Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/PtgTJZPXDmpGOsHuGkA4977usn0.roa
File: PtgTJZPXDmpGOsHuGkA4977usn0.roa (raw, json)
Hash identifier: 1rYJVASRwRghXN4U2yPbjwepcc0C9FkWEwAzqGXdUiI=
Subject key identifier: 3E:D8:13:25:93:D7:0E:6A:46:3A:C1:EE:1A:40:38:F7:BE:EE:B2:7D
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 018ADE53F94A75223C6F44816B3F18977475
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/PtgTJZPXDmpGOsHuGkA4977usn0.roa
Signing time: Fri 29 Sep 2023 00:25:59 +0000
ROA not before: Fri 29 Sep 2023 00:25:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.179.91.0/24 maxlen: 24
185.151.146.0/24 maxlen: 24
185.99.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 20:05:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:de:53:f9:4a:75:22:3c:6f:44:81:6b:3f:18:97:74:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Sep 29 00:25:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ed8132593d70e6a463ac1ee1a4038f7beeeb27d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7e:d7:b4:6e:f1:12:06:b9:29:6c:18:5f:82:
54:70:15:28:2b:79:e2:bb:c7:cb:fb:88:f7:cc:e9:
3e:b5:22:41:87:c0:5b:28:b2:a3:45:cc:2e:80:1f:
d4:99:4a:82:d7:d9:f7:45:e2:91:88:a5:fe:f9:2c:
54:b6:27:8f:b1:b9:d2:c1:1c:0b:2c:8a:8a:c7:9e:
e3:d1:7a:15:47:ee:e2:d1:56:50:db:d8:16:db:33:
68:b3:39:a0:7f:e4:ba:f2:1e:11:6b:c2:84:f9:d1:
b8:fb:26:69:96:35:e4:ac:56:df:00:b1:ca:3a:29:
10:15:99:1d:8d:66:4b:e2:72:7c:eb:8d:2c:ce:d6:
6f:0e:30:17:7d:5d:ce:f1:87:bd:d0:b5:97:17:f4:
82:47:48:ee:c9:f2:bb:4f:8a:09:fa:ab:9b:c2:c1:
d0:bc:9e:c0:58:d1:c2:5a:3f:4b:5a:18:dc:48:94:
9e:bc:41:a4:92:33:42:21:f0:54:3a:f6:d4:41:8b:
43:7d:8b:f8:4b:66:f1:e2:d7:1d:ae:32:5c:5c:93:
02:71:82:5a:1f:44:39:99:a9:43:2b:7e:a4:33:1c:
09:2f:46:b2:26:27:52:af:93:57:32:69:c4:33:7c:
cb:0a:87:8b:72:93:a4:75:0b:0f:34:24:2d:6a:65:
c9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D8:13:25:93:D7:0E:6A:46:3A:C1:EE:1A:40:38:F7:BE:EE:B2:7D
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/PtgTJZPXDmpGOsHuGkA4977usn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
185.151.146.0/24
185.179.91.0/24
Signature Algorithm: sha256WithRSAEncryption
76:08:af:1a:8c:b6:4d:5d:8c:3c:dc:68:0c:88:d9:6c:24:2b:
1b:aa:2d:2e:d4:1d:57:dd:46:46:24:b1:a5:21:8f:d7:79:2a:
6f:38:3e:ac:18:2b:f4:7e:20:d0:a6:7b:86:78:d9:99:72:08:
57:8c:2d:f8:3d:84:11:58:3e:48:c6:08:ba:d8:4f:48:d2:1d:
10:f0:3a:7c:72:d2:52:01:9c:43:6e:46:6d:71:47:a0:62:49:
f2:f6:45:36:d7:a8:37:b4:43:39:a3:57:50:02:77:b3:0d:dd:
c1:20:5b:10:6b:29:47:b7:30:51:09:59:85:6c:b8:f4:d0:52:
83:41:ad:ba:29:95:98:85:5b:d9:02:02:ef:ec:af:45:70:5a:
71:4c:e4:79:32:e1:10:10:5c:eb:8b:c7:79:a8:d5:ed:c8:58:
99:13:7a:ac:3f:94:72:d5:a7:8f:94:71:fb:24:d6:ad:a3:fc:
8e:09:ab:5e:13:e6:0a:f6:53:b6:00:f8:27:3e:6d:7e:89:f6:
e0:e8:85:0e:8d:3e:be:73:f4:25:d7:50:34:0a:b1:59:d3:e8:
75:2f:34:ba:09:52:07:36:9b:b6:04:05:50:9f:70:91:28:e3:
d7:f8:29:f1:1f:2b:75:80:d0:d3:35:9c:ff:c9:08:d7:64:be:
ff:4c:07:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:42 2024 by rpki-client on console-ams.rpki-client.org