Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Xfxox98CYoxtFtMxfcsHK6VLMEU.roa
File: Xfxox98CYoxtFtMxfcsHK6VLMEU.roa (raw, json)
Hash identifier: mmk2V2gsS5OK8iDnyy6V3EOeEW247nbmBp5TAHp767g=
Subject key identifier: 5D:FC:68:C7:DF:02:62:8C:6D:16:D3:31:7D:CB:07:2B:A5:4B:30:45
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B64FA84181BEBA0FAE24D044EFD134
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Xfxox98CYoxtFtMxfcsHK6VLMEU.roa
Signing time: Mon 02 Jan 2023 09:00:51 +0000
ROA not before: Mon 02 Jan 2023 09:00:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 272611
IP address blocks: 185.238.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 May 2023 11:31:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:4f:a8:41:81:be:ba:0f:ae:24:d0:44:ef:d1:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dfc68c7df02628c6d16d3317dcb072ba54b3045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:18:c2:74:65:24:de:08:6c:b2:77:98:b0:4c:
2f:b6:14:01:55:0f:5d:8a:55:2c:5d:b5:d8:79:5d:
fc:b4:bd:2b:4e:3e:8e:fa:92:3d:6f:38:3d:18:16:
06:5f:f0:56:b0:3b:9c:af:e4:1a:30:55:12:b5:37:
50:0b:52:3e:e3:bb:13:98:0c:1d:9a:c6:69:91:b8:
10:d8:40:8b:33:43:11:7d:dd:5a:6b:d0:35:12:2d:
20:1a:cf:ec:e8:73:f9:bc:1e:f8:fb:43:cf:15:05:
1d:f3:2e:5d:76:4b:53:95:44:bd:d2:19:5e:06:2c:
f9:a1:2a:10:5c:c6:fc:ff:c8:ae:98:8a:2c:8c:9d:
f8:cf:b5:ae:04:cb:73:9b:67:42:bd:71:16:e6:2e:
e5:6e:48:de:c8:65:72:e9:56:17:fc:5a:b4:90:de:
3d:36:77:b3:36:7f:f5:8a:cc:0c:e5:83:ab:aa:fb:
c3:28:92:e4:f9:cf:70:1e:f3:0d:a9:d4:2a:de:f3:
95:cf:8d:ec:bb:60:11:79:1f:d6:64:6a:bc:32:1e:
fe:8d:2d:38:dd:0c:51:7d:6f:05:4d:32:a9:36:3c:
68:c8:06:e7:51:6d:cf:6f:5d:32:df:49:ed:0d:d3:
29:ce:de:9d:c5:ce:a9:19:b8:60:f1:1e:35:c1:02:
4a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:FC:68:C7:DF:02:62:8C:6D:16:D3:31:7D:CB:07:2B:A5:4B:30:45
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Xfxox98CYoxtFtMxfcsHK6VLMEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.230.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:2e:c6:c4:3f:c4:96:4b:f2:f3:58:85:f7:14:ff:3f:d5:1f:
08:82:73:5f:4a:97:71:81:27:57:af:99:da:4f:57:e8:43:6f:
a4:32:df:51:50:25:32:5e:8b:16:2b:8e:a2:45:e5:60:60:9f:
74:09:33:f1:42:a2:1e:bd:94:d3:44:bf:15:09:6c:3b:a5:4b:
03:14:f1:80:98:23:87:e6:92:ce:fc:c7:ac:83:19:61:9d:bb:
f2:b5:d2:46:88:a7:0f:4a:02:7e:15:48:5e:12:3e:01:4c:54:
df:8d:46:c5:78:86:13:7f:9c:43:77:20:f0:1f:7e:20:6c:99:
26:1c:b5:d4:23:22:ed:5c:67:b4:f8:d1:d2:09:e2:2d:db:b5:
dc:7d:6c:97:dc:c3:00:37:e5:49:5c:11:bb:1e:58:a5:ce:4f:
d8:86:c0:92:ef:9f:57:04:85:e4:5d:6f:e2:b8:7c:88:64:fb:
89:5c:cf:d6:37:2d:1d:15:53:13:a1:71:c2:9e:20:89:c7:0e:
ff:99:2b:b6:64:9e:e8:b6:0e:f0:60:46:11:69:6a:67:bd:35:
8c:2c:90:90:d8:ee:03:d3:c7:01:45:7f:1b:dc:41:d9:8d:17:
4b:c2:a3:a0:f6:b3:78:f4:0f:f3:5b:53:fc:10:93:34:74:3e:
52:c7:6b:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxtk+oQYG+ug+uJNBE79E0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwMTAyMDkwMDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGZjNjhjN2RmMDI2MjhjNmQxNmQzMzE3ZGNiMDcyYmE1NGIzMDQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxjCdGUk3ghssneYsEwvthQBVQ9d
ilUsXbXYeV38tL0rTj6O+pI9bzg9GBYGX/BWsDucr+QaMFUStTdQC1I+47sTmAwd
msZpkbgQ2ECLM0MRfd1aa9A1Ei0gGs/s6HP5vB74+0PPFQUd8y5ddktTlUS90hle
Biz5oSoQXMb8/8iumIosjJ34z7WuBMtzm2dCvXEW5i7lbkjeyGVy6VYX/Fq0kN49
NnezNn/1iswM5YOrqvvDKJLk+c9wHvMNqdQq3vOVz43su2AReR/WZGq8Mh7+jS04
3QxRfW8FTTKpNjxoyAbnUW3Pb10y30ntDdMpzt6dxc6pGbhg8R41wQJKLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF38aMffAmKMbRbTMX3LByulSzBFMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvWGZ4b3g5OENZb3h0RnRNeGZjc0hLNlZMTUVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue7mMA0G
CSqGSIb3DQEBCwUAA4IBAQCeLsbEP8SWS/LzWIX3FP8/1R8IgnNfSpdxgSdXr5na
T1foQ2+kMt9RUCUyXosWK46iReVgYJ90CTPxQqIevZTTRL8VCWw7pUsDFPGAmCOH
5pLO/MesgxlhnbvytdJGiKcPSgJ+FUheEj4BTFTfjUbFeIYTf5xDdyDwH34gbJkm
HLXUIyLtXGe0+NHSCeIt27XcfWyX3MMAN+VJXBG7Hlilzk/YhsCS759XBIXkXW/i
uHyIZPuJXM/WNy0dFVMToXHCniCJxw7/mSu2ZJ7otg7wYEYRaWpnvTWMLJCQ2O4D
08cBRX8b3EHZjRdLwqOg9rN49A/zW1P8EJM0dD5Sx2tM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org