Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/WlYYHfm5Z0QWJtpETiU8mDXrgOU.roa
File: WlYYHfm5Z0QWJtpETiU8mDXrgOU.roa (raw, json)
Hash identifier: +V7r4kZceLn0qL11SpI5CPTVkGQrp69G6uzNPOrI8s4=
Subject key identifier: 5A:56:18:1D:F9:B9:67:44:16:26:DA:44:4E:25:3C:98:35:EB:80:E5
Certificate issuer: /CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Certificate serial: 018714FF95BC9B067529505EC94179317F50
Authority key identifier: 68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/WlYYHfm5Z0QWJtpETiU8mDXrgOU.roa
Signing time: Fri 24 Mar 2023 19:01:46 +0000
ROA not before: Fri 24 Mar 2023 19:01:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208972
IP address blocks: 185.252.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:ff:95:bc:9b:06:75:29:50:5e:c9:41:79:31:7f:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b22eea4a4a3b81654a227eda94e0e75937b015
Validity
Not Before: Mar 24 19:01:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a56181df9b967441626da444e253c9835eb80e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0f:4f:3e:77:75:4a:b1:5a:df:7f:16:40:b1:
3c:55:9c:bd:a0:07:85:6a:22:1c:6a:e3:23:3d:92:
30:81:c6:9c:25:37:5c:f9:95:27:f1:0b:e8:1a:f6:
d9:7f:45:e8:90:38:e6:d3:53:13:2b:35:48:e3:54:
8a:ba:54:6b:3d:f2:45:ee:16:ca:8d:ff:c1:b3:63:
2b:c3:53:ea:a3:44:e6:23:2d:75:9b:99:89:48:e7:
96:c6:49:d7:9c:a2:08:36:70:70:19:4b:99:ca:a3:
31:25:5b:16:4f:b3:35:4b:08:e4:5f:5a:89:8c:5f:
fd:a8:80:01:29:c2:c6:e4:86:10:d1:38:6b:f7:da:
cd:78:2f:30:ab:8b:5f:aa:86:89:cf:15:31:25:3f:
8f:17:4e:73:49:3f:02:61:fa:1f:24:f7:38:5b:44:
87:c7:10:44:fd:46:62:98:75:f8:d3:9c:c3:c0:ce:
7a:06:32:4b:72:48:72:fc:71:e7:df:dd:dd:c6:64:
84:ac:7c:f7:ff:fa:25:4d:cc:d0:8f:0c:71:03:00:
22:6b:f5:ca:33:3d:e5:11:9a:2b:8f:83:b4:7b:9c:
e5:60:b9:88:a8:73:ea:ba:e7:e7:31:6e:c7:62:43:
87:01:50:83:1c:5e:de:1c:be:f9:8e:b2:36:f5:2d:
c5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:56:18:1D:F9:B9:67:44:16:26:DA:44:4E:25:3C:98:35:EB:80:E5
X509v3 Authority Key Identifier:
keyid:68:B2:2E:EA:4A:4A:3B:81:65:4A:22:7E:DA:94:E0:E7:59:37:B0:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLIu6kpKO4FlSiJ-2pTg51k3sBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/WlYYHfm5Z0QWJtpETiU8mDXrgOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/69cbc0-b6c5-4e67-a73b-2b65a7a8be8c/1/aLIu6kpKO4FlSiJ-2pTg51k3sBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.114.0/24
Signature Algorithm: sha256WithRSAEncryption
76:02:95:b3:92:cb:33:31:d7:76:b6:87:ef:38:03:69:f5:8e:
ac:9d:d5:bd:74:95:87:c6:86:3d:19:d7:2b:93:93:da:91:c4:
dc:9f:e5:e9:ba:4f:05:ed:fb:34:05:b5:04:05:1b:02:df:66:
0c:41:7d:50:4c:b3:6d:06:7c:74:83:a1:0e:d9:87:31:32:08:
d1:40:a4:bf:26:15:a5:2c:ad:9e:09:56:f2:b1:44:37:18:00:
56:90:19:07:2d:6f:d9:bf:0e:1f:5f:a3:d5:84:66:15:18:16:
96:4e:f7:71:45:71:3d:d9:c8:e7:14:89:7f:5f:9b:6b:b6:ed:
df:2a:54:b8:d1:25:8b:5a:c4:74:ff:64:f6:72:e3:f1:b5:40:
52:8c:03:7e:15:45:38:7c:c9:60:ec:d5:63:89:2f:dd:42:71:
17:15:89:41:ef:60:b4:97:7c:ed:f1:de:5c:96:07:28:9f:d7:
f7:0b:2a:34:84:29:e1:31:9d:41:2f:bb:0d:db:7d:1d:66:47:
28:34:c7:43:a6:c4:3b:da:9b:4e:e6:84:71:da:a4:86:ca:a8:
74:ab:d1:11:45:55:c1:9f:05:f0:19:96:54:37:01:ed:96:97:
94:df:68:32:9d:47:8d:75:bf:04:ab:2c:15:ff:80:b2:48:f2:
e9:bc:a0:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:50 2024 by rpki-client on console-fra.rpki-client.org