Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/6tgWaNB386oc4LQyk51SkUQjwOM.roa
File: 6tgWaNB386oc4LQyk51SkUQjwOM.roa (raw, json)
Hash identifier: Bm4ejpdbGal4sSfoKhNXN5+ZnjJ9R/s1tWat0K5Qezs=
Subject key identifier: EA:D8:16:68:D0:77:F3:AA:1C:E0:B4:32:93:9D:52:91:44:23:C0:E3
Certificate issuer: /CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5
Certificate serial: 01856CEF23E7B07766719CCDC3AC2DFA07B3
Authority key identifier: 06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/6tgWaNB386oc4LQyk51SkUQjwOM.roa
Signing time: Sun 01 Jan 2023 10:44:49 +0000
ROA not before: Sun 01 Jan 2023 10:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60545
IP address blocks: 176.10.105.0/24 maxlen: 24
185.195.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:23:e7:b0:77:66:71:9c:cd:c3:ac:2d:fa:07:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5
Validity
Not Before: Jan 1 10:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ead81668d077f3aa1ce0b432939d52914423c0e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0f:4f:bb:d4:37:8f:2d:c4:7b:3a:e5:97:6b:
fd:ff:2e:62:db:73:8f:27:4a:8d:22:0e:e1:b5:33:
aa:23:d4:ab:77:27:db:e8:45:af:fa:87:aa:e2:61:
5b:38:c8:f2:83:95:31:c2:2e:5a:72:98:98:81:fb:
f5:9f:53:15:f3:46:44:49:a3:bf:ed:71:e7:7a:94:
45:45:1c:3f:7c:b6:90:d9:e5:17:55:55:ac:95:c2:
ee:40:a6:c3:8b:60:90:c2:47:a2:1f:8e:48:e8:d6:
89:d2:28:80:fa:e3:b3:8a:51:34:95:55:c4:d7:f6:
f3:1a:a7:ae:b1:c2:e3:82:70:ba:a7:5f:82:8c:6e:
db:7a:ec:32:c7:a6:25:36:71:37:e6:d8:24:76:e6:
bf:b5:41:94:4b:3b:c3:7b:48:4f:fd:b1:c5:bc:b7:
40:fb:c5:78:d2:d0:12:f0:e5:d8:d8:0c:5c:e4:d4:
01:3e:db:38:15:24:01:62:92:91:f8:98:7d:da:1f:
f6:7b:8a:91:7b:b0:c9:f5:5e:31:b9:78:d3:b6:2c:
7e:6a:4b:d9:75:34:fc:3f:ca:cc:3c:72:c2:1d:8d:
2a:7f:d1:fa:81:44:c8:c3:b0:95:18:9e:cb:f0:1e:
84:ec:0c:c4:8b:5c:1e:95:c1:b6:4e:ea:51:e7:4c:
33:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D8:16:68:D0:77:F3:AA:1C:E0:B4:32:93:9D:52:91:44:23:C0:E3
X509v3 Authority Key Identifier:
keyid:06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/6tgWaNB386oc4LQyk51SkUQjwOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.10.105.0/24
185.195.70.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:42:a5:8c:10:17:f9:0e:2d:c1:0f:68:59:e7:d8:b1:81:e4:
98:c5:7d:82:1c:d8:c3:3d:ad:9f:6d:dd:07:08:9a:21:1c:d5:
2e:24:67:bf:06:73:9d:54:e5:1c:9c:d8:63:f0:d1:50:89:99:
5a:0f:42:34:52:80:ef:8a:44:1a:b3:98:08:5f:ff:40:f4:9e:
b2:cb:94:0a:fb:e8:03:0c:3f:3f:bb:94:3f:36:a9:3a:7a:b5:
3d:cd:9f:86:dc:1c:ce:02:ec:a5:e6:6c:b8:b9:9d:01:dd:31:
17:2c:19:8d:e1:03:3a:2a:2f:c6:16:97:60:dd:5a:14:b7:30:
44:54:22:5f:ac:a3:29:16:89:ab:47:4d:d0:79:4b:dd:da:05:
e3:f3:61:95:5a:6d:bd:69:e8:ea:5c:62:15:a8:27:4c:9f:6b:
24:a8:fa:e9:69:46:f5:5b:97:45:f7:cc:cc:36:49:f0:b9:cf:
c4:37:2b:da:78:07:5d:95:4d:df:fd:a8:f2:e6:f7:e4:c3:cf:
da:cf:fc:1f:2c:0b:e9:71:07:eb:8f:a6:6c:d0:db:af:91:c2:
0a:dd:58:f1:ef:f8:66:61:ca:bb:9d:97:e2:df:79:42:45:88:
d6:51:c0:d5:de:4a:57:2d:8e:d8:9e:d4:2a:39:01:dc:e3:98:
76:03:ce:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:52 2024 by rpki-client on console-fra.rpki-client.org