Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/ny7-igJNQBjysNNiAv0-3-Tqdcs.roa
File: ny7-igJNQBjysNNiAv0-3-Tqdcs.roa (raw, json)
Hash identifier: zNHnHDXhBVRaqYhXuaxTAvoXyydZBjiNv/HF1ohA0qM=
Subject key identifier: 9F:2E:FE:8A:02:4D:40:18:F2:B0:D3:62:02:FD:3E:DF:E4:EA:75:CB
Certificate issuer: /CN=ed64691c31892cc991ad4e9a9671147759e417ab
Certificate serial: 018CC86F393BFD16BE31DDF56B85053BC97A
Authority key identifier: ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/ny7-igJNQBjysNNiAv0-3-Tqdcs.roa
Signing time: Tue 02 Jan 2024 04:29:41 +0000
ROA not before: Tue 02 Jan 2024 04:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8218
IP address blocks: 185.75.241.0/24 maxlen: 24
2a05:5504:1::/48 maxlen: 48
2a05:5504::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 23 May 2024 12:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:39:3b:fd:16:be:31:dd:f5:6b:85:05:3b:c9:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed64691c31892cc991ad4e9a9671147759e417ab
Validity
Not Before: Jan 2 04:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f2efe8a024d4018f2b0d36202fd3edfe4ea75cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3b:b7:52:78:5d:8e:19:ab:2d:21:26:ad:d1:
c6:61:76:dc:81:c6:5c:74:97:51:2c:70:3f:57:dc:
1d:ef:3a:29:46:5a:de:0f:fc:6a:b0:11:9d:34:d9:
25:62:67:ba:aa:60:28:83:58:b2:4f:d7:90:37:51:
5b:4b:7a:13:f3:06:12:76:09:f1:7c:cb:93:cd:e0:
07:3a:00:6b:22:b1:0a:7b:03:f1:2f:76:16:9e:d1:
66:0b:ab:e6:65:00:d8:07:0b:4b:fb:02:50:b1:1f:
e0:a7:fb:ea:a3:81:71:5b:ce:6a:f3:c1:ad:04:73:
88:cd:07:7c:6b:70:3c:e9:3f:80:2e:2d:0f:2b:30:
76:37:b4:bc:0e:ac:8e:67:48:35:f0:2d:fe:2e:61:
ca:23:b5:08:c8:e4:12:fc:70:05:c2:0a:2c:4e:13:
e1:80:40:bd:ae:9c:5b:9f:6d:53:43:3d:1a:8a:2b:
c6:b3:19:71:10:06:2e:28:ef:23:c4:05:33:83:0b:
4b:a6:62:dc:18:7f:db:32:62:45:64:03:55:66:aa:
ef:35:38:00:41:7f:cf:9b:47:59:c4:90:96:e2:b0:
64:b2:13:86:3c:d0:f3:b7:51:f0:6e:2d:a5:c4:83:
6d:23:89:c4:47:9b:ba:f3:0e:cf:7a:91:c4:ae:d7:
4c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:2E:FE:8A:02:4D:40:18:F2:B0:D3:62:02:FD:3E:DF:E4:EA:75:CB
X509v3 Authority Key Identifier:
keyid:ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/ny7-igJNQBjysNNiAv0-3-Tqdcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/7WRpHDGJLMmRrU6alnEUd1nkF6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.241.0/24
IPv6:
2a05:5504::/32
Signature Algorithm: sha256WithRSAEncryption
71:e0:21:c5:d5:94:8c:73:da:8b:ce:c8:39:a2:dc:92:4f:6f:
a5:04:2a:79:d9:b4:2a:d6:1a:a7:4c:bc:82:81:cf:c2:9f:54:
95:47:53:4e:5a:ae:6d:69:da:a7:66:89:ab:d0:69:56:9f:fa:
2d:6e:14:6e:65:9c:78:25:4f:4b:a2:96:32:26:83:d2:70:00:
ac:8a:71:e0:15:b6:39:80:15:a1:f8:1b:62:2c:3d:c4:bb:83:
bf:45:96:76:ed:07:98:58:ae:39:2c:d6:6c:47:95:12:56:d0:
43:8c:97:53:7a:a8:2d:04:2f:f4:01:12:50:87:db:b0:b5:0d:
a9:62:4f:69:1b:4d:83:85:25:a4:ee:c4:60:ac:46:39:6d:98:
98:ab:d7:33:c9:3f:9a:2f:68:30:08:c8:9c:a1:3f:c4:4d:46:
38:d2:14:1b:b7:cd:fb:33:30:f4:69:2d:cb:cb:e4:45:ae:74:
41:81:82:79:0f:d3:29:d8:1e:71:93:c7:20:82:95:26:50:67:
79:f8:76:87:f1:dc:43:3b:8a:62:d1:9c:05:a3:72:01:89:73:
12:72:32:17:c7:28:59:be:60:f0:4f:2d:1c:4e:b3:b3:bf:1c:
c3:f0:c0:cd:35:28:eb:ec:df:4c:bd:60:11:db:50:93:2a:b8:
a6:64:d9:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:03 2024 by rpki-client on console-fra.rpki-client.org