Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/h5xIzSsw5dw9jlv1U1bCxJaFYxY.roa
File: h5xIzSsw5dw9jlv1U1bCxJaFYxY.roa (raw, json)
Hash identifier: aWsZx1zqjlO03B8versVGqzlUVYfXa639eAf1vGx7Tc=
Subject key identifier: 87:9C:48:CD:2B:30:E5:DC:3D:8E:5B:F5:53:56:C2:C4:96:85:63:16
Certificate issuer: /CN=0b84ea549f88211058b34bfcab0640c3030393c3
Certificate serial: 0188D384040D61582A3CE2C6DFA305AEC813
Authority key identifier: 0B:84:EA:54:9F:88:21:10:58:B3:4B:FC:AB:06:40:C3:03:03:93:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/h5xIzSsw5dw9jlv1U1bCxJaFYxY.roa
Signing time: Mon 19 Jun 2023 11:57:04 +0000
ROA not before: Mon 19 Jun 2023 11:57:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203408
IP address blocks: 185.237.161.0/24 maxlen: 24
185.237.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d3:84:04:0d:61:58:2a:3c:e2:c6:df:a3:05:ae:c8:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b84ea549f88211058b34bfcab0640c3030393c3
Validity
Not Before: Jun 19 11:57:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=879c48cd2b30e5dc3d8e5bf55356c2c496856316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:24:04:5a:97:d1:36:21:2a:8f:e3:4b:2f:68:
e1:12:06:39:c8:75:48:1f:08:ed:c9:31:b2:6e:aa:
f4:48:b1:9f:68:87:7d:de:db:fd:46:03:e0:02:37:
96:03:bb:92:1e:79:11:14:bc:5f:fd:00:d3:3c:4a:
d0:18:77:a4:f1:a9:da:6c:a5:4f:7e:63:aa:bd:95:
15:23:10:21:3c:b4:15:9f:d9:0f:5c:84:b1:77:e6:
c7:96:50:99:96:71:92:ef:e9:eb:d1:3f:75:cb:14:
7f:34:65:72:10:3d:fc:f2:d2:a2:af:ee:ef:0e:87:
1c:26:5a:e2:f0:7c:43:00:9f:2e:24:e2:c3:82:91:
a2:16:53:2d:a3:7a:84:3c:61:3f:f2:01:96:7a:1c:
9c:57:f5:b1:4f:de:c7:e1:c7:d1:6e:aa:25:94:b7:
5f:4c:c5:d7:d9:71:0a:33:7a:98:d2:24:7d:f6:bd:
b5:40:3d:08:43:53:a2:be:d5:a4:3d:bb:6e:27:b2:
cf:68:d2:d3:99:64:c3:2c:92:31:f1:1e:de:b4:88:
9c:44:ea:01:71:bd:bf:39:08:2c:48:3c:0b:e5:16:
e6:41:13:23:e0:62:4b:0e:e9:ed:24:4e:19:04:05:
3c:88:37:1d:d4:85:42:4c:f0:d6:b4:82:03:28:88:
e6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9C:48:CD:2B:30:E5:DC:3D:8E:5B:F5:53:56:C2:C4:96:85:63:16
X509v3 Authority Key Identifier:
keyid:0B:84:EA:54:9F:88:21:10:58:B3:4B:FC:AB:06:40:C3:03:03:93:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/h5xIzSsw5dw9jlv1U1bCxJaFYxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.160.0/23
Signature Algorithm: sha256WithRSAEncryption
07:e0:c2:7e:fc:4f:ef:14:8b:cc:4e:ba:e9:3d:d0:d3:97:66:
15:a6:ac:a7:d7:5f:8c:e0:22:c3:81:45:e4:5a:90:29:0d:df:
c5:0b:e2:c9:1d:7a:96:ec:83:de:6a:01:5c:93:b4:45:71:f8:
31:06:6d:04:99:47:70:ed:a2:24:2a:b6:e3:22:13:e6:0c:ec:
b6:15:0c:3a:8f:7b:54:7f:a0:be:39:a3:16:ae:f2:00:6a:66:
1a:de:80:01:a1:db:89:57:b4:2f:bc:4e:e7:91:0e:d7:60:6e:
4a:59:4a:35:36:74:69:a5:68:40:94:65:72:60:aa:31:9f:a7:
7b:5a:87:32:8d:75:70:b9:b6:1d:45:4f:f2:8c:43:c2:1d:2f:
26:1f:05:41:92:9c:80:77:0e:a8:76:8a:ec:0f:22:35:3e:dc:
ae:35:4c:a4:0b:64:ec:5d:09:ee:17:83:e3:2e:b9:1b:a9:a3:
7e:32:49:40:2c:6c:e2:c3:4a:d3:ae:3a:4b:a9:19:dd:00:5e:
de:61:4b:ec:b1:39:1a:c0:74:8c:5c:62:73:0d:14:6d:84:f4:
de:6b:d1:8a:fe:70:5e:d1:4a:cb:97:6b:ef:7d:fc:7c:9e:2e:
69:90:03:8d:6d:0f:dd:eb:39:6e:45:34:f3:9f:b5:b0:9a:a5:
f6:ad:54:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org