Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/61aLdLCk1eQYydqxWNLqJOML8OU.roa
File: 61aLdLCk1eQYydqxWNLqJOML8OU.roa (raw, json)
Hash identifier: 8YyLWDndnlyX+SGH09lLUCcQVRZSk2flMWGJ4cl/61o=
Subject key identifier: EB:56:8B:74:B0:A4:D5:E4:18:C9:DA:B1:58:D2:EA:24:E3:0B:F0:E5
Certificate issuer: /CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33
Certificate serial: 01856FF95CBF60FAF07F3C9202589DD137BE
Authority key identifier: C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/61aLdLCk1eQYydqxWNLqJOML8OU.roa
Signing time: Mon 02 Jan 2023 00:54:51 +0000
ROA not before: Mon 02 Jan 2023 00:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35280
IP address blocks: 185.6.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:5c:bf:60:fa:f0:7f:3c:92:02:58:9d:d1:37:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33
Validity
Not Before: Jan 2 00:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb568b74b0a4d5e418c9dab158d2ea24e30bf0e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cc:97:02:41:95:75:ed:a8:77:3b:29:17:3e:
a9:bd:40:93:9d:6e:e1:2c:8b:9d:96:4e:8c:5a:8c:
7d:ee:d4:72:90:17:bd:fd:52:31:5c:d2:7e:d9:2d:
7a:94:17:a6:f2:0d:46:4c:76:e8:97:ff:ce:f8:0c:
c8:e5:e7:d6:71:7c:ff:7e:ef:e7:e5:64:a8:de:e1:
f1:16:b6:01:ea:44:bc:d0:6c:9c:5f:dc:fb:75:0f:
40:b1:32:93:b2:fb:d1:ba:e1:02:20:6e:4f:9d:76:
01:09:36:42:c5:eb:97:a9:75:34:a7:c3:83:27:eb:
fc:61:6f:b3:31:88:96:bd:d1:c5:22:7f:3c:01:47:
58:ee:d2:ae:d6:2b:fd:80:ea:b9:07:fe:83:8e:ac:
8c:ef:19:08:31:86:ed:c9:5a:f6:5e:a8:b4:35:91:
19:33:de:36:f0:2a:68:fb:d8:07:f9:0d:e5:3e:4a:
c3:07:17:27:fd:b7:9c:81:28:7c:22:7e:72:bd:f3:
e7:8c:44:05:fa:42:5a:57:fc:8a:2a:b7:8f:98:8a:
29:9e:6f:db:b2:07:ab:8a:43:14:b5:12:a7:f1:69:
e5:1a:fa:56:7b:ed:6d:c7:da:bd:81:20:30:fe:a8:
98:6e:5f:45:7e:c9:c0:f1:6b:d6:51:c2:ee:cf:78:
36:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:56:8B:74:B0:A4:D5:E4:18:C9:DA:B1:58:D2:EA:24:E3:0B:F0:E5
X509v3 Authority Key Identifier:
keyid:C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/61aLdLCk1eQYydqxWNLqJOML8OU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.6.60.0/24
Signature Algorithm: sha256WithRSAEncryption
29:5e:47:fb:79:b2:9b:bc:c5:84:27:39:64:65:5b:50:38:5f:
1a:fd:33:5d:4c:b5:6a:fc:0d:ae:28:43:86:40:e7:30:e5:8c:
83:d0:47:b8:6f:10:e4:89:d5:20:69:c8:5c:66:a8:fd:35:6c:
1e:e5:cc:52:ee:66:bc:16:5c:45:26:14:48:19:58:af:9a:6c:
94:1b:93:ff:01:3a:e2:9c:ad:0d:b6:92:e0:19:c3:57:b5:92:
9e:74:f4:b0:99:23:b8:d6:74:76:ae:fa:58:00:b0:ae:19:82:
69:61:d2:53:2a:b9:d9:43:1e:79:66:06:a1:b3:60:73:74:0d:
b5:c0:b5:c6:b0:e2:37:15:bc:4f:17:b4:8f:9c:ee:99:b6:90:
08:dd:70:fa:b5:a8:d0:e2:0c:26:d1:c0:1a:4b:1c:54:da:df:
2a:33:cc:62:e3:44:08:6d:9c:f3:67:63:7c:fb:41:9d:fa:46:
78:2a:53:2f:04:2c:16:5e:8e:24:64:63:75:4f:9f:84:47:ca:
d0:2a:0a:c9:1b:8c:54:24:94:88:5a:f9:15:43:99:37:da:b0:
41:66:d8:5d:19:89:08:19:09:75:ac:12:ec:97:c0:83:2e:79:
30:06:d1:a3:86:f9:10:c6:ab:7f:e4:4d:a0:af:88:22:2a:e5:
a8:a3:91:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:12 2024 by rpki-client on console-ams.rpki-client.org