Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/CyZ-COYlI2UvwTcCYzWMqL0DehM.roa
File: CyZ-COYlI2UvwTcCYzWMqL0DehM.roa (raw, json)
Hash identifier: nRTeZ7sV1Dyk1iiG3jFdHmM1APBWcm5+yi77WvcX++Y=
Subject key identifier: 0B:26:7E:08:E6:25:23:65:2F:C1:37:02:63:35:8C:A8:BD:03:7A:13
Certificate issuer: /CN=6284cfa7844340237fe59a3825b54f3f77ed8532
Certificate serial: 018E388F16447FA0191003BA9865D0A4AAEE
Authority key identifier: 62:84:CF:A7:84:43:40:23:7F:E5:9A:38:25:B5:4F:3F:77:ED:85:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YoTPp4RDQCN_5Zo4JbVPP3fthTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/CyZ-COYlI2UvwTcCYzWMqL0DehM.roa
Signing time: Wed 13 Mar 2024 16:04:45 +0000
ROA not before: Wed 13 Mar 2024 16:04:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201905
IP address blocks: 185.60.116.0/22 maxlen: 24
185.60.116.0/24 maxlen: 24
185.60.117.0/24 maxlen: 24
185.60.118.0/24 maxlen: 24
185.60.119.0/24 maxlen: 24
2a02:71e0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 31 Mar 2024 23:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:8f:16:44:7f:a0:19:10:03:ba:98:65:d0:a4:aa:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6284cfa7844340237fe59a3825b54f3f77ed8532
Validity
Not Before: Mar 13 16:04:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b267e08e62523652fc1370263358ca8bd037a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f2:03:2e:96:68:fc:ea:5a:ef:f0:cf:a8:d3:
9e:09:80:98:ac:4a:6a:6d:a3:a7:3a:33:ce:b3:2f:
fc:0d:a3:0c:bc:a3:65:71:51:fd:50:38:75:6f:98:
08:21:15:25:99:4a:66:52:13:7d:03:21:1d:22:d6:
a8:c3:3a:ae:fa:9a:fa:fc:8d:40:86:5d:01:01:c3:
b0:99:53:1a:47:a5:7f:15:ae:3f:6c:5e:2e:07:7d:
39:a6:c3:d6:78:34:31:6e:32:ad:a8:92:b1:89:9b:
c7:b9:9e:17:f1:8b:83:a7:23:66:42:ed:5f:cb:f4:
30:f1:61:22:cd:aa:b6:e6:bb:7d:be:cc:37:5d:07:
fe:d6:51:dc:a1:ea:84:5e:54:86:80:90:0b:3f:da:
a0:2f:17:9d:bb:4f:8a:cf:d3:e6:92:39:9b:4f:1d:
01:4d:0d:3f:39:b6:a7:eb:03:59:ec:15:e3:61:47:
49:63:a2:52:9a:5d:d9:ec:bf:58:32:7b:29:be:60:
f6:ea:cc:70:7b:25:df:53:21:67:e8:81:77:6e:52:
d0:ee:37:a9:23:4e:d1:fb:72:17:e5:0b:45:80:24:
10:a5:57:28:db:56:82:3e:4c:e3:05:57:d4:6d:5a:
dd:35:31:8d:60:ab:a7:eb:b4:c9:07:56:3f:ad:cc:
e2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:26:7E:08:E6:25:23:65:2F:C1:37:02:63:35:8C:A8:BD:03:7A:13
X509v3 Authority Key Identifier:
keyid:62:84:CF:A7:84:43:40:23:7F:E5:9A:38:25:B5:4F:3F:77:ED:85:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YoTPp4RDQCN_5Zo4JbVPP3fthTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/CyZ-COYlI2UvwTcCYzWMqL0DehM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/YoTPp4RDQCN_5Zo4JbVPP3fthTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.116.0/22
IPv6:
2a02:71e0::/48
Signature Algorithm: sha256WithRSAEncryption
3d:20:ae:61:ef:1c:4a:4c:82:a9:86:4a:94:3a:2c:c5:95:da:
6f:03:ee:33:db:e9:4f:4b:ee:8d:ad:7e:2b:13:b3:de:a2:11:
52:ec:41:e7:32:50:e6:a7:62:c3:a1:bf:60:3d:c2:9e:38:e6:
5f:da:23:f8:ae:b8:10:fb:09:c6:8e:f7:5f:28:46:9f:e7:23:
0c:1d:4b:64:f3:d6:79:21:c4:21:dd:99:20:b8:58:01:4f:2f:
fb:a8:d8:29:4d:a9:b0:2e:0b:56:7f:d8:6a:81:47:a8:4d:00:
bd:2b:db:c8:cc:f0:3f:22:53:0b:78:64:a8:25:a4:c9:0b:2b:
49:cd:a4:ea:6b:8f:fc:ad:b2:61:33:f4:36:0a:4d:7a:db:bc:
f8:40:78:57:07:79:7d:04:8d:a9:e9:c4:85:b7:ab:d9:c9:9e:
e8:af:ea:26:02:fc:6b:e2:8e:e3:eb:ce:a5:2f:6e:52:35:58:
88:76:1f:fe:74:ba:38:96:51:b8:d2:99:d4:6f:4a:1d:2b:53:
4d:d0:78:7b:53:e8:57:3a:59:d2:1d:43:68:85:c2:fa:77:0d:
0f:cb:10:e9:ec:a2:9c:ff:38:92:25:35:a7:bb:bc:67:af:b0:
82:4c:bd:0b:e1:3f:bc:b8:8f:d6:68:8a:c1:07:38:64:0a:c8:
2c:6b:87:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:57 2024 by rpki-client on console-ams.rpki-client.org