Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/ibWz86yBohVY7d07PaZ2Hy-4SCA.roa
File: ibWz86yBohVY7d07PaZ2Hy-4SCA.roa (raw, json)
Hash identifier: hCoobjyLLX0EI/2fNc1eilg46iynkb1AycjshIVb9ho=
Subject key identifier: 89:B5:B3:F3:AC:81:A2:15:58:ED:DD:3B:3D:A6:76:1F:2F:B8:48:20
Certificate issuer: /CN=6284cfa7844340237fe59a3825b54f3f77ed8532
Certificate serial: 0186DB61045893E15864DF89F40CD7BB5770
Authority key identifier: 62:84:CF:A7:84:43:40:23:7F:E5:9A:38:25:B5:4F:3F:77:ED:85:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YoTPp4RDQCN_5Zo4JbVPP3fthTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/ibWz86yBohVY7d07PaZ2Hy-4SCA.roa
Signing time: Mon 13 Mar 2023 14:30:13 +0000
ROA not before: Mon 13 Mar 2023 14:30:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201905
IP address blocks: 185.60.116.0/22 maxlen: 24
185.60.116.0/24 maxlen: 24
185.60.118.0/23 maxlen: 23
185.60.117.0/24 maxlen: 24
2a02:71e0::/32 maxlen: 36
2a02:71e0::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 18 Oct 2023 23:32:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:db:61:04:58:93:e1:58:64:df:89:f4:0c:d7:bb:57:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6284cfa7844340237fe59a3825b54f3f77ed8532
Validity
Not Before: Mar 13 14:30:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89b5b3f3ac81a21558eddd3b3da6761f2fb84820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fc:ed:ca:f7:bf:1a:c1:98:8c:b1:d6:47:f2:
e7:80:c1:31:cf:a1:ee:4c:0d:9c:23:ca:e4:45:01:
d2:ae:1e:3e:19:1d:73:bd:07:e5:13:34:fe:cb:88:
3b:4f:e7:0b:3a:f3:81:3e:ce:39:c0:b2:76:88:fd:
b1:f3:df:ad:44:1d:bf:eb:03:12:c3:f5:a5:6b:83:
a0:97:fc:c8:74:ca:72:a4:b1:e8:64:f4:2a:22:7d:
fe:3a:c5:fb:b2:e7:ff:8c:39:6d:d7:0f:ce:63:3f:
7b:ff:68:1a:c9:41:0c:ce:59:fa:b8:31:f1:91:51:
a8:3f:f6:e1:4c:7b:4f:5e:5c:c7:a6:9d:b4:4f:06:
68:77:a4:db:1e:6f:2a:6b:77:f9:be:78:a7:b7:22:
9c:f6:15:59:ba:27:c5:c7:60:10:a4:c3:d1:3a:1c:
e5:b9:49:af:1e:7c:17:d8:69:ad:40:1f:88:dc:8e:
7f:c6:ba:0d:b1:1a:74:b8:64:ff:cd:c9:52:8a:85:
1f:ac:ce:48:94:2e:ca:37:9b:d7:55:2b:45:d1:ec:
be:12:21:d8:23:8b:d7:bc:16:78:f5:04:7e:7a:41:
ce:1e:71:30:72:04:35:c3:66:8e:64:8c:9c:82:9f:
2c:70:95:f7:eb:d2:9e:42:34:29:7d:b4:05:d9:08:
dd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B5:B3:F3:AC:81:A2:15:58:ED:DD:3B:3D:A6:76:1F:2F:B8:48:20
X509v3 Authority Key Identifier:
keyid:62:84:CF:A7:84:43:40:23:7F:E5:9A:38:25:B5:4F:3F:77:ED:85:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YoTPp4RDQCN_5Zo4JbVPP3fthTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/ibWz86yBohVY7d07PaZ2Hy-4SCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/fc1e32-0ba7-4f8d-a5aa-f38f8fe794d4/1/YoTPp4RDQCN_5Zo4JbVPP3fthTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.116.0/22
IPv6:
2a02:71e0::/32
Signature Algorithm: sha256WithRSAEncryption
92:a1:8e:ce:10:dc:71:7e:8f:f3:41:ef:be:52:8a:e4:d4:86:
f6:a7:37:2f:61:69:46:96:c4:5a:1c:16:c6:1f:6b:41:d1:6e:
e1:eb:c0:d2:d2:1a:dc:f6:7d:cf:12:3b:9f:9e:ea:26:e2:78:
1d:5d:5b:88:57:69:84:35:46:49:a6:a6:58:44:aa:f1:ac:5d:
57:bb:be:2f:2b:01:c8:61:90:f9:85:c6:3a:81:91:ee:b7:24:
4f:2d:1b:57:67:53:6d:f6:e8:73:bb:4f:39:71:16:e0:c8:7e:
29:1c:01:65:ec:bc:af:07:6f:0c:21:36:e3:bb:ae:2b:99:cd:
cb:48:4a:e1:55:66:c9:e4:e5:de:66:32:73:ce:e4:5d:94:9a:
a7:ea:5a:60:ab:8d:56:84:8b:89:be:6b:6f:34:98:9c:d4:f6:
05:63:16:a5:4f:4b:a9:21:ef:b8:9b:7c:c1:3e:ea:8c:57:1b:
0c:c3:a9:ed:27:f0:e4:70:39:cf:e0:0f:09:f9:07:c3:93:93:
7a:e8:92:32:34:60:6e:ea:6c:d6:7c:5c:83:9d:d5:bf:68:a0:
b0:a7:2d:f2:cf:56:43:ba:61:e6:19:67:1f:8f:ae:65:51:d4:
ba:d8:d5:6b:96:67:16:77:8b:b2:46:54:fb:b4:00:88:82:40:
28:ac:29:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:57 2024 by rpki-client on console-ams.rpki-client.org