Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/DYcWLkc2oSUBW8YX0UdkRzesFsw.roa
File: DYcWLkc2oSUBW8YX0UdkRzesFsw.roa (raw, json)
Hash identifier: uD8mUPw74QcNrN4Qu+XmxaqI/oRB0uRWgvhEUpXy7BU=
Subject key identifier: 0D:87:16:2E:47:36:A1:25:01:5B:C6:17:D1:47:64:47:37:AC:16:CC
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 018DF295EE5277ECB596AB852B2B02B2C9EA
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/DYcWLkc2oSUBW8YX0UdkRzesFsw.roa
Signing time: Thu 29 Feb 2024 01:58:48 +0000
ROA not before: Thu 29 Feb 2024 01:58:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25369
IP address blocks: 185.162.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Mar 2024 12:43:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f2:95:ee:52:77:ec:b5:96:ab:85:2b:2b:02:b2:c9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: Feb 29 01:58:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d87162e4736a125015bc617d147644737ac16cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fb:eb:db:1b:1d:01:04:9a:7b:3c:29:cc:4e:
9a:f8:27:93:d7:87:6a:a1:34:96:f8:2f:45:d3:7d:
f6:62:62:01:df:a9:35:4c:6c:20:b1:24:e7:00:62:
e6:37:8a:4b:29:e6:6d:f3:dd:a9:0c:e1:a2:70:5a:
b5:65:b6:46:82:8b:e8:f1:20:94:0c:e7:cb:4c:74:
43:71:d5:80:7c:49:cd:15:1f:3c:bd:b4:9b:56:92:
53:22:57:a8:37:38:3e:b9:f0:d1:3f:56:9d:de:f6:
4b:d7:b3:bb:13:6e:c3:00:09:d7:f0:bd:4d:cd:aa:
fe:23:e1:a1:57:75:c4:a8:7c:13:11:c4:12:e9:a6:
fe:dd:a7:e8:28:90:b5:dd:19:9f:9b:9d:c6:88:1a:
78:e2:86:a3:83:74:3b:35:53:33:4a:81:09:9e:ea:
85:07:4e:dd:d9:b9:be:22:ae:c1:7c:6b:9f:05:c8:
5a:cf:42:d2:97:e5:e8:00:8b:04:0e:5f:57:b6:0c:
3e:6d:f1:58:6f:3f:94:3f:8b:eb:7b:4a:3c:4e:b5:
be:3d:5f:d8:50:fa:de:02:77:5d:6c:63:cd:5e:6b:
fd:49:28:67:1b:fc:df:41:2b:33:d0:1b:b7:23:03:
72:03:24:bb:c2:88:a6:c0:85:6a:66:23:9e:ea:4b:
73:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:87:16:2E:47:36:A1:25:01:5B:C6:17:D1:47:64:47:37:AC:16:CC
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/DYcWLkc2oSUBW8YX0UdkRzesFsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.235.0/24
Signature Algorithm: sha256WithRSAEncryption
54:ce:40:e2:b1:27:32:b2:01:66:9f:cd:43:b3:ad:93:34:d7:
79:ee:0f:5d:de:9d:32:a6:82:74:56:e5:81:76:fa:25:26:95:
4a:66:5e:96:fe:6e:b2:d2:89:32:45:e2:0d:43:53:83:0c:25:
e9:d1:59:18:8d:ac:56:32:5d:c3:20:b0:fd:c8:67:0b:1b:aa:
0a:35:62:75:c3:d9:35:70:dc:19:bd:fa:70:a7:e4:86:d6:a1:
1e:9e:50:ad:fb:75:2b:f7:b5:11:28:9d:91:fc:49:69:6c:07:
21:ac:36:7e:64:f9:68:ca:f0:70:5f:06:0f:4c:c9:50:99:8d:
c8:86:4b:54:16:43:ee:90:70:05:1e:ea:22:04:be:05:e6:72:
ef:0e:ad:e9:49:16:42:67:f2:d1:0b:89:a1:14:f0:16:db:bb:
10:da:fd:31:44:b9:ae:07:e4:8a:f9:fc:27:08:8c:5e:46:14:
21:76:1d:de:a2:02:9c:43:cd:4b:a9:a8:66:cf:93:98:9b:0a:
75:e8:ce:af:2c:9d:25:2e:e1:42:f1:22:f2:bb:fc:c6:05:e6:
95:2b:92:37:15:63:de:91:ae:0d:2d:d4:49:12:80:6c:f2:11:
3c:c7:68:ec:19:a6:df:5a:95:49:30:7f:b7:30:df:ce:1e:fe:
28:1f:98:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 9 16:50:19 2024 by rpki-client on console-fra.rpki-client.org