Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5d6ebd-a8ee-474c-b71a-a642cc85bc71/1/6TVjmTcgl9ePN4kVAzr8Ld8EU5A.roa
File: 6TVjmTcgl9ePN4kVAzr8Ld8EU5A.roa (raw, json)
Hash identifier: rw1KhRG3Whfs9gJy6UGnlbib9PWhHD9yWoZb7k6mw2o=
Subject key identifier: E9:35:63:99:37:20:97:D7:8F:37:89:15:03:3A:FC:2D:DF:04:53:90
Certificate issuer: /CN=9e237f32bae14a81fda27eb29460c3a0eda34240
Certificate serial: 018CC801A601DF42F89299795288151920CF
Authority key identifier: 9E:23:7F:32:BA:E1:4A:81:FD:A2:7E:B2:94:60:C3:A0:ED:A3:42:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/niN_MrrhSoH9on6ylGDDoO2jQkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d6ebd-a8ee-474c-b71a-a642cc85bc71/1/6TVjmTcgl9ePN4kVAzr8Ld8EU5A.roa
Signing time: Tue 02 Jan 2024 02:30:00 +0000
ROA not before: Tue 02 Jan 2024 02:30:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42885
IP address blocks: 185.225.120.0/22 maxlen: 22
77.234.96.0/19 maxlen: 19
Validation: Failed, certificate revoked on Thu 28 Mar 2024 09:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:a6:01:df:42:f8:92:99:79:52:88:15:19:20:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e237f32bae14a81fda27eb29460c3a0eda34240
Validity
Not Before: Jan 2 02:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9356399372097d78f378915033afc2ddf045390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:bc:a0:16:83:62:5d:43:e9:c8:5e:87:41:8a:
87:95:64:13:bc:76:a6:7e:9f:43:63:89:33:94:ce:
bc:b3:c9:ea:7f:b8:d4:10:9a:05:ec:ff:e9:1d:3f:
c1:55:66:27:7d:78:e7:d1:86:35:56:54:29:ce:fb:
f6:a4:a9:af:d1:a6:49:21:b4:5f:b3:7d:1c:52:cc:
6d:5e:66:41:c6:7f:ee:85:5f:92:00:b3:1d:64:d2:
92:9e:c8:a4:aa:f5:61:78:4c:6d:53:9b:81:97:d8:
d6:d5:4b:09:df:5e:0f:05:77:b1:4d:33:a1:4f:1a:
c4:97:88:a1:7a:48:fd:ed:6c:6d:a7:e4:7f:8d:ff:
56:e6:82:ad:8f:71:b7:13:04:d4:32:78:b4:6d:d1:
2f:b0:ce:06:0d:67:c6:54:54:79:d3:d5:09:38:91:
20:2e:97:34:a6:ff:96:05:86:8d:50:54:aa:61:af:
53:8c:03:bf:9e:76:cf:fb:3c:39:1a:d4:ee:a2:e5:
a7:d9:8f:5c:a2:07:83:4d:c9:9a:f0:15:67:fc:e7:
35:45:fa:55:ea:61:cb:71:b4:bb:20:a7:a9:de:88:
cb:e7:7a:bd:c6:b1:cd:17:b8:09:8f:b0:c1:2c:43:
bb:b6:40:a3:14:ee:46:9a:68:1e:41:36:37:03:77:
85:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:35:63:99:37:20:97:D7:8F:37:89:15:03:3A:FC:2D:DF:04:53:90
X509v3 Authority Key Identifier:
keyid:9E:23:7F:32:BA:E1:4A:81:FD:A2:7E:B2:94:60:C3:A0:ED:A3:42:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/niN_MrrhSoH9on6ylGDDoO2jQkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d6ebd-a8ee-474c-b71a-a642cc85bc71/1/6TVjmTcgl9ePN4kVAzr8Ld8EU5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d6ebd-a8ee-474c-b71a-a642cc85bc71/1/niN_MrrhSoH9on6ylGDDoO2jQkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.234.96.0/19
185.225.120.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:77:0f:33:ba:45:be:03:02:3c:21:ea:af:03:61:71:23:34:
82:ab:cf:1f:8b:1b:a4:ea:9b:a7:78:19:f8:d2:18:a6:75:ed:
de:06:a9:0c:f8:c1:54:0e:ac:b5:f2:96:a6:b8:b9:1f:d2:0a:
f5:17:5a:44:aa:9f:e4:b4:69:11:97:04:3b:89:89:1a:78:54:
d0:00:95:b5:3c:18:5e:dd:2c:0f:ba:76:6f:e8:9b:62:e4:b7:
56:93:fb:66:d2:45:15:8b:cf:d7:3b:03:25:4f:45:29:da:bf:
1b:a5:34:4c:db:62:50:55:96:06:ca:1a:95:a0:d2:3d:ba:9f:
ab:51:70:88:46:4a:3e:5d:56:68:55:a9:8d:e6:97:8f:85:bb:
6b:4d:5e:91:4c:52:8e:f9:79:63:1e:1f:09:be:74:6f:32:32:
96:0f:db:be:96:26:fe:38:a5:40:3a:0a:f6:36:15:cb:f3:0e:
47:c0:3b:47:51:79:db:8a:75:83:93:aa:9e:06:c5:81:14:4a:
0a:cb:c5:f0:2b:ca:c5:1f:e4:94:6b:5e:09:3f:4b:96:83:05:
3f:12:36:7c:cf:74:e9:0f:09:e2:1b:4d:ab:52:3f:f3:6f:5f:
ad:1c:b4:b8:8c:de:0d:fd:3f:71:93:41:27:d3:7e:e3:3b:bd:
91:b7:2f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:21 2024 by rpki-client on console-fra.rpki-client.org