Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/597e45-cde4-4c34-8bea-c97e373d704c/1/bGaQYdgKbyCtvSYqK27FQqxay1g.roa
File: bGaQYdgKbyCtvSYqK27FQqxay1g.roa (raw, json)
Hash identifier: 7V247G1xwbKLul5NXqqjNvGKAYvbmiAUihskOQP/ch4=
Subject key identifier: 6C:66:90:61:D8:0A:6F:20:AD:BD:26:2A:2B:6E:C5:42:AC:5A:CB:58
Certificate issuer: /CN=7b6ed027d37bd6109a0311e2869d344ad95935f9
Certificate serial: 01856B00D09547DB8247362E64ACEDC092BF
Authority key identifier: 7B:6E:D0:27:D3:7B:D6:10:9A:03:11:E2:86:9D:34:4A:D9:59:35:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e27QJ9N71hCaAxHihp00StlZNfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/597e45-cde4-4c34-8bea-c97e373d704c/1/bGaQYdgKbyCtvSYqK27FQqxay1g.roa
Signing time: Sun 01 Jan 2023 01:44:53 +0000
ROA not before: Sun 01 Jan 2023 01:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211468
IP address blocks: 185.190.38.0/24 maxlen: 24
194.169.166.0/24 maxlen: 24
194.169.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:00:d0:95:47:db:82:47:36:2e:64:ac:ed:c0:92:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b6ed027d37bd6109a0311e2869d344ad95935f9
Validity
Not Before: Jan 1 01:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c669061d80a6f20adbd262a2b6ec542ac5acb58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bb:01:3e:bb:9f:e1:ec:f4:22:c2:25:aa:98:
a1:f3:13:e4:60:e4:de:c8:fa:b7:08:64:c0:8b:45:
80:62:7b:92:01:1f:52:77:6c:2e:66:2f:cf:3e:80:
6d:8e:c1:e8:66:b7:1d:9f:80:23:62:f9:52:96:d4:
3f:43:c5:16:c7:d1:3a:da:c5:06:26:28:62:df:c2:
ce:c0:bf:30:2e:a5:98:e2:dd:e3:a7:19:90:a6:c1:
01:4b:09:b7:dd:ec:02:d3:6d:7c:bc:e2:f3:9c:18:
a8:ba:5c:d8:5a:d9:ea:b6:d3:58:d4:d8:c7:ff:18:
56:26:40:a8:6e:a9:bc:00:ed:68:5b:2c:d2:4a:32:
94:49:94:30:41:be:c7:54:c9:7b:ce:10:01:88:72:
a0:6f:c6:82:19:90:70:22:58:28:d8:16:6e:6b:70:
68:33:c9:ae:6e:18:15:28:9b:ef:77:38:12:d4:c3:
64:e9:a6:fc:01:b2:01:7c:cb:92:01:64:52:32:42:
a8:d2:8e:9e:5e:c7:3b:e9:7f:b2:a5:dd:d3:f2:e8:
36:1e:02:c3:e4:d3:fb:96:13:a7:67:1a:b9:12:21:
cd:db:bf:20:f9:3c:b2:9f:ca:6e:c6:ee:d7:b2:77:
93:c1:2b:3b:fe:17:db:26:40:cb:d2:db:a1:0f:d7:
6c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:66:90:61:D8:0A:6F:20:AD:BD:26:2A:2B:6E:C5:42:AC:5A:CB:58
X509v3 Authority Key Identifier:
keyid:7B:6E:D0:27:D3:7B:D6:10:9A:03:11:E2:86:9D:34:4A:D9:59:35:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e27QJ9N71hCaAxHihp00StlZNfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/597e45-cde4-4c34-8bea-c97e373d704c/1/bGaQYdgKbyCtvSYqK27FQqxay1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/597e45-cde4-4c34-8bea-c97e373d704c/1/e27QJ9N71hCaAxHihp00StlZNfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.38.0/24
194.169.166.0/23
Signature Algorithm: sha256WithRSAEncryption
43:81:8b:e1:62:4b:fd:11:74:cf:e5:34:db:40:79:bb:98:1c:
56:e8:45:6c:2a:79:b4:14:77:57:e3:74:3d:71:02:ab:21:cf:
0b:c6:0d:84:ec:e7:91:ae:3b:32:b2:bd:39:72:51:cf:04:b1:
3b:4c:ed:ad:8f:24:fa:63:6f:a6:64:eb:40:d8:eb:54:f0:4f:
a4:04:5c:c7:95:15:6a:05:06:96:a0:bf:87:9d:af:b3:af:50:
8b:bf:2d:3e:54:46:55:5f:f2:e1:82:8f:66:9f:29:12:2a:6b:
d5:91:8e:39:70:21:f5:ec:ad:db:3c:fa:fe:2b:df:66:09:62:
0d:27:d7:e6:b2:17:af:2c:6a:18:e1:47:91:f3:98:2a:51:c0:
4a:fa:2b:c1:49:3e:aa:4e:32:6e:45:1e:da:6e:57:7f:6a:78:
7f:7a:62:83:f6:5d:d2:44:f0:1b:41:e5:be:90:ab:20:c8:7e:
e6:62:63:88:bd:06:05:cc:26:36:74:cc:12:f7:13:60:67:1e:
70:db:23:e0:4f:e0:8c:55:82:23:ed:85:9e:91:96:55:eb:8c:
0d:fe:f0:28:c4:87:88:d5:79:63:91:d9:08:59:e5:6a:d4:4d:
4d:6e:97:ca:06:3c:f3:87:ef:04:5c:39:e9:b7:fc:83:7f:88:
84:fa:33:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:59 2024 by rpki-client on console-fra.rpki-client.org