Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/b3LBmWyfgMUb3HGiSbiXhyom3Es.roa
File: b3LBmWyfgMUb3HGiSbiXhyom3Es.roa (raw, json)
Hash identifier: 5W1o7YFmz10FMnu3tWZX+KGpJZOa9JAFcG4hyd5kPxw=
Subject key identifier: 6F:72:C1:99:6C:9F:80:C5:1B:DC:71:A2:49:B8:97:87:2A:26:DC:4B
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 018DE9D1F7BA93232C1ABB55B03971881076
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/b3LBmWyfgMUb3HGiSbiXhyom3Es.roa
Signing time: Tue 27 Feb 2024 09:07:48 +0000
ROA not before: Tue 27 Feb 2024 09:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60173
IP address blocks: 185.34.224.0/22 maxlen: 22
185.34.224.0/24 maxlen: 24
185.34.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 13:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e9:d1:f7:ba:93:23:2c:1a:bb:55:b0:39:71:88:10:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: Feb 27 09:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f72c1996c9f80c51bdc71a249b897872a26dc4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a3:b1:07:28:25:8d:51:d2:fa:09:c2:9e:8e:
97:c0:1d:ae:7b:d8:45:0b:a5:fe:0b:67:df:33:8c:
8e:1e:69:63:8e:a2:c7:21:26:32:3d:3d:bc:0b:7a:
90:22:c1:83:b5:00:7e:af:92:e0:55:40:23:5a:0e:
a9:d0:08:cf:39:3c:f2:0d:8b:95:10:4b:2d:cd:4c:
f0:4d:32:24:8a:31:5a:dd:78:bf:ef:5d:e2:e4:ea:
79:6f:42:bf:0d:59:1b:fd:fc:ab:bd:eb:7c:5f:05:
46:d3:06:23:6e:17:75:61:8f:1b:01:da:4b:be:62:
4a:fc:1b:54:e6:24:15:5d:05:75:c2:e0:62:ef:a7:
a9:92:e7:84:08:d8:1f:ba:28:51:c4:27:df:fe:d7:
b1:d4:e1:48:c7:6a:bd:62:a3:9a:7c:7a:1e:fd:b1:
bd:c6:0c:5b:20:29:c5:f5:ce:c3:54:3b:75:8c:df:
67:f1:32:44:cc:e7:44:f1:d1:88:76:87:6a:3f:e8:
20:cd:14:83:83:a5:7e:a5:a7:f5:82:88:b0:c5:90:
92:61:e5:39:86:b4:7d:7b:23:ea:c1:62:33:91:b0:
f9:54:4b:2d:e8:4b:7d:64:8a:26:d2:ab:4a:6d:67:
17:45:2f:dc:da:db:cf:7d:04:a0:f5:5f:3e:03:5f:
1f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:72:C1:99:6C:9F:80:C5:1B:DC:71:A2:49:B8:97:87:2A:26:DC:4B
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/b3LBmWyfgMUb3HGiSbiXhyom3Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.224.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:e8:3f:d0:eb:5b:82:bb:ea:ae:be:92:d4:79:7a:54:1c:75:
7c:0a:1b:c2:77:ff:00:e6:b2:85:c3:e3:3b:dd:44:c0:a9:8f:
d3:ea:b1:39:bc:f8:19:fd:b7:84:cd:01:2a:dd:cf:8f:e6:50:
cf:02:85:24:31:57:2e:e6:96:4d:ae:41:65:5a:9d:8d:f8:f2:
45:2b:5b:73:4f:66:6d:94:03:de:1b:2b:e4:da:51:52:de:f1:
ea:ef:41:a5:16:2a:0d:9c:2d:9f:00:0b:d5:27:5b:f7:a6:b1:
e2:cb:74:6a:31:4e:6a:a0:9c:8b:52:1f:ea:5c:f5:87:f9:07:
be:3a:ee:0f:08:31:f1:84:9e:ad:09:cb:40:b5:76:56:3b:2c:
35:58:2d:75:96:d8:dd:f2:e3:b6:3a:33:86:64:45:1f:5b:43:
43:0b:14:d4:63:73:9c:ad:98:d5:dd:d2:a6:8c:b5:2d:c4:21:
7c:38:eb:2e:b3:46:6a:a9:0a:f6:eb:33:b5:01:ae:40:5c:1c:
23:5a:f2:96:2b:41:43:d3:9c:7b:29:4e:cd:1a:86:f4:14:e5:
58:68:c8:f2:61:48:a7:09:ca:e6:ee:ba:98:09:f3:ec:01:31:
4d:2d:21:95:db:dc:d8:aa:58:c2:8f:5a:d5:3b:61:3b:3f:89:
37:46:3d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:32 2024 by rpki-client on console-ams.rpki-client.org