Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XXA12aKH84b3IvHmw7_O5GtN3mo.roa
File: XXA12aKH84b3IvHmw7_O5GtN3mo.roa (raw, json)
Hash identifier: i1uglvHysNPoHRsjFwoj/O1al7Zx4KrEwH560TgZZSw=
Subject key identifier: 5D:70:35:D9:A2:87:F3:86:F7:22:F1:E6:C3:BF:CE:E4:6B:4D:DE:6A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018DC75F1241A5A40104312488486206F3FE
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XXA12aKH84b3IvHmw7_O5GtN3mo.roa
Signing time: Tue 20 Feb 2024 16:35:12 +0000
ROA not before: Tue 20 Feb 2024 16:35:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 271537
IP address blocks: 185.230.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Apr 2024 10:27:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c7:5f:12:41:a5:a4:01:04:31:24:88:48:62:06:f3:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 20 16:35:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d7035d9a287f386f722f1e6c3bfcee46b4dde6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:89:d6:39:d5:46:d4:a6:ef:32:c4:d3:c0:fb:
80:b4:29:69:f5:3e:97:8a:0e:ff:5c:c8:78:71:54:
22:dd:bb:79:8f:fa:f8:bd:97:0c:2d:bd:d3:1a:44:
5a:f3:f7:89:a4:8e:e9:b7:93:4f:48:aa:26:29:77:
0b:ad:60:ba:b4:97:d7:14:b2:8b:7b:1a:b7:2a:d0:
0c:e4:ea:59:ed:cd:d1:91:7e:bf:d2:58:cd:36:a5:
31:87:5e:0b:e6:f9:47:a9:4d:15:4f:e8:d7:b4:b2:
f2:b3:0c:b4:84:f4:28:71:0d:b4:d8:af:8d:82:db:
e5:04:39:bb:7a:95:63:25:40:14:d0:8c:02:13:81:
4e:62:58:e2:a5:f0:45:47:93:36:eb:d9:e4:11:14:
4c:f4:d9:ad:fe:e3:bd:70:20:67:35:3f:39:cd:1e:
00:04:cb:07:cc:74:ad:6c:a1:3e:85:5b:35:b0:c1:
b3:0c:f1:51:c8:e1:d6:a0:99:18:af:cf:b5:01:21:
86:e4:74:38:e7:fd:39:23:7e:b4:b3:e4:be:0a:aa:
7a:26:59:31:e1:f5:d8:9a:37:33:4b:bb:f0:c4:d4:
27:03:86:3f:5a:8a:37:9b:26:ef:52:2a:9f:a1:48:
24:52:0a:55:2e:a5:15:8e:51:e9:b3:08:df:4b:03:
4e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:70:35:D9:A2:87:F3:86:F7:22:F1:E6:C3:BF:CE:E4:6B:4D:DE:6A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XXA12aKH84b3IvHmw7_O5GtN3mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.53.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:01:7b:d6:0c:34:00:2c:9e:cc:4b:f0:19:4e:0a:04:71:c2:
07:a1:da:a9:ab:a2:42:cf:49:1c:0f:11:e2:01:df:1b:a5:8a:
7d:ee:43:19:86:e7:43:91:c6:f3:15:e5:fd:46:b3:a9:ac:37:
a9:00:32:1f:60:3d:2a:ac:c8:5d:c5:5d:69:ec:1b:a0:a9:2d:
88:47:b1:c1:c0:f8:4f:dd:1f:2c:ec:a5:27:bd:64:77:00:df:
91:56:23:4e:2e:38:b0:91:45:4e:12:49:7e:87:86:c6:97:b9:
77:14:98:fb:b7:8f:79:98:ad:15:c8:94:9b:d8:c3:40:04:65:
c7:c1:3d:33:7d:47:58:f1:61:d9:5f:90:72:a0:ff:4e:6b:70:
89:84:1f:30:60:8b:d2:c3:e6:69:bb:32:03:69:f4:f5:1a:a4:
e4:d8:53:19:41:b0:8a:d8:59:45:bf:e7:9e:08:ac:3c:d9:99:
fd:1b:88:e3:d8:e7:7a:0a:eb:de:33:cb:bd:5d:8d:5e:0e:51:
d2:4f:9a:c7:e8:7e:16:3d:12:59:8d:dd:c3:46:17:3d:b2:40:
d5:db:57:23:84:32:8d:b7:94:3a:a2:bd:b7:ea:e3:94:08:c1:
d2:43:00:6e:d6:33:d1:c2:fd:9e:7e:8c:a4:d9:ef:80:02:33:
0f:6e:d6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org