Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0e6962-96b7-4fb8-a839-9ec7add0eb68/1/w6LILajuDpoWGmDD90aase8CIBM.roa
File: w6LILajuDpoWGmDD90aase8CIBM.roa (raw, json)
Hash identifier: ANe/hlYV/Ag8T8FWHJCred+scXJXD19FVI3ZfqS2uz8=
Subject key identifier: C3:A2:C8:2D:A8:EE:0E:9A:16:1A:60:C3:F7:46:9A:B1:EF:02:20:13
Certificate issuer: /CN=4a7f4f8ac8ca7343ed1b4ff12ce276318b69d10e
Certificate serial: 018CC424752FFE44EF5535030A009C67D7AA
Authority key identifier: 4A:7F:4F:8A:C8:CA:73:43:ED:1B:4F:F1:2C:E2:76:31:8B:69:D1:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sn9PisjKc0PtG0_xLOJ2MYtp0Q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e6962-96b7-4fb8-a839-9ec7add0eb68/1/w6LILajuDpoWGmDD90aase8CIBM.roa
Signing time: Mon 01 Jan 2024 08:29:32 +0000
ROA not before: Mon 01 Jan 2024 08:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211623
IP address blocks: 185.253.58.0/24 maxlen: 24
2a10:b9c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 26 Apr 2024 19:44:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:75:2f:fe:44:ef:55:35:03:0a:00:9c:67:d7:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7f4f8ac8ca7343ed1b4ff12ce276318b69d10e
Validity
Not Before: Jan 1 08:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3a2c82da8ee0e9a161a60c3f7469ab1ef022013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8a:92:85:c2:c3:5a:43:ae:2f:5b:8f:aa:98:
22:e2:c7:9d:bd:8f:e7:52:db:48:26:c8:2e:8f:c5:
1c:0c:6b:dc:52:17:7b:d8:5a:14:34:8f:d8:42:a1:
30:63:74:83:6d:21:e8:51:3b:87:eb:a6:45:56:0c:
cd:34:6e:47:00:23:ba:3c:31:91:e4:b8:b7:fc:cb:
07:3c:dd:97:ee:73:d7:30:90:a7:2c:d9:f1:42:09:
cd:76:4a:23:bf:cb:c6:93:90:e1:da:fd:3e:6b:be:
ad:72:05:01:90:e2:67:02:73:2c:2d:6e:fb:09:0b:
5a:87:9a:29:f2:81:52:28:97:94:9b:ae:90:00:a3:
72:3a:f8:44:9d:24:74:86:10:04:77:3d:41:c2:cc:
fa:c2:6f:68:64:e2:57:eb:cb:00:22:3b:4c:25:ae:
83:74:b5:9b:7f:35:a4:cd:71:3f:14:58:91:91:dc:
ac:68:c4:cc:cc:a1:ed:c5:95:42:db:95:f0:44:1c:
b0:45:0b:9c:b3:a1:0b:c3:ed:ba:6a:6f:72:8e:5a:
70:82:72:1b:9d:86:f3:05:b2:47:ed:9c:9f:5a:c7:
bb:b2:f1:89:32:b9:4f:5c:d1:4f:26:9e:35:41:7e:
37:db:cc:a0:6d:b2:c1:8e:7d:50:13:fe:db:7a:70:
9a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A2:C8:2D:A8:EE:0E:9A:16:1A:60:C3:F7:46:9A:B1:EF:02:20:13
X509v3 Authority Key Identifier:
keyid:4A:7F:4F:8A:C8:CA:73:43:ED:1B:4F:F1:2C:E2:76:31:8B:69:D1:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sn9PisjKc0PtG0_xLOJ2MYtp0Q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e6962-96b7-4fb8-a839-9ec7add0eb68/1/w6LILajuDpoWGmDD90aase8CIBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e6962-96b7-4fb8-a839-9ec7add0eb68/1/Sn9PisjKc0PtG0_xLOJ2MYtp0Q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.58.0/24
IPv6:
2a10:b9c0::/29
Signature Algorithm: sha256WithRSAEncryption
31:93:80:d1:ee:5c:06:d5:d6:c3:f2:37:b1:b9:58:9e:9e:91:
49:56:33:c4:32:e3:cc:7c:ac:c4:02:ae:40:50:66:8b:b4:00:
66:1f:95:28:d6:e7:ee:c2:df:e8:39:a0:1d:ef:f6:87:48:67:
33:35:5b:17:76:d0:6d:80:c0:7a:4d:a9:9f:23:8c:da:9c:14:
f1:69:0d:64:d6:42:f4:da:45:76:17:da:5f:ee:f8:6a:71:79:
dd:cc:65:18:78:c9:55:a8:f5:20:18:36:43:1d:a5:b0:8b:f8:
15:20:61:00:1a:d2:5f:2a:3a:e8:7f:81:2a:99:20:3e:82:ab:
e0:34:61:a3:36:4b:69:07:ed:62:dc:4a:62:a4:8f:9e:3f:20:
40:56:8c:f4:4f:3e:66:6c:f4:bc:79:21:2b:fd:7b:26:06:06:
b0:fa:56:f4:8f:14:63:c7:39:89:bc:ac:2d:b3:20:c9:fd:8d:
f4:36:15:4e:39:a5:22:db:53:0b:ed:83:1e:23:d1:f6:23:c6:
54:e8:96:a4:0e:37:08:de:8b:26:ba:15:30:1a:91:e8:c3:e3:
dd:bf:81:6b:95:be:18:09:e0:65:db:7a:62:05:80:df:92:f1:
4e:1e:2c:f9:ab:64:5e:44:f0:b6:6e:5b:26:6d:e8:32:d7:ec:
d1:98:69:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:02 2025 by rpki-client