA not before: Fri 21 Jun 2024 10:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200845
IP address blocks: 185.28.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 28 Jun 2024 15:27:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3a:44:05:a7:d5:54:56:4a:da:f7:89:79:65:d2:39:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9510606ad94c4f7c7a63e5c1ec26c40fb4aa88
Validity
Not Before: Jun 21 10:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4625812fc3cd5b5b7c2055118681b3f38ae1ecdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a5:41:17:0f:bb:d6:6d:64:18:1e:eb:a5:76:
64:71:ee:03:9f:6d:39:e2:63:af:71:1e:c1:ca:38:
37:ab:43:b7:fd:06:8a:c3:34:18:d7:55:f3:3f:12:
36:22:30:34:fe:fc:fe:07:26:d3:dd:1d:60:ba:df:
33:24:2f:18:f3:08:a2:7b:81:80:d0:e6:04:76:54:
03:b9:50:d1:d2:82:44:22:e4:f3:d9:a1:dd:65:54:
76:dd:5e:03:ac:26:96:ed:f3:e3:3b:d4:f9:75:4e:
c0:1b:33:af:5e:2d:be:39:b9:12:6e:5c:d3:51:af:
e4:a8:81:07:47:0a:7b:48:82:55:79:0c:da:3c:6b:
34:32:b8:78:40:10:12:ec:c9:11:ad:9c:7a:5a:18:
36:5e:6c:69:66:4d:e7:e0:5e:18:ae:a6:2f:07:48:
13:aa:8e:4e:fe:28:e4:c5:3f:a7:37:85:1c:94:ad:
13:4b:e4:2e:84:2b:6d:dc:7c:4b:16:d8:02:e8:54:
ec:8a:96:51:27:3b:13:eb:00:7b:8f:0d:80:ca:c4:
7d:3b:10:9b:ca:17:31:80:51:1c:b5:01:e6:8b:54:
e7:c1:47:29:fa:7e:59:a6:7f:b3:ae:ed:fa:86:01:
8a:41:a7:43:c6:6d:08:5a:14:21:6a:af:e6:c5:84:
ec:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:25:81:2F:C3:CD:5B:5B:7C:20:55:11:86:81:B3:F3:8A:E1:EC:DB
X509v3 Authority Key Identifier:
keyid:1F:95:10:60:6A:D9:4C:4F:7C:7A:63:E5:C1:EC:26:C4:0F:B4:AA:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5UQYGrZTE98emPlwewmxA-0qog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/RiWBL8PNW1t8IFURhoGz84rh7Ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/30bfb7-3c7d-47d7-ac68-9462d4e1cc72/1/H5UQYGrZTE98emPlwewmxA-0qog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.168.0/22
Signature Algorithm: sha256WithRSAEncryption
25:1c:ad:b7:76:f1:0f:f6:49:7d:89:0f:3d:80:59:1d:c4:45:
75:4d:72:30:55:a3:44:1d:ce:d5:b7:d2:fc:a4:82:26:f3:dc:
e9:39:12:2a:78:b8:52:c7:ab:d3:35:f3:5f:ea:c4:11:f7:0d:
f9:f7:55:24:14:17:f8:21:b7:36:1d:3c:91:72:8d:ff:45:e3:
49:e5:18:a1:85:e3:91:d5:f6:5b:61:54:31:25:df:8e:07:f8:
3a:89:e4:d7:17:f3:a8:7d:42:41:be:72:fa:6c:18:f1:94:41:
90:22:5b:c5:9f:90:bd:55:23:29:92:a2:03:80:ce:81:d5:83:
64:3d:6d:ce:f5:40:c4:79:d2:58:36:fe:1d:6d:69:2a:fc:2a:
f4:8e:a8:16:cd:dd:64:03:06:9e:07:84:12:d9:a9:66:55:d8:
ad:b9:40:f1:c7:b7:f1:c3:c1:5c:8c:81:83:dc:7d:69:7f:d7:
fe:b9:a9:9e:06:d9:02:d5:4a:ad:fd:62:ca:ca:5a:35:86:41:
78:97:0f:d4:16:87:6b:8a:a7:1e:c7:8c:c7:45:af:28:b9:12:
77:44:fc:c4:eb:f3:9c:de:63:4b:29:0d:54:a3:74:7d:7a:00:
80:f7:a2:63:98:10:c4:8c:6c:67:fc:90:22:74:37:da:2f:a7:
90:ee:e9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 21:42:13 2024 by rpki-client on console-fra.rpki-client.org