Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/igW6YyWNWarIjfo0jpCPrabPyfg.roa
File: igW6YyWNWarIjfo0jpCPrabPyfg.roa (raw, json)
Hash identifier: OkO+2kUg2A76GoZIJu9q/gfrgrGbTsxk3fFb4KQIyyA=
Subject key identifier: 8A:05:BA:63:25:8D:59:AA:C8:8D:FA:34:8E:90:8F:AD:A6:CF:C9:F8
Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Certificate serial: 0189DF4B9C7CA065DB192AEB7F86125174BC
Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/igW6YyWNWarIjfo0jpCPrabPyfg.roa
Signing time: Thu 10 Aug 2023 11:53:41 +0000
ROA not before: Thu 10 Aug 2023 11:53:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205958
IP address blocks: 185.194.102.0/23 maxlen: 23
185.30.170.0/23 maxlen: 23
185.215.132.0/23 maxlen: 23
185.30.168.0/23 maxlen: 23
185.215.134.0/23 maxlen: 23
2a0a:49c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:df:4b:9c:7c:a0:65:db:19:2a:eb:7f:86:12:51:74:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Validity
Not Before: Aug 10 11:53:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a05ba63258d59aac88dfa348e908fada6cfc9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ee:ea:1d:b5:e3:2a:d0:ee:06:2d:1b:67:79:
80:9e:dd:49:d4:3a:bf:8a:fd:ab:39:ce:23:f8:0a:
ec:56:29:b3:78:9d:b4:31:d2:00:d3:d0:21:52:5f:
b8:66:68:d4:6b:d6:9b:28:9c:80:a2:79:21:f1:bd:
fd:46:70:67:90:aa:01:cb:99:3f:c6:88:f0:67:e3:
8c:69:d2:b6:eb:7c:28:db:bc:9d:39:79:75:b8:6e:
a5:4a:a3:6a:b4:4b:71:58:3a:82:4b:08:2b:a3:11:
30:b8:7b:5d:2b:90:ef:2f:a7:5f:ee:ab:a9:58:36:
e5:e1:28:e9:38:00:c3:66:0d:30:7a:a8:8e:6a:8f:
a6:f1:33:4d:5c:c7:ee:db:07:e9:98:be:76:a7:cc:
93:83:46:a7:e8:f0:87:6d:ed:34:e2:e3:e1:6b:4e:
d3:9e:36:d7:67:9a:40:a3:9f:ed:b6:e5:50:8e:d2:
c8:fc:60:57:1d:13:71:af:d3:84:19:75:40:5e:d8:
db:60:52:66:e0:39:7c:fd:a6:17:aa:5a:28:e5:8a:
0f:73:e0:58:43:92:9a:ce:9a:b6:98:8d:61:23:a8:
bb:8b:b8:64:37:09:9c:df:d4:c0:8b:50:03:98:6f:
18:39:cb:bb:68:29:75:a6:12:d9:ec:12:57:34:11:
f4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:05:BA:63:25:8D:59:AA:C8:8D:FA:34:8E:90:8F:AD:A6:CF:C9:F8
X509v3 Authority Key Identifier:
keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/igW6YyWNWarIjfo0jpCPrabPyfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.168.0/22
185.194.102.0/23
185.215.132.0/22
IPv6:
2a0a:49c0::/29
Signature Algorithm: sha256WithRSAEncryption
9b:b2:fa:eb:7d:0c:63:af:48:6e:b5:40:e2:0d:9a:a2:f6:ae:
00:7a:54:11:e0:ef:1b:90:d9:02:e8:d8:a9:49:d0:71:74:24:
1e:2f:58:92:63:49:84:cb:85:50:4f:ff:92:34:29:28:4e:60:
c8:49:50:43:26:5a:dc:da:c3:02:8a:14:fa:10:41:31:8a:3b:
04:7f:d3:4f:0c:2a:dc:39:ad:3e:2c:2a:dc:0c:e1:96:1a:2e:
b4:22:9f:0c:ef:49:66:93:2f:f8:dc:8f:81:e5:75:24:c2:28:
cc:6b:28:b0:2b:86:db:56:81:aa:18:99:d0:cf:56:1f:65:1a:
ac:4c:84:a2:6b:d0:d5:d9:d3:5a:3d:42:a5:2b:f2:77:f5:3e:
9f:f5:f7:aa:26:8f:5c:d2:98:77:57:1a:75:98:86:28:29:04:
ec:84:e0:82:49:80:7c:a5:bb:ef:10:22:a7:ef:d5:31:df:db:
94:32:1e:16:ea:36:c8:81:ef:f9:5d:e8:6c:c5:87:ee:54:1b:
85:f4:ca:44:b4:15:f3:84:69:fe:6d:ed:b4:0c:e0:5d:9a:31:
ce:6a:b9:53:58:45:cc:ad:3f:af:80:11:14:cc:fb:77:49:50:
b9:a2:fb:f6:5d:5d:ab:08:63:fa:c3:62:a7:68:d3:3d:4c:c2:
43:51:02:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:57 2024 by rpki-client on console-fra.rpki-client.org