Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/6CZn2XqP5d0zZYnLhomeZCZQVzI.roa
File: 6CZn2XqP5d0zZYnLhomeZCZQVzI.roa (raw, json)
Hash identifier: cKsNiOOu+2fDZ8hZH6Mt9x9bp/XEMNC6IJB6Vntf8Dc=
Subject key identifier: E8:26:67:D9:7A:8F:E5:DD:33:65:89:CB:86:89:9E:64:26:50:57:32
Certificate issuer: /CN=cc72e633df5635a9f98d2f68a6d2adcb44155cdc
Certificate serial: 01856D018EB8DA621FD44121D3F4B7B08B80
Authority key identifier: CC:72:E6:33:DF:56:35:A9:F9:8D:2F:68:A6:D2:AD:CB:44:15:5C:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zHLmM99WNan5jS9optKty0QVXNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/6CZn2XqP5d0zZYnLhomeZCZQVzI.roa
Signing time: Sun 01 Jan 2023 11:04:56 +0000
ROA not before: Sun 01 Jan 2023 11:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59773
IP address blocks: 185.71.204.0/24 maxlen: 24
185.71.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:8e:b8:da:62:1f:d4:41:21:d3:f4:b7:b0:8b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc72e633df5635a9f98d2f68a6d2adcb44155cdc
Validity
Not Before: Jan 1 11:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e82667d97a8fe5dd336589cb86899e6426505732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ec:b2:0c:43:33:90:36:cf:54:1c:66:d9:d2:
3b:54:19:24:2c:2d:fd:f7:bf:fb:4c:44:d0:a8:d8:
aa:63:2b:65:1c:a8:5d:16:1a:69:8c:2d:16:ed:59:
f1:58:03:d2:0b:bf:7c:96:83:61:1f:da:6a:bf:08:
33:0b:27:85:e8:6f:36:50:37:42:f8:7a:47:cd:05:
c5:88:83:ed:42:ed:a8:b6:24:c1:bd:cb:ec:bd:0d:
31:21:97:b8:2b:bb:1f:43:08:07:e8:fd:05:01:ba:
e5:9c:41:aa:e3:e9:24:0f:12:44:0c:03:8c:c1:02:
8c:e3:d7:90:f6:89:b0:62:cc:79:ef:e6:e0:d3:6c:
2b:71:64:62:76:43:86:ea:df:50:4c:95:0f:3e:c0:
22:63:7d:8d:04:a8:f1:12:ba:34:b0:31:4c:4d:da:
2b:4a:b4:ac:1f:64:ba:c9:09:c3:35:b3:24:fb:a8:
db:ff:c2:b4:41:ac:80:98:0f:0f:b4:25:c8:73:67:
3f:ef:3d:d9:90:f6:f3:ef:8b:35:ba:8e:b7:2e:16:
22:3a:46:29:74:6d:d2:74:4b:12:9a:42:9c:9d:e1:
f5:4b:90:21:ab:05:b4:f7:8e:41:96:8e:6a:8c:58:
6c:fd:cc:8d:d3:c8:17:76:e7:30:85:6a:48:86:e1:
4e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:26:67:D9:7A:8F:E5:DD:33:65:89:CB:86:89:9E:64:26:50:57:32
X509v3 Authority Key Identifier:
keyid:CC:72:E6:33:DF:56:35:A9:F9:8D:2F:68:A6:D2:AD:CB:44:15:5C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zHLmM99WNan5jS9optKty0QVXNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/6CZn2XqP5d0zZYnLhomeZCZQVzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/zHLmM99WNan5jS9optKty0QVXNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.204.0/24
185.71.207.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d0:a6:1f:0e:fe:ba:5e:42:2b:04:ca:91:29:5b:e5:94:44:
8e:71:4d:82:89:ad:72:bd:e5:8e:e8:f9:b7:0a:6d:f2:65:66:
97:aa:95:ec:6f:6c:62:d3:ec:7d:ba:bd:b5:6e:9b:1a:ae:75:
33:0f:cd:78:1e:52:e5:cc:dd:bf:a4:23:18:0b:e0:35:b2:28:
8b:18:18:5c:81:d5:72:45:1d:0c:7f:02:12:92:cc:5a:37:7c:
cf:7a:67:77:56:14:6a:16:d5:4e:49:3d:f5:bc:3d:ef:da:15:
4c:86:9f:45:41:ee:10:6d:d9:d5:61:c1:1b:c0:c3:90:18:84:
95:21:2d:d1:2d:9b:03:47:40:d7:a3:99:98:a7:1a:61:73:bc:
70:19:ba:84:40:09:72:c3:e7:9f:73:35:1d:95:ee:06:30:50:
8d:0d:55:cb:10:22:c6:cb:c3:2b:cf:a0:e7:f3:08:46:11:42:
d3:ba:54:94:4c:a0:3a:cf:74:26:2e:bf:5b:3b:29:de:ff:5a:
89:1c:b0:51:2f:4f:5c:22:da:26:ad:32:35:c1:ae:0b:3f:ff:
ae:70:25:28:f3:68:2c:b4:20:cc:29:2b:3c:94:e0:b6:79:7a:
d2:8a:f2:00:b2:1b:7a:58:36:de:35:ba:d6:f1:5a:b3:12:87:
37:0e:92:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org