Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/yPVypKNtUYrR-qegU0qbLQjzXjI.roa
File: yPVypKNtUYrR-qegU0qbLQjzXjI.roa (raw, json)
Hash identifier: XzfAu11eyibemxpMY0qWKJOPCZsJOQlmDC6pXIcnNig=
Subject key identifier: C8:F5:72:A4:A3:6D:51:8A:D1:FA:A7:A0:53:4A:9B:2D:08:F3:5E:32
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 01856FCB96E6F6C295EBD3838AC105B9D0EF
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/yPVypKNtUYrR-qegU0qbLQjzXjI.roa
Signing time: Mon 02 Jan 2023 00:04:51 +0000
ROA not before: Mon 02 Jan 2023 00:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205659
IP address blocks: 185.218.232.0/24 maxlen: 24
185.218.232.0/23 maxlen: 23
185.218.233.0/24 maxlen: 24
185.218.234.0/24 maxlen: 24
185.229.242.0/24 maxlen: 24
185.235.12.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:96:e6:f6:c2:95:eb:d3:83:8a:c1:05:b9:d0:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Jan 2 00:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8f572a4a36d518ad1faa7a0534a9b2d08f35e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b0:72:28:8f:89:ba:f8:17:9f:4f:35:8f:aa:
1b:c5:f5:06:17:5b:20:ed:34:6e:82:dd:56:7d:4d:
71:31:ac:71:28:43:ca:e0:12:35:86:ff:bd:6c:09:
81:4f:c3:31:08:4f:a0:5e:a3:87:10:9b:75:1d:b2:
49:9d:4d:5b:74:b0:c3:2d:b4:7c:66:5c:11:fa:44:
6a:7b:32:a1:84:58:84:6a:28:ac:7f:98:6c:ef:55:
07:42:de:04:0d:3e:b0:bf:1c:f8:f3:e3:23:78:73:
36:e5:11:8a:bd:34:7d:0e:0d:04:03:1c:44:2f:bf:
ee:b7:8d:c3:59:65:40:4b:a9:2b:58:e7:f8:f7:7a:
58:1b:d3:02:ea:aa:ce:ae:68:13:82:dc:b7:c2:21:
13:cc:7f:53:c9:91:16:9a:a2:9b:04:c6:36:96:a5:
67:86:ec:f8:cd:a3:5b:d8:2f:9c:91:a9:53:da:77:
44:af:c8:4d:87:ea:10:83:b6:a1:e7:fc:e9:9c:9c:
d1:d5:82:6a:ff:4b:3b:9f:74:d7:82:b4:6a:2f:36:
44:92:b3:33:64:df:94:cd:60:f5:b0:0a:c9:2b:d7:
c2:8a:25:ae:f9:56:1b:e4:2a:e8:54:c6:ba:2e:ba:
ae:eb:63:45:35:b6:b3:0e:44:c4:10:90:ba:f0:a1:
30:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F5:72:A4:A3:6D:51:8A:D1:FA:A7:A0:53:4A:9B:2D:08:F3:5E:32
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/yPVypKNtUYrR-qegU0qbLQjzXjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.232.0-185.218.234.255
185.229.242.0/24
185.235.12.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:2b:35:85:33:fe:b1:5a:2e:30:2d:ef:c5:d5:52:bd:b2:22:
5c:a4:fd:c5:54:a3:fc:99:ca:41:20:a9:c0:9f:ef:14:08:9c:
26:57:14:cd:72:84:f9:38:18:73:c2:4e:9b:78:78:a4:0a:3e:
f6:af:fc:07:af:32:b8:17:6f:1c:42:04:e7:01:0c:92:89:48:
8e:a2:7e:f4:cf:02:23:27:37:90:91:53:1a:e6:22:7e:0e:5b:
e2:b7:2f:2f:ee:14:ad:a7:9c:0f:a4:b7:37:dd:b0:c9:58:b3:
5d:d6:0e:89:1e:67:9f:06:61:fd:4e:31:30:5a:ca:ef:e9:87:
44:d0:c3:2d:1d:2e:69:fa:4e:0e:0b:3e:14:8d:f2:a0:4e:ee:
f5:48:ef:01:cb:89:3f:ee:74:c5:f7:82:ed:b3:63:da:72:de:
7d:1e:27:e7:a6:24:4f:4b:59:34:02:90:ba:ad:63:cc:35:5d:
6e:65:2c:ee:dd:ec:ad:be:7d:57:5f:f2:d2:42:af:42:a0:ff:
cd:5f:05:41:91:3c:e3:93:30:97:ec:0d:42:6b:9f:94:13:3d:
70:7f:b2:a9:74:4f:8f:26:1a:dc:ad:4e:32:8a:54:a7:6a:58:
97:61:52:fb:a2:d8:fa:10:98:fa:8c:ad:59:2f:f7:1b:36:31:
e5:b9:f8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org