Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/_51VeODTe6etEUMjHbCeGLJMV3U.roa
File: _51VeODTe6etEUMjHbCeGLJMV3U.roa (raw, json)
Hash identifier: pucMfeafRVaHIghk/jYprDhLFxbBbciaLJvZd7FJ5MQ=
Subject key identifier: FF:9D:55:78:E0:D3:7B:A7:AD:11:43:23:1D:B0:9E:18:B2:4C:57:75
Certificate issuer: /CN=6284cfa7844340237fe59a3825b54f3f77ed8532
Certificate serial: 018B4521D3228C7CD34B0685BC29E743456B
Authority key identifier: 62:84:CF:A7:84:43:40:23:7F:E5:9A:38:25:B5:4F:3F:77:ED:85:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YoTPp4RDQCN_5Zo4JbVPP3fthTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/_51VeODTe6etEUMjHbCeGLJMV3U.roa
Signing time: Wed 18 Oct 2023 23:32:06 +0000
ROA not before: Wed 18 Oct 2023 23:32:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201905
IP address blocks: 185.60.116.0/24 maxlen: 24
185.60.116.0/22 maxlen: 24
185.60.118.0/23 maxlen: 23
185.60.117.0/24 maxlen: 24
2a02:71e0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:45:21:d3:22:8c:7c:d3:4b:06:85:bc:29:e7:43:45:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6284cfa7844340237fe59a3825b54f3f77ed8532
Validity
Not Before: Oct 18 23:32:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff9d5578e0d37ba7ad1143231db09e18b24c5775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:62:c1:05:17:18:8d:63:a9:81:9e:c6:19:90:
ef:ea:78:c8:f5:3a:6a:f8:74:d0:61:64:e4:0f:9d:
61:cb:e4:1b:c5:4a:5e:3c:ad:47:e6:09:56:8b:87:
21:fd:68:e5:8d:28:77:7d:0c:48:71:52:0c:eb:2d:
cc:4f:e8:04:d7:41:1e:44:0b:cc:0d:18:af:36:b8:
f9:74:3a:6c:e9:48:51:3f:68:ea:ee:be:d0:49:5c:
0d:a4:dd:94:80:cc:51:c4:b5:c6:46:d5:e5:52:62:
ef:94:7d:6b:5d:6f:3c:dc:26:3e:bb:63:c0:85:d6:
28:ea:c3:48:b7:7a:ac:17:20:d2:00:01:e8:1b:8e:
db:41:f4:61:eb:de:c4:52:8b:95:28:d3:a0:17:22:
51:06:41:bb:89:aa:ae:60:b2:8e:2d:b5:24:66:1b:
af:b1:2b:6f:93:12:d0:37:c7:c6:88:36:2e:f9:d7:
07:3f:59:07:cc:d8:d8:e8:6f:41:0c:6c:30:30:c3:
0f:d4:e7:79:92:67:d1:88:d1:b7:75:47:e8:da:fe:
7d:13:0a:99:e2:b1:86:0a:6b:0a:f4:63:a0:11:bc:
7b:12:81:46:43:c4:1c:f6:87:df:35:f1:fc:7c:c6:
04:0d:a5:97:01:6a:7a:f9:1f:b3:6a:48:9a:01:6f:
cf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9D:55:78:E0:D3:7B:A7:AD:11:43:23:1D:B0:9E:18:B2:4C:57:75
X509v3 Authority Key Identifier:
keyid:62:84:CF:A7:84:43:40:23:7F:E5:9A:38:25:B5:4F:3F:77:ED:85:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YoTPp4RDQCN_5Zo4JbVPP3fthTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/_51VeODTe6etEUMjHbCeGLJMV3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/YoTPp4RDQCN_5Zo4JbVPP3fthTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.116.0/22
IPv6:
2a02:71e0::/48
Signature Algorithm: sha256WithRSAEncryption
64:2f:ae:22:0c:8d:c7:8a:b3:06:c1:46:c6:7a:0c:dc:95:b2:
85:ed:38:e6:28:a9:5c:15:18:50:ed:5a:0e:37:06:d8:f1:f3:
fc:6e:36:76:a6:b3:4b:6f:81:d1:01:81:db:f6:77:26:2c:ea:
e9:80:b4:10:61:d6:b8:b4:0d:a3:af:79:02:65:22:76:cb:3b:
90:cd:f0:29:55:9c:0e:d9:ac:33:0c:3e:4c:91:20:0a:57:0f:
db:83:ca:da:a2:7b:fc:c6:4f:50:70:07:45:c3:dc:25:0f:cf:
a7:ee:0b:0e:82:54:c2:0e:65:33:74:eb:88:eb:27:34:7d:0d:
f8:b7:ac:07:c3:66:20:82:1a:ef:72:e8:60:20:3b:c1:91:f2:
b5:5f:98:44:0a:f7:22:0c:ab:a5:4c:24:5d:5c:0e:bb:01:8d:
85:82:06:a9:b8:48:20:89:82:b3:02:c2:5b:7d:2c:83:55:9a:
b2:0b:1e:6d:46:ab:2c:30:17:4a:60:8b:6f:39:8b:73:b6:89:
fa:93:53:54:da:48:91:ad:4c:c4:ec:32:99:32:1a:a8:54:63:
43:5d:17:b5:88:75:30:5e:96:cf:ac:ad:bf:aa:a9:00:ff:8a:
d2:62:b8:5e:f4:ed:3c:9c:d0:e3:2d:cc:08:50:4c:b1:14:f8:
69:16:40:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:57 2024 by rpki-client on console-ams.rpki-client.org