Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/L2y2V0Jnd00noKHRTYEEvp4HC4A.roa
File: L2y2V0Jnd00noKHRTYEEvp4HC4A.roa (raw, json)
Hash identifier: FLiEFOHvytbLF0Bi2RCuPBeXLY09NCaij0SHolAX/hs=
Subject key identifier: 2F:6C:B6:57:42:67:77:4D:27:A0:A1:D1:4D:81:04:BE:9E:07:0B:80
Certificate issuer: /CN=306d618355bd8937f75bb4650bb5c1af70f9a12e
Certificate serial: 018E090A864DFA258C3027FBA4B7C5C40713
Authority key identifier: 30:6D:61:83:55:BD:89:37:F7:5B:B4:65:0B:B5:C1:AF:70:F9:A1:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MG1hg1W9iTf3W7RlC7XBr3D5oS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/L2y2V0Jnd00noKHRTYEEvp4HC4A.roa
Signing time: Mon 04 Mar 2024 10:37:48 +0000
ROA not before: Mon 04 Mar 2024 10:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59723
IP address blocks: 185.186.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 11:03:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:0a:86:4d:fa:25:8c:30:27:fb:a4:b7:c5:c4:07:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306d618355bd8937f75bb4650bb5c1af70f9a12e
Validity
Not Before: Mar 4 10:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f6cb6574267774d27a0a1d14d8104be9e070b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:64:2d:a1:71:ba:24:9b:26:ff:3d:bb:35:ac:
8a:63:f7:2e:b1:1f:ac:92:b7:ac:5c:85:4f:2f:9c:
2b:f8:85:c3:0d:d9:bb:65:3c:d9:26:b1:21:71:53:
4b:0a:3d:38:fa:ae:83:27:40:9e:83:e2:3c:c1:c0:
28:8f:83:fc:7a:50:d0:33:90:bf:3d:8b:cc:31:4d:
e2:31:ef:62:73:00:67:d4:10:40:d4:26:73:9f:cd:
ef:44:e0:15:de:09:18:3a:09:e2:f9:4d:14:b9:31:
76:55:de:aa:46:a8:ca:7b:d0:dd:6c:9d:dc:27:db:
b0:91:c5:8d:85:4b:b0:80:74:f2:90:3d:e8:0e:31:
fc:69:56:7b:aa:f4:bf:13:2d:e4:38:92:99:f7:ac:
97:8e:76:49:58:9f:39:2a:20:a9:6d:06:34:fc:d5:
35:23:82:ea:00:35:1d:db:5e:5e:e1:23:b2:de:83:
ef:77:3c:bc:37:16:7c:88:0b:e0:a0:12:ff:db:a0:
07:17:51:a6:ce:1f:a0:a3:a7:aa:9f:ed:5e:44:34:
e2:99:26:4a:ae:0c:09:1b:75:e1:cf:e0:12:f2:e3:
d9:1a:66:5c:17:ca:df:55:47:37:d4:b2:f8:b4:7d:
05:de:f8:65:dd:d5:87:24:96:d5:55:51:5d:ae:dc:
e4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6C:B6:57:42:67:77:4D:27:A0:A1:D1:4D:81:04:BE:9E:07:0B:80
X509v3 Authority Key Identifier:
keyid:30:6D:61:83:55:BD:89:37:F7:5B:B4:65:0B:B5:C1:AF:70:F9:A1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MG1hg1W9iTf3W7RlC7XBr3D5oS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/L2y2V0Jnd00noKHRTYEEvp4HC4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/MG1hg1W9iTf3W7RlC7XBr3D5oS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.180.0/24
Signature Algorithm: sha256WithRSAEncryption
64:57:13:16:ff:dd:8d:e8:3a:15:07:f5:68:59:29:07:fd:a9:
d7:f2:f9:4d:c2:1a:f3:a6:22:d2:7f:d4:b1:b7:11:5e:f2:4f:
1b:21:65:af:01:a8:63:60:a6:e8:bd:3c:49:02:e4:b7:a1:b3:
6f:c4:d4:34:64:eb:f2:8e:12:5a:7e:b0:50:61:5b:60:b4:e4:
32:c9:75:02:2a:2d:57:bc:b1:65:c5:5e:06:1b:49:00:90:05:
ed:d2:bc:97:23:20:24:a5:0b:90:1e:6e:87:3c:97:c9:fc:a4:
8e:01:41:63:69:2a:69:34:10:10:98:2b:1d:6b:a6:a8:11:4d:
5c:00:46:09:1d:d6:f2:74:28:21:58:70:3c:2c:a2:ba:b0:73:
82:15:58:66:a1:c6:1c:d9:c0:a8:05:ce:ee:42:6a:8a:8d:e1:
8d:ab:ed:91:56:5f:5e:e6:89:28:8c:80:7b:29:60:e9:ed:db:
71:a7:0f:25:9e:75:3e:6f:8f:73:de:ad:e2:67:36:56:52:a9:
84:91:27:ec:5c:3e:c3:03:32:94:73:46:30:80:59:20:be:9a:
1f:12:4a:06:d7:11:ec:91:18:cf:6d:70:66:33:1e:dc:0f:88:
ce:ea:b2:55:4e:a4:01:30:6a:72:7a:21:97:dd:02:67:ed:3e:
69:3b:5b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:08 2024 by rpki-client on console-ams.rpki-client.org