Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/bLIsIoXCObEXjPJD5ifECz5dJD4.roa
File: bLIsIoXCObEXjPJD5ifECz5dJD4.roa (raw, json)
Hash identifier: 7QSdP+VlcJI/Xdu3ckqnQAUAldM9XmXVsRN049240w0=
Subject key identifier: 6C:B2:2C:22:85:C2:39:B1:17:8C:F2:43:E6:27:C4:0B:3E:5D:24:3E
Certificate issuer: /CN=206f1c32bc0a9006081d552fede67d6842921ec3
Certificate serial: 018A65CD9BEC0FCA8A156A213B149D099931
Authority key identifier: 20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/bLIsIoXCObEXjPJD5ifECz5dJD4.roa
Signing time: Tue 05 Sep 2023 14:44:48 +0000
ROA not before: Tue 05 Sep 2023 14:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212806
IP address blocks: 185.175.90.0/24 maxlen: 24
2a10:4740:40::/42 maxlen: 42
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:cd:9b:ec:0f:ca:8a:15:6a:21:3b:14:9d:09:99:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206f1c32bc0a9006081d552fede67d6842921ec3
Validity
Not Before: Sep 5 14:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cb22c2285c239b1178cf243e627c40b3e5d243e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f6:8c:e8:de:e4:06:2e:11:a1:62:f2:b4:4b:
91:9f:35:f8:d6:75:c6:a3:2d:7e:44:ca:a8:ac:96:
02:ef:fe:85:c4:d6:be:4c:be:71:07:d2:aa:9b:7e:
07:5e:45:c2:9f:95:cf:1e:75:0a:0b:92:0e:ac:64:
af:b8:88:28:b3:a1:f0:5b:8f:24:0b:49:dd:56:e9:
d8:b8:7e:a0:ac:30:d5:a4:81:03:c9:c3:3a:4f:e2:
a9:2d:3e:5d:3c:4e:e1:83:b7:23:f9:2a:c5:bc:fa:
ff:8d:14:ff:dd:3a:a3:ed:aa:23:94:0f:79:01:59:
01:58:47:db:7b:2f:8a:5e:84:f3:23:22:36:81:dd:
c8:93:67:f4:aa:6f:99:e5:78:dd:cd:53:9d:4b:05:
38:91:4d:69:9d:ec:74:61:fb:63:b5:eb:38:a2:02:
70:52:70:fe:b6:ff:b6:c2:6b:57:b1:2b:bc:db:4f:
ce:11:00:98:69:37:e2:36:3d:34:ce:4d:2c:e2:28:
3c:3e:98:0b:6a:01:79:d2:17:be:41:f2:6a:92:74:
39:f1:81:3a:88:e6:89:f2:2c:b6:8b:dc:32:8d:e4:
0f:92:0f:4e:28:2a:87:ce:12:62:16:14:9a:b7:a4:
05:54:57:eb:d2:16:c7:d2:1c:ea:9e:af:32:18:3b:
16:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B2:2C:22:85:C2:39:B1:17:8C:F2:43:E6:27:C4:0B:3E:5D:24:3E
X509v3 Authority Key Identifier:
keyid:20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/bLIsIoXCObEXjPJD5ifECz5dJD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.90.0/24
IPv6:
2a10:4740:40::/42
Signature Algorithm: sha256WithRSAEncryption
a4:2c:53:a5:9f:c1:44:ef:d6:6e:11:e1:19:6b:d6:25:07:73:
62:b6:cf:5b:5e:24:c8:6a:88:ec:7d:d0:07:b1:28:13:b0:8c:
66:0f:72:f4:92:82:d7:d2:4b:72:5c:40:c0:54:44:d3:c6:f6:
af:74:8f:a6:8e:ec:8f:74:70:b8:4d:13:4e:63:35:22:75:c2:
51:2b:04:66:16:e1:15:49:bc:4a:b1:f4:b3:44:8f:7b:a9:21:
46:8d:c1:55:f4:01:d5:a1:18:f6:94:17:b2:81:93:10:a5:14:
a6:1c:29:d4:d1:dc:f6:a3:b5:f8:d2:e2:9d:84:44:0e:75:30:
0c:8a:e6:90:c7:12:85:f6:f1:2a:f8:df:41:24:8d:30:cc:2a:
34:b7:7a:12:97:11:33:81:1f:6e:c1:2a:e0:80:c4:e3:11:7d:
75:3a:76:bd:81:45:ea:76:56:9f:8e:c9:36:1e:a4:c9:4e:88:
30:4f:3a:24:cf:74:5d:50:56:ab:88:5e:9e:e4:88:94:68:70:
e2:37:56:af:79:62:6a:8c:c5:94:08:b1:50:d3:10:08:ad:e1:
69:e3:c9:0b:9f:04:4d:8c:29:ac:19:64:6f:74:f5:9d:f2:24:
d8:d6:f5:ec:95:05:54:d5:0a:59:ba:1a:dd:30:2c:90:33:46:
56:b4:d6:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org