Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/BtyjjJgOYBewdQuYc0eOZPHX3Kc.roa
File: BtyjjJgOYBewdQuYc0eOZPHX3Kc.roa (raw, json)
Hash identifier: KB8o21zaMq44QXzsTa5QJEOE6eyCFrquznq2o88KOVc=
Subject key identifier: 06:DC:A3:8C:98:0E:60:17:B0:75:0B:98:73:47:8E:64:F1:D7:DC:A7
Certificate issuer: /CN=335c3336e2ce3bd75ab29ce81e54ff81ec56f1da
Certificate serial: 01856C9CB5ED1B09076ECC83CCC5E1F3226C
Authority key identifier: 33:5C:33:36:E2:CE:3B:D7:5A:B2:9C:E8:1E:54:FF:81:EC:56:F1:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1wzNuLOO9daspzoHlT_gexW8do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/BtyjjJgOYBewdQuYc0eOZPHX3Kc.roa
Signing time: Sun 01 Jan 2023 09:14:47 +0000
ROA not before: Sun 01 Jan 2023 09:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29644
IP address blocks: 185.150.220.0/24 maxlen: 24
185.150.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:b5:ed:1b:09:07:6e:cc:83:cc:c5:e1:f3:22:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335c3336e2ce3bd75ab29ce81e54ff81ec56f1da
Validity
Not Before: Jan 1 09:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06dca38c980e6017b0750b9873478e64f1d7dca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:33:76:8f:0d:3b:71:cd:28:fd:a0:48:2d:9a:
b8:1c:78:d2:3b:c4:0b:29:82:e0:a0:4d:b5:29:c5:
f8:ce:39:13:ca:0f:72:46:61:c0:0c:47:43:01:29:
9a:1f:e0:6a:22:54:49:d9:d4:51:13:07:af:92:60:
ea:67:b7:3f:a5:05:48:94:c4:78:7c:b5:19:f3:3c:
1a:eb:7c:ed:1c:23:ce:d0:8c:1b:2f:cd:0d:cc:3b:
d2:51:0c:0c:29:1b:5c:24:60:f1:7b:a4:0e:62:e6:
d7:5e:47:73:71:6e:5e:c0:ea:ca:2a:bc:cc:1f:fa:
c9:8f:85:04:32:70:f0:4b:1a:01:9e:1b:41:08:3e:
aa:40:07:08:23:8c:90:8d:4a:36:a0:ab:06:52:df:
cd:dd:18:04:6e:29:d4:02:ab:e4:60:11:ee:c7:04:
a2:f0:a4:39:15:17:09:e5:92:41:e9:e9:cf:89:77:
f9:d0:06:98:8a:e4:b6:45:9d:a9:b6:c2:e7:1c:c7:
bd:6b:a6:b2:7f:b4:f3:b4:d0:31:26:12:75:d5:58:
86:62:0f:9e:2f:a1:a2:9f:66:57:69:eb:07:ec:34:
75:57:0d:6d:1e:93:d8:aa:eb:1e:df:1c:21:52:77:
14:47:b7:0a:ef:33:de:c2:f3:3a:83:76:6e:69:99:
00:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:DC:A3:8C:98:0E:60:17:B0:75:0B:98:73:47:8E:64:F1:D7:DC:A7
X509v3 Authority Key Identifier:
keyid:33:5C:33:36:E2:CE:3B:D7:5A:B2:9C:E8:1E:54:FF:81:EC:56:F1:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1wzNuLOO9daspzoHlT_gexW8do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/BtyjjJgOYBewdQuYc0eOZPHX3Kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/M1wzNuLOO9daspzoHlT_gexW8do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.220.0/23
Signature Algorithm: sha256WithRSAEncryption
68:a2:33:97:a2:b7:ff:93:1f:04:f2:9e:45:50:2f:fb:a9:87:
17:69:ef:96:57:ff:4c:18:4a:5a:0a:94:76:88:b3:a5:8f:91:
61:15:2a:c7:18:a3:1c:b2:c5:c8:29:62:d2:2f:ca:d3:ee:e5:
e9:1b:4d:9f:a0:b4:f4:e5:2f:b1:d0:ff:7c:f2:ff:d1:ba:ba:
f0:68:b1:d6:27:b9:37:55:9b:55:0d:4e:e5:39:88:69:c3:31:
87:06:bb:9c:41:73:23:8c:46:35:69:60:ce:4d:27:40:66:19:
dd:20:f4:48:6d:f0:fd:42:01:a9:97:69:be:7c:0f:f0:7d:b6:
85:28:5e:9d:c9:79:f2:6b:50:ab:51:8f:5f:9d:61:91:da:75:
e3:9c:f1:31:6a:5d:63:49:36:cb:36:f9:ac:90:fd:bc:f9:da:
ff:70:68:2c:cd:ae:8c:33:6c:87:0a:c7:97:30:ac:02:5d:e4:
1b:00:f0:30:b2:aa:06:a3:14:9a:8f:18:f6:45:39:61:64:8d:
a5:04:dc:11:6c:8e:3c:55:43:27:21:cf:9a:0f:e0:5b:64:96:
a6:37:d7:a8:dd:61:78:ae:67:ad:47:c4:d4:fc:c8:62:46:b1:
ad:34:f1:74:72:58:65:a9:b4:1b:2c:5a:dc:bb:00:24:77:a4:
ea:57:db:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:40 2024 by rpki-client on console-fra.rpki-client.org