Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CwDbPod-9Ydx1LUccoEgSlT5ICg.roa
File: CwDbPod-9Ydx1LUccoEgSlT5ICg.roa (raw, json)
Hash identifier: LoAA8wNWNmyfvWLGEjgYHJbgwjBAMnekLCCJt8FV6zQ=
Subject key identifier: 0B:00:DB:3E:87:7E:F5:87:71:D4:B5:1C:72:81:20:4A:54:F9:20:28
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01866E578F36B39938940810BFEE93986284
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CwDbPod-9Ydx1LUccoEgSlT5ICg.roa
Signing time: Mon 20 Feb 2023 10:21:17 +0000
ROA not before: Mon 20 Feb 2023 10:21:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.255.56.0/23 maxlen: 24
185.240.132.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 14:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6e:57:8f:36:b3:99:38:94:08:10:bf:ee:93:98:62:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Feb 20 10:21:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b00db3e877ef58771d4b51c7281204a54f92028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:44:0b:94:dd:04:ab:71:e0:2d:37:5f:b6:ab:
16:35:3d:04:10:01:86:01:d3:34:e9:f4:24:aa:c8:
39:d8:1d:be:96:9d:f4:0a:05:ab:54:67:af:b4:98:
3a:8a:6c:1e:05:60:80:7d:de:12:a6:cc:d4:34:bf:
7f:ac:b9:70:0e:fe:c9:81:fd:6d:f9:6f:4c:dc:58:
00:3b:3b:f3:b9:ad:84:ec:3b:af:3a:f3:05:aa:a0:
cc:0b:49:ce:1e:1f:87:00:1d:83:4c:38:14:92:84:
df:37:6a:19:bf:76:ca:97:0b:ad:70:36:1e:16:55:
4c:ff:04:ae:a9:e3:b7:6e:71:39:73:94:04:de:66:
99:48:1e:5a:0a:fc:73:58:17:6b:69:e7:07:c4:8f:
8d:11:36:24:a7:90:c5:29:e3:fb:47:a9:85:3b:2c:
3f:4d:58:0f:96:9a:f1:e6:5e:de:4f:1a:92:c4:76:
d1:4c:ab:cc:01:6d:0b:cd:8b:83:d8:6b:b8:30:ee:
cd:1a:48:e6:ce:44:87:f9:b2:f4:17:09:00:25:91:
4b:70:a7:70:a8:5c:23:97:06:60:e5:41:cf:e7:ef:
5a:6d:b6:37:ca:ca:55:ab:e0:b6:cb:4a:61:4e:84:
e9:9f:ab:28:31:0b:52:90:52:47:e6:7c:b1:d9:a1:
32:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:00:DB:3E:87:7E:F5:87:71:D4:B5:1C:72:81:20:4A:54:F9:20:28
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CwDbPod-9Ydx1LUccoEgSlT5ICg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.132.0/23
185.255.56.0/23
Signature Algorithm: sha256WithRSAEncryption
51:83:60:cf:fa:1e:d1:02:1d:d2:00:e2:25:49:7f:b4:1d:9e:
7b:5e:2e:7d:ff:24:30:78:98:17:43:03:be:9c:c4:23:c8:dd:
fb:e2:63:ee:90:73:b2:f2:0a:49:2f:2d:d2:20:fb:d4:7d:19:
55:6a:1e:f6:32:eb:e6:de:c8:d0:e7:c1:55:f0:06:a7:73:34:
bb:f2:3a:34:d5:98:e2:38:24:c8:b5:27:cf:eb:fb:a5:41:51:
53:c7:d5:c5:18:da:15:59:e5:4b:78:6e:dc:ec:26:05:4e:bc:
cf:d8:bc:62:d8:8f:b1:38:cf:4e:7f:0e:b6:87:f4:cd:a7:a4:
c8:56:68:cf:c5:a9:a6:35:8a:11:db:86:a9:92:79:c1:83:f0:
f9:53:ce:7d:ed:31:4b:3c:14:04:fa:e7:87:87:51:a1:ed:9c:
55:41:af:fa:de:25:56:3f:66:e5:8c:11:0c:f0:13:40:08:ee:
36:d8:61:8f:56:ca:7f:a8:b9:92:32:05:1d:db:ae:c3:51:6c:
af:63:73:de:bd:b7:2e:1a:50:97:8f:69:f0:aa:79:8c:92:54:
f4:fa:99:db:27:00:6a:19:68:55:c2:f4:76:1d:c2:43:ca:20:
bd:d0:ed:82:69:63:26:d1:6f:48:f0:32:59:45:a5:81:2c:da:
95:8b:a7:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org