Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/i7ckmUZMZ8kS5tNk-eM-td0BMYM.roa
File: i7ckmUZMZ8kS5tNk-eM-td0BMYM.roa (raw, json)
Hash identifier: 5n1lNyFRswb9meRIjS71+tZZLRofXKbUglngNv+/DEY=
Subject key identifier: 8B:B7:24:99:46:4C:67:C9:12:E6:D3:64:F9:E3:3E:B5:DD:01:31:83
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 01859B3E231106F99B051A08F3D1398D1E35
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/i7ckmUZMZ8kS5tNk-eM-td0BMYM.roa
Signing time: Tue 10 Jan 2023 10:33:38 +0000
ROA not before: Tue 10 Jan 2023 10:33:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3262
IP address blocks: 185.194.24.0/24 maxlen: 24
185.219.217.0/24 maxlen: 24
185.219.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Jan 2023 09:11:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9b:3e:23:11:06:f9:9b:05:1a:08:f3:d1:39:8d:1e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Jan 10 10:33:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bb72499464c67c912e6d364f9e33eb5dd013183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:83:5b:61:0b:3d:20:5f:e3:64:68:58:10:7f:
39:eb:ab:cf:d2:0a:43:e8:96:66:f5:ec:af:b3:6a:
6b:48:f6:2b:5c:79:05:a0:3f:0f:67:b0:bf:82:e2:
d1:65:42:b1:e1:bd:31:76:44:b1:ec:b3:3a:c8:fd:
5f:d8:59:ea:c0:85:07:c8:41:ce:37:27:bb:82:4d:
69:50:23:e7:92:3f:bf:13:95:cb:0e:11:10:ca:3a:
d9:55:a3:29:d4:b7:fb:89:dc:af:55:33:07:6d:d7:
4e:25:77:fa:51:9b:9a:4f:04:d4:de:52:f5:33:57:
13:65:de:ab:bf:4d:c7:11:b1:4f:06:46:4b:07:a3:
eb:f5:81:c0:ff:13:91:84:fa:f6:29:00:39:3b:ee:
84:91:46:f6:d4:ec:bc:cf:c6:f2:fd:89:3e:20:c8:
85:b8:cb:c4:14:6a:48:70:c9:12:03:52:85:09:e5:
7e:d4:d7:ec:7d:68:d4:53:f3:51:84:14:ba:23:09:
ae:10:3b:c6:d1:8a:62:82:a2:e3:d5:0d:48:21:92:
e5:cd:ac:b2:bc:28:8f:0f:30:1e:c2:36:bb:20:6c:
bc:36:6c:db:cd:73:a2:91:0e:23:37:b3:ae:34:e3:
13:b0:d9:1f:14:68:2d:dd:dd:b8:a7:39:f4:e3:a5:
7c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B7:24:99:46:4C:67:C9:12:E6:D3:64:F9:E3:3E:B5:DD:01:31:83
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/i7ckmUZMZ8kS5tNk-eM-td0BMYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.24.0/24
185.219.216.0/23
Signature Algorithm: sha256WithRSAEncryption
30:6d:b2:d6:84:da:d4:65:98:60:c0:59:f7:fd:f6:f3:8f:84:
1a:4a:ac:aa:af:0c:a7:34:d0:a8:1f:43:08:d4:35:8b:87:f6:
4d:db:d7:37:cf:b7:67:1b:15:67:e8:9b:9f:16:fb:ee:48:fb:
68:9a:d0:bb:7d:da:59:71:7a:3c:03:0a:77:00:d2:28:70:cc:
d4:14:18:8d:19:ab:24:cf:b1:e0:c8:3a:2e:00:ff:11:a3:53:
c4:7c:d9:b2:13:7d:1c:19:58:e4:ff:f8:d2:38:22:d0:21:ab:
ff:19:e9:51:ff:03:f7:40:7f:b2:dc:aa:23:de:e4:f4:0a:7c:
fb:f8:a1:d2:33:50:a5:2c:8a:60:c9:5d:fd:68:17:36:94:2e:
5e:50:f9:81:db:0f:4f:a0:fe:01:97:9e:72:1a:0f:bc:ef:5f:
11:be:dc:53:b4:bb:3e:5e:24:9d:95:94:ba:7f:31:20:0a:36:
c7:bf:5d:1f:57:b7:a9:46:96:9f:15:24:ad:da:81:99:d9:74:
e1:2c:32:9d:15:0d:0d:22:8e:42:4a:8b:6b:3a:89:ea:17:52:
1d:68:b5:f6:f8:8f:59:3f:e8:01:9e:10:13:12:88:b4:85:8a:
53:d5:b2:98:6d:b4:0d:54:bd:cd:f0:37:8a:f4:83:2e:26:4e:
05:9e:29:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:50 2024 by rpki-client on console-ams.rpki-client.org