Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/Y-JG8PGdFZWdE7m3244VG46GSIw.roa
File: Y-JG8PGdFZWdE7m3244VG46GSIw.roa (raw, json)
Hash identifier: eitDWYB9X6ghtVWgyP1OFJCmH8SUFd7w4ij3Cpa+VtA=
Subject key identifier: 63:E2:46:F0:F1:9D:15:95:9D:13:B9:B7:DB:8E:15:1B:8E:86:48:8C
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 0192708204FD1CFF890136391C8B4E485E96
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/Y-JG8PGdFZWdE7m3244VG46GSIw.roa
Signing time: Wed 09 Oct 2024 09:00:22 +0000
ROA not before: Wed 09 Oct 2024 09:00:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214536
IP address blocks: 185.255.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 11:57:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:70:82:04:fd:1c:ff:89:01:36:39:1c:8b:4e:48:5e:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Oct 9 09:00:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63e246f0f19d15959d13b9b7db8e151b8e86488c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:04:c7:64:01:ca:b7:1d:9a:8d:f9:23:f6:0e:
ee:b0:ab:c7:e3:fa:c7:58:f7:c8:03:d6:49:61:c9:
be:4d:3e:55:41:d8:9a:b8:d3:1c:02:58:1a:45:ad:
64:3b:06:09:b7:91:43:28:e9:a4:2a:f7:b0:e0:4f:
7b:36:3d:53:b7:f0:6a:05:bc:b8:5b:1a:f3:7d:a5:
d2:71:80:34:ba:d8:60:77:72:d1:58:2b:3f:fe:25:
51:7d:39:7d:3e:c6:e4:cc:2e:8d:46:da:4b:3b:50:
d8:29:bc:d9:9f:5f:51:9a:40:26:93:b7:85:dc:48:
8b:4d:bb:6a:8b:82:70:ab:ae:be:5a:e2:fe:36:c0:
6a:9f:d3:fd:17:6c:95:b4:c1:be:98:5d:44:5e:7c:
9b:51:e4:5f:a5:3a:8b:ce:32:58:f3:4e:bf:ef:c8:
57:69:58:0a:77:12:03:2a:14:88:ab:5d:29:2a:fa:
7e:5e:ed:c4:60:35:7e:87:6b:9e:0d:71:bf:96:2b:
cb:9b:44:b7:12:7c:b3:7f:4f:b0:63:36:ea:ed:81:
1f:00:4c:24:0f:0b:65:ab:bd:79:12:86:b7:0a:09:
15:8d:8e:60:31:47:fd:63:2e:52:1a:0b:be:eb:7e:
ec:39:34:87:7b:6c:d0:22:61:49:eb:8f:11:2c:1a:
d9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E2:46:F0:F1:9D:15:95:9D:13:B9:B7:DB:8E:15:1B:8E:86:48:8C
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/Y-JG8PGdFZWdE7m3244VG46GSIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.198.0/24
Signature Algorithm: sha256WithRSAEncryption
93:f7:75:e4:a2:02:1e:30:5c:0e:59:33:27:02:91:20:40:99:
ac:96:1d:66:05:07:1a:87:38:e1:7b:ef:4a:99:e9:11:0b:45:
1b:ea:0d:d3:58:dd:c5:78:c1:02:7d:ca:2c:e2:e5:8d:e5:53:
91:3e:00:73:33:6e:a6:f4:f2:dc:d5:b7:3b:9c:90:8b:bf:d9:
e7:a7:45:ef:29:35:a7:1c:de:d9:e9:0a:96:fd:80:5a:a3:f2:
39:09:84:aa:e4:2f:ac:77:c6:9b:a0:22:66:2a:87:34:6b:dd:
6b:f4:b8:62:70:71:33:9f:2d:db:c4:d8:c9:6c:9e:1e:f9:57:
e6:57:97:0a:36:44:b8:69:bc:d9:03:7f:00:bf:72:17:30:49:
02:bf:74:5c:37:76:04:71:d5:98:46:36:4b:58:95:90:8b:3f:
57:63:18:d9:37:ee:41:d6:70:66:87:f1:49:99:41:bf:29:9e:
3e:11:44:76:f7:70:14:2b:0c:1b:0f:56:e8:d2:8e:8c:c6:ef:
e0:75:68:0a:b7:37:2a:8b:f1:1a:73:2d:0c:21:70:db:27:df:
88:b9:c9:2c:6b:06:84:28:5e:2c:63:6c:27:85:1e:e5:78:f5:
18:f7:9f:1b:f1:e7:cb:ba:c3:b5:48:18:00:2a:db:5b:6d:31:
85:bb:e0:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 13:26:14 2024 by rpki-client on console-fra.rpki-client.org