Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/xwAosyFgFSdOqKc_2_5xMbHn6pM.roa
File: xwAosyFgFSdOqKc_2_5xMbHn6pM.roa (raw, json)
Hash identifier: 0PTIdlStWjI0VCO33fQcN4n0vgQ4t7Vw8eBeg0qoGc4=
Subject key identifier: C7:00:28:B3:21:60:15:27:4E:A8:A7:3F:DB:FE:71:31:B1:E7:EA:93
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018C36BB038490F22B226D668B8F54B607AC
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/xwAosyFgFSdOqKc_2_5xMbHn6pM.roa
Signing time: Mon 04 Dec 2023 21:27:54 +0000
ROA not before: Mon 04 Dec 2023 21:27:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395839
IP address blocks: 185.255.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:36:bb:03:84:90:f2:2b:22:6d:66:8b:8f:54:b6:07:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Dec 4 21:27:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c70028b3216015274ea8a73fdbfe7131b1e7ea93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:47:86:b1:23:82:7c:1a:72:3a:4d:97:6a:ab:
1c:fd:9b:3c:b1:8b:23:7f:e5:80:bd:24:94:81:74:
d8:af:9e:27:66:41:9d:84:f7:bd:35:74:81:7e:a1:
c7:82:78:e8:0a:19:cf:3b:fd:e5:79:32:87:ed:95:
32:48:48:01:43:92:b2:2b:b2:cb:f5:27:a1:47:ce:
72:24:70:8e:e5:d2:00:75:ea:29:27:c2:cd:54:60:
ba:cf:ff:5c:07:06:c1:0f:92:5b:24:58:18:b4:f1:
e8:65:f0:cc:e0:0b:63:52:13:3f:1f:e0:21:af:2e:
75:f9:77:97:27:31:51:c0:fe:39:3b:48:8f:8f:11:
04:23:e6:f6:22:47:2a:47:75:cd:e2:0f:7e:d3:57:
f8:5a:ce:63:28:2b:72:eb:7b:d5:58:cf:21:9a:d7:
75:b3:93:2d:4c:e9:53:f3:7c:57:58:d6:33:72:bf:
42:08:a0:e4:4e:87:bf:11:db:69:40:e0:03:b0:8e:
f4:53:2c:74:65:61:ba:e2:61:01:b1:1f:6d:e4:9b:
26:08:31:71:a5:66:83:ec:38:2c:db:80:86:e4:f4:
05:22:bc:9d:77:62:99:22:36:cc:7a:01:c5:dc:ab:
5d:21:2c:ea:23:77:3c:40:70:ee:30:23:8f:5e:da:
4c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:00:28:B3:21:60:15:27:4E:A8:A7:3F:DB:FE:71:31:B1:E7:EA:93
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/xwAosyFgFSdOqKc_2_5xMbHn6pM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.7.0/24
Signature Algorithm: sha256WithRSAEncryption
13:cd:27:94:40:45:5f:74:5a:93:9d:52:6f:8b:30:56:2a:0d:
2a:69:1d:5c:82:23:c3:87:79:14:02:24:8b:cd:a2:bd:71:c0:
14:ac:c1:75:85:40:4c:fe:23:d9:5b:5f:09:ea:55:60:4a:7e:
73:7b:86:4a:b2:a4:89:19:50:62:24:40:cf:f6:8f:31:c5:32:
12:46:12:60:1c:e2:88:50:8e:ab:8d:4f:30:f7:50:1f:90:c8:
dd:ac:c1:72:e1:b0:a5:74:d0:aa:b0:63:ac:e2:7f:c0:d3:d9:
4d:98:fc:7d:db:7d:38:eb:d6:3f:0d:3f:06:34:1b:b3:94:78:
f3:d7:96:72:8f:0f:ed:91:8f:15:34:31:95:82:d2:34:3e:eb:
77:54:34:40:73:62:a3:85:65:ef:8f:64:60:d6:3e:53:4f:f3:
c4:c6:24:a9:39:29:d9:3e:45:35:a3:80:84:2b:f8:64:f7:65:
6d:0f:3d:a4:1f:5b:b1:21:7a:2d:b6:db:c7:9b:c8:43:18:c6:
ad:b3:c4:70:75:65:72:dd:9b:78:bb:26:66:4e:7f:ee:61:9e:
1a:e0:23:c3:90:86:82:5b:3b:8e:41:08:a1:b9:a8:cf:f4:27:
a2:61:81:9c:b8:cf:7c:48:ff:79:76:24:f6:da:16:8a:4d:36:
b2:9f:24:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org