Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/I4PfQ-ke75HBGJ-FzvVFRmT-8uM.roa
File: I4PfQ-ke75HBGJ-FzvVFRmT-8uM.roa (raw, json)
Hash identifier: vgHgUQELuIgEqGgokIX9ztKQ/oCxq4uch87FyR518O0=
Subject key identifier: 23:83:DF:43:E9:1E:EF:91:C1:18:9F:85:CE:F5:45:46:64:FE:F2:E3
Certificate issuer: /CN=6284cfa7844340237fe59a3825b54f3f77ed8532
Certificate serial: 018572B403DCBC13A937210F31B711E1F9C3
Authority key identifier: 62:84:CF:A7:84:43:40:23:7F:E5:9A:38:25:B5:4F:3F:77:ED:85:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YoTPp4RDQCN_5Zo4JbVPP3fthTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/I4PfQ-ke75HBGJ-FzvVFRmT-8uM.roa
Signing time: Mon 02 Jan 2023 13:37:58 +0000
ROA not before: Mon 02 Jan 2023 13:37:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201905
IP address blocks: 185.60.116.0/22 maxlen: 24
185.60.116.0/24 maxlen: 24
2a02:71e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 13 Mar 2023 14:25:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:03:dc:bc:13:a9:37:21:0f:31:b7:11:e1:f9:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6284cfa7844340237fe59a3825b54f3f77ed8532
Validity
Not Before: Jan 2 13:37:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2383df43e91eef91c1189f85cef5454664fef2e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9a:f9:8e:05:3d:f8:05:29:0d:0b:73:e1:b7:
32:c7:bb:62:84:6b:3e:04:81:eb:9b:a9:f5:b8:a3:
92:d0:47:3b:64:40:b4:47:a8:2a:2a:4e:83:a9:1b:
55:c0:02:80:25:07:40:10:1e:84:c5:18:c6:4d:48:
96:52:85:90:37:10:62:86:46:98:12:ef:4d:5e:c0:
55:43:72:1d:49:f3:60:d7:31:5b:1b:ab:d1:ec:f8:
a4:b3:3e:c8:ec:3d:3d:4f:e2:1a:f7:ac:07:37:0e:
1b:e9:7a:df:4b:cd:aa:a1:c1:0b:2d:4f:1e:97:82:
b2:d3:b5:81:59:aa:31:eb:29:bb:38:ba:49:47:09:
43:d0:bd:55:d6:f5:f4:ea:bd:20:31:6f:8c:e0:38:
19:af:49:1b:89:2d:0c:77:cd:b6:a9:d8:fb:82:f1:
b4:5a:4e:94:e2:c2:19:f7:fa:0f:41:1d:8e:22:4e:
19:0d:d9:3a:f2:80:47:33:81:00:0a:4d:06:7f:a7:
51:f6:b3:5d:d2:f6:50:a2:23:63:c1:20:9d:86:17:
6a:43:f1:1f:6a:76:37:2b:69:00:68:98:6f:01:3a:
1a:69:f1:a8:7c:8e:51:7c:f0:7d:40:b8:5c:18:f9:
e4:92:f1:cf:1d:34:4c:db:c1:82:d7:56:28:a2:52:
99:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:83:DF:43:E9:1E:EF:91:C1:18:9F:85:CE:F5:45:46:64:FE:F2:E3
X509v3 Authority Key Identifier:
keyid:62:84:CF:A7:84:43:40:23:7F:E5:9A:38:25:B5:4F:3F:77:ED:85:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YoTPp4RDQCN_5Zo4JbVPP3fthTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/I4PfQ-ke75HBGJ-FzvVFRmT-8uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/YoTPp4RDQCN_5Zo4JbVPP3fthTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.116.0/22
IPv6:
2a02:71e0::/32
Signature Algorithm: sha256WithRSAEncryption
03:59:75:92:b0:b1:5e:e1:c7:3d:ce:d8:76:bc:dc:16:af:92:
22:82:24:ea:69:a1:5d:9f:eb:ae:30:e7:3e:2e:72:bf:31:ee:
6e:bc:e4:86:6f:7f:1c:4a:ae:e4:73:57:39:7c:1e:6a:2f:44:
28:1e:28:c2:9d:6f:b2:c7:78:c4:7b:1a:1e:cc:b2:cc:b7:f3:
ff:00:9a:7a:cb:87:45:fb:ec:b4:5f:8b:22:6b:43:1a:d4:a5:
af:b3:16:82:ef:31:03:10:3d:4b:3d:1e:ce:35:4e:50:50:fc:
4b:3b:3c:b3:77:11:a3:20:a6:5a:17:0c:8c:e6:2e:46:d6:db:
13:6f:87:a2:c6:5a:e2:85:61:da:4d:72:4f:4f:46:bd:4c:dc:
a9:9d:79:b9:58:ad:7f:79:95:92:67:df:a8:96:2f:6f:37:0d:
4f:dc:61:b5:de:54:91:92:a8:79:06:dc:dd:91:a5:89:b1:3d:
22:f6:db:35:c1:c9:ea:a0:3a:dd:ce:2c:ae:5f:7b:18:9c:6f:
52:21:7d:1a:47:36:57:2b:78:56:b0:76:d3:cd:c0:c7:dd:c1:
5a:bf:2c:ea:15:7f:dc:4a:51:07:ca:2d:00:b4:a8:03:16:46:
42:af:8f:92:63:60:24:df:5d:3f:54:96:ad:b8:6d:93:82:0a:
72:67:ec:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:57 2024 by rpki-client on console-ams.rpki-client.org