Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/su5KnzvbaD47sgy-KdzpQgFxUtE.roa
File: su5KnzvbaD47sgy-KdzpQgFxUtE.roa (raw, json)
Hash identifier: 2ncUn+3tpHW8svcjvHeTU9Ta63dFrcc/zDCpn+RA/ww=
Subject key identifier: B2:EE:4A:9F:3B:DB:68:3E:3B:B2:0C:BE:29:DC:E9:42:01:71:52:D1
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018B3CD88D4CDF2EAC16C3452DDFDEC53DFA
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/su5KnzvbaD47sgy-KdzpQgFxUtE.roa
Signing time: Tue 17 Oct 2023 08:55:06 +0000
ROA not before: Tue 17 Oct 2023 08:55:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 185.76.63.0/24 maxlen: 24
185.76.61.0/24 maxlen: 24
188.119.182.0/24 maxlen: 24
188.119.182.0/23 maxlen: 24
188.119.183.0/24 maxlen: 24
188.119.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3c:d8:8d:4c:df:2e:ac:16:c3:45:2d:df:de:c5:3d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Oct 17 08:55:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2ee4a9f3bdb683e3bb20cbe29dce942017152d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0f:0e:87:fa:d6:91:7e:ef:9d:ff:a3:7d:2a:
78:be:23:b8:50:0d:b9:aa:5b:ff:f5:e3:5a:49:82:
44:8c:b1:d8:97:5d:6b:4d:33:f8:6b:6e:98:56:45:
6b:de:62:de:9a:42:13:54:46:27:d0:0e:8e:08:c2:
a5:f0:23:41:b1:e5:2f:aa:57:b9:2c:ae:18:9f:c7:
63:5a:0f:64:bf:b5:e8:24:56:7d:a6:71:11:fc:96:
d5:d3:3e:11:5a:8d:87:47:e0:ff:e9:24:38:c7:ed:
54:dd:db:50:63:2a:7d:17:34:3e:32:33:2c:5f:37:
b5:5d:58:35:a5:ac:27:11:b4:67:6d:e7:e0:32:94:
07:e2:25:7c:98:4f:81:52:e2:86:d5:7d:1c:95:81:
7e:bd:be:fb:f2:ed:93:5c:37:8f:28:ad:5f:d4:0f:
1e:be:f7:6b:7d:dd:ee:e9:d9:7e:f9:f7:21:d0:78:
40:49:04:27:53:4f:72:8c:6b:d0:5e:6f:db:64:01:
f2:54:9f:9d:c0:b2:5b:57:10:36:b5:22:04:15:f2:
ca:1c:b6:26:31:56:1a:7a:52:96:6a:04:70:9d:8a:
4b:b5:8e:7e:be:f3:f6:31:a7:ff:39:13:d8:df:b4:
a4:9c:95:56:61:e4:5d:a4:13:d1:9b:cf:3e:58:9d:
be:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EE:4A:9F:3B:DB:68:3E:3B:B2:0C:BE:29:DC:E9:42:01:71:52:D1
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/su5KnzvbaD47sgy-KdzpQgFxUtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.61.0/24
185.76.63.0/24
188.119.180.0/24
188.119.182.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:9d:b4:55:f4:80:da:c4:59:13:6f:22:b5:89:07:e4:f1:f7:
98:19:15:5f:e1:00:52:67:3b:91:81:7f:17:d6:30:61:e2:f8:
f5:19:de:3d:5a:cb:16:44:41:79:7c:71:b5:a0:18:ae:16:f0:
c9:0f:25:11:3b:22:99:c5:ce:f5:58:d6:4d:63:ee:5e:15:12:
a7:de:c7:3f:92:eb:d6:95:c7:51:92:b5:d6:50:f9:94:f9:02:
a1:26:07:06:1b:e2:0e:fb:ff:1e:ea:bf:dd:cd:7c:fc:f3:e2:
bb:c9:cf:4c:8e:46:12:89:83:28:52:1c:7d:0c:ac:b3:f6:06:
2f:fb:c1:a4:37:0f:a6:98:30:76:06:30:3f:64:fe:b9:ea:dd:
0b:7d:c7:5c:e1:5f:e8:84:5a:77:7a:ec:82:d2:ea:d9:63:c8:
fc:0a:ba:b9:cd:e1:69:71:b0:c8:fa:b2:c2:97:e7:66:f5:e9:
80:e8:bf:ea:fd:7f:c8:79:f3:60:98:9a:4f:6f:3a:6b:cd:f3:
b3:9a:e8:ce:4b:e8:9e:97:bd:f2:99:95:20:eb:f4:64:a2:3d:
f4:b7:9b:4a:b6:bd:1c:f6:49:5a:9c:5b:d7:57:c2:07:43:0b:
f0:0c:ba:c7:00:66:2a:62:75:f6:1c:6a:ad:1f:eb:bc:4a:b3:
a8:36:19:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org