Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/5e29b5-f217-4b6b-8d2f-8973b2d7062c/1/0OIg6uimzNnm8EOX3d-2w5ATWi4.roa
File: 0OIg6uimzNnm8EOX3d-2w5ATWi4.roa (raw, json)
Hash identifier: M9oWW+dMnRLs4IXGwsNHrw0N6X4279ri8ElVoXJKcO4=
Subject key identifier: D0:E2:20:EA:E8:A6:CC:D9:E6:F0:43:97:DD:DF:B6:C3:90:13:5A:2E
Certificate issuer: /CN=c9b70d97edf28c76076c0f069b52bcd8e26ae0bd
Certificate serial: 018570705BDFA81B561601976E10FB50B8EB
Authority key identifier: C9:B7:0D:97:ED:F2:8C:76:07:6C:0F:06:9B:52:BC:D8:E2:6A:E0:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybcNl-3yjHYHbA8Gm1K82OJq4L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/5e29b5-f217-4b6b-8d2f-8973b2d7062c/1/0OIg6uimzNnm8EOX3d-2w5ATWi4.roa
Signing time: Mon 02 Jan 2023 03:04:49 +0000
ROA not before: Mon 02 Jan 2023 03:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60917
IP address blocks: 185.23.36.0/24 maxlen: 24
185.23.36.0/22 maxlen: 22
185.23.38.0/24 maxlen: 24
185.23.37.0/24 maxlen: 24
185.23.39.0/24 maxlen: 24
2a00:6860::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:5b:df:a8:1b:56:16:01:97:6e:10:fb:50:b8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b70d97edf28c76076c0f069b52bcd8e26ae0bd
Validity
Not Before: Jan 2 03:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0e220eae8a6ccd9e6f04397dddfb6c390135a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e3:a5:88:0f:0b:ba:3a:08:e5:13:1d:59:34:
2b:7b:e1:72:a0:ad:d5:6e:cb:d9:3e:ad:91:92:f0:
58:05:b2:42:2a:e9:2a:43:61:a3:fb:a2:bd:37:8f:
73:b5:22:7e:60:bd:7d:6f:07:b7:28:66:72:57:37:
b9:41:da:96:7c:87:3a:7a:95:b7:38:e5:9a:02:1e:
72:66:e2:52:ac:47:8d:0e:f9:49:7b:58:d2:c4:41:
bf:53:85:76:68:4a:b2:ce:10:d7:b4:e7:73:45:4f:
e4:b4:d7:3b:8e:05:af:f0:8c:2e:8c:97:1f:22:f0:
54:ba:2c:57:57:a7:d0:58:f6:89:2c:a6:6c:be:63:
76:b6:7a:e6:72:f2:5a:37:60:d3:08:1b:b3:b3:c2:
cb:8e:2a:56:00:cd:ff:23:fd:29:55:57:95:fb:2c:
be:08:5a:e4:7c:03:9f:a7:f6:53:b4:a2:12:10:7c:
9a:5b:5e:96:b4:a2:17:1e:b5:b0:09:ec:0f:3f:75:
76:d8:f8:94:5b:6e:53:37:80:06:5b:4b:3d:40:ae:
52:8a:6f:b7:ff:c7:1e:dc:a2:d3:42:11:6d:b6:67:
0f:fc:2a:f9:26:a4:59:e6:66:9f:bb:45:37:f2:47:
8c:d8:86:03:b6:26:37:d8:be:e4:cd:e1:22:ec:63:
98:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E2:20:EA:E8:A6:CC:D9:E6:F0:43:97:DD:DF:B6:C3:90:13:5A:2E
X509v3 Authority Key Identifier:
keyid:C9:B7:0D:97:ED:F2:8C:76:07:6C:0F:06:9B:52:BC:D8:E2:6A:E0:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybcNl-3yjHYHbA8Gm1K82OJq4L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5e29b5-f217-4b6b-8d2f-8973b2d7062c/1/0OIg6uimzNnm8EOX3d-2w5ATWi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5e29b5-f217-4b6b-8d2f-8973b2d7062c/1/ybcNl-3yjHYHbA8Gm1K82OJq4L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.36.0/22
IPv6:
2a00:6860::/32
Signature Algorithm: sha256WithRSAEncryption
63:40:ac:f8:3c:7d:8b:6f:2d:b3:f3:09:f4:c2:70:ee:3f:99:
94:86:fe:9a:c7:10:8f:5b:ff:c4:8e:ae:d2:d7:d5:d9:a0:a5:
5d:9d:55:69:bd:33:27:b7:22:98:c1:06:58:2a:56:76:12:a5:
82:2b:fb:43:92:39:b1:27:fc:45:db:38:2e:f7:59:56:2a:78:
d2:a6:e5:86:f3:c3:a8:84:3f:be:82:fa:0a:16:9a:81:0c:56:
3d:b3:e3:a5:b8:0e:67:b5:c6:0b:c2:8d:e4:7d:69:fd:e7:79:
ac:c7:e4:29:6b:2c:a6:d4:83:a3:1f:6f:83:8d:1e:61:33:b2:
c2:4f:32:4a:b2:c5:5f:5c:d7:f2:3a:2e:7e:43:01:b4:e4:7c:
b8:aa:04:09:f5:30:b7:97:38:eb:94:9d:ff:fa:fa:be:aa:9f:
e2:d1:b2:a2:70:d7:95:ed:8e:02:0f:64:d7:64:94:51:47:bf:
ae:03:45:d3:96:ba:b8:16:a5:eb:72:26:23:ad:47:d7:7a:b4:
2c:7c:d7:32:a0:53:26:69:06:05:f1:b4:18:63:f4:bf:e9:ce:
b8:96:dc:16:51:37:10:ef:92:43:38:7e:39:05:c4:27:c7:3f:
5a:14:02:60:8e:18:48:5b:18:af:f6:6a:12:4b:67:d5:d2:86:
72:3e:60:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:41 2024 by rpki-client on console-fra.rpki-client.org