Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/xjIzaPFA3z2YYZvjLHjhJdKVvOw.roa
File: xjIzaPFA3z2YYZvjLHjhJdKVvOw.roa (raw, json)
Hash identifier: 1tEU8qxkbmhM+tLn0RQFilUCB1o6ZJLrHll7UzOx8xg=
Subject key identifier: C6:32:33:68:F1:40:DF:3D:98:61:9B:E3:2C:78:E1:25:D2:95:BC:EC
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0192BF3509C7F695AE8938A8184DE866D7F7
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/xjIzaPFA3z2YYZvjLHjhJdKVvOw.roa
Signing time: Thu 24 Oct 2024 15:46:17 +0000
ROA not before: Thu 24 Oct 2024 15:46:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42375
IP address blocks: 185.210.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 16:08:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bf:35:09:c7:f6:95:ae:89:38:a8:18:4d:e8:66:d7:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Oct 24 15:46:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6323368f140df3d98619be32c78e125d295bcec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3c:42:97:d0:e7:83:b9:7a:4a:b8:8b:a7:63:
09:17:e2:a5:f8:06:b9:5a:21:f8:59:72:ac:12:15:
99:dc:96:4b:46:14:6c:a4:51:86:94:2b:65:1f:a8:
4a:84:44:b6:c9:26:94:ab:41:b6:44:04:19:56:35:
bb:5c:56:44:73:89:a9:62:f0:06:61:b1:2d:5c:e7:
e7:ab:3b:57:69:72:81:ef:11:17:48:f3:ed:d7:1a:
db:6f:e6:70:bc:08:98:11:85:02:f8:34:15:e0:8a:
16:1e:cc:cc:44:b1:f1:57:32:ac:eb:2c:cf:ce:3e:
49:75:db:93:69:2b:27:67:ee:84:13:ff:a8:20:64:
da:c5:73:18:68:e5:be:ec:36:39:35:84:c9:4d:ab:
fc:c8:39:be:6c:1e:7b:a3:7e:65:0e:f3:5e:02:a9:
e0:fa:a4:42:50:68:8b:2e:40:3d:1a:17:14:15:62:
2a:2e:27:38:3e:25:fe:ba:ec:8f:58:c7:26:f7:1f:
5b:4f:94:a9:8d:0a:aa:ac:8f:29:43:f9:58:45:7f:
91:b9:f0:fc:42:a8:35:de:23:9d:8c:d2:4c:55:e4:
2c:f3:be:70:68:3a:7f:22:61:9b:73:63:d1:a0:31:
99:2b:92:2c:53:a4:22:0d:b3:49:84:f0:c8:00:e7:
d6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:32:33:68:F1:40:DF:3D:98:61:9B:E3:2C:78:E1:25:D2:95:BC:EC
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/xjIzaPFA3z2YYZvjLHjhJdKVvOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.138.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:f5:01:c4:f4:d3:01:29:e7:07:df:7d:77:d6:64:37:0e:dd:
80:34:32:b8:7e:07:55:18:59:65:a2:34:cb:f4:46:9d:0f:ec:
42:a7:80:de:a6:c3:dd:f4:f4:a7:98:14:dc:99:80:34:d5:71:
69:07:23:0f:41:dd:a0:58:88:75:39:64:c7:28:cf:66:8d:8b:
02:1b:36:a3:b9:14:82:31:3c:d0:16:d3:49:26:33:03:2f:f9:
5f:6a:ac:f5:eb:25:ba:b5:cb:8b:2e:5d:da:ea:e5:b6:94:a5:
7a:75:fe:d5:ce:58:8d:b8:6c:a8:1f:29:cc:4a:fe:ab:a2:b9:
34:21:be:0b:7a:89:25:1b:d8:28:52:34:08:c2:e0:fd:4e:78:
90:80:b6:2d:b9:8e:3b:82:7d:12:e1:ea:4c:79:3a:0f:ef:80:
36:8c:c5:04:a3:5d:58:5f:52:2c:72:d7:19:6d:72:78:dc:41:
c4:29:10:78:0f:1a:10:d9:57:d1:50:95:3f:19:7e:bf:8b:9f:
ce:92:6f:6b:57:ed:9f:af:96:0b:1f:dd:cb:ae:0a:a6:ca:09:
2c:60:34:2b:47:27:c5:79:ec:12:76:79:3e:c2:bd:54:94:5f:
be:65:7b:29:7a:3b:47:0b:f5:1e:a6:59:6f:09:65:d6:52:67:
7f:0f:16:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:06 2025 by rpki-client