Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/602BPGJqILTtpLsCTWbNXa0lxqs.roa
File: 602BPGJqILTtpLsCTWbNXa0lxqs.roa (raw, json)
Hash identifier: m4bR51FBScbZq3sNaxJOmnm+9NCXfUxsduYYc5QAr9M=
Subject key identifier: EB:4D:81:3C:62:6A:20:B4:ED:A4:BB:02:4D:66:CD:5D:AD:25:C6:AB
Certificate issuer: /CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Certificate serial: 01856D13AD75D3534931FDAB0A3E365CB64E
Authority key identifier: 6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/602BPGJqILTtpLsCTWbNXa0lxqs.roa
Signing time: Sun 01 Jan 2023 11:24:44 +0000
ROA not before: Sun 01 Jan 2023 11:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200597
IP address blocks: 185.32.77.0/24 maxlen: 27
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:ad:75:d3:53:49:31:fd:ab:0a:3e:36:5c:b6:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Validity
Not Before: Jan 1 11:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb4d813c626a20b4eda4bb024d66cd5dad25c6ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e5:3f:85:b5:fa:86:47:a9:d2:20:8c:bd:27:
ac:9e:8d:8a:d7:f9:fb:3f:a0:63:c2:3f:21:5f:e8:
8a:08:08:71:f5:d4:51:a0:59:66:5e:b8:e4:ff:68:
2d:63:17:1c:3b:e4:d6:07:de:27:cd:9d:76:76:76:
b9:fc:59:24:7e:c5:e1:c2:43:92:2b:8c:6d:b3:fc:
65:d0:9a:b1:1a:97:f9:aa:aa:e4:d9:56:96:e2:b8:
58:a2:37:8c:38:22:97:d0:4d:d1:64:03:06:b2:18:
08:b6:d4:80:9c:29:a6:2e:bc:c6:ad:19:c7:9a:71:
3f:cb:e9:d0:71:84:c7:c2:76:82:34:55:df:af:22:
4d:53:02:9c:e2:17:7b:7b:c9:f7:0a:4b:59:1d:b9:
9e:c3:1e:ca:96:f3:6d:8b:c7:13:a4:ea:fe:63:03:
aa:f2:53:66:49:8d:02:a2:f1:6a:f1:1c:c9:d8:2c:
a5:c7:21:8f:c8:70:2f:fa:5f:92:4d:92:8b:6c:0a:
d2:b8:24:38:68:c5:f1:6a:91:e9:c8:59:75:13:2e:
33:3f:97:43:54:cf:20:3b:47:2f:8b:a8:c9:31:8f:
f8:2d:89:e1:20:71:eb:ea:d5:24:c2:36:6e:7c:50:
06:54:9d:b7:dc:7e:14:e7:12:c2:6b:14:48:3f:d4:
a3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4D:81:3C:62:6A:20:B4:ED:A4:BB:02:4D:66:CD:5D:AD:25:C6:AB
X509v3 Authority Key Identifier:
keyid:6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/602BPGJqILTtpLsCTWbNXa0lxqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/b4RsjA22XcdG72TP2Cu5wZTif3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.77.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e1:d2:7c:1a:21:04:72:3d:1c:c5:25:b0:4b:21:43:6d:a1:
9a:4f:85:f7:b3:e9:e1:fc:42:55:2b:74:12:c3:f9:37:dc:79:
57:23:9f:4c:c7:10:bf:cb:98:a8:cd:13:27:c7:cf:b6:53:bd:
84:e2:56:83:35:3b:4b:32:27:01:72:1d:d4:e1:78:ba:a1:10:
64:63:88:0a:3d:a5:76:79:4d:8b:7c:2d:08:9b:bd:37:de:cb:
3f:d3:48:0a:b6:eb:da:02:a6:9a:7a:6b:cf:5d:f4:2f:4e:1f:
99:af:89:12:e9:20:24:9d:69:15:bf:9d:7d:e5:1a:cf:9c:40:
9f:d9:46:41:5f:3e:8f:89:53:d9:44:ed:fb:c9:94:34:42:3a:
5e:b2:85:fa:0f:5c:5e:e6:b7:4c:6c:ee:20:23:e8:65:f8:4b:
90:46:4d:a6:84:39:34:fb:8b:60:53:d3:13:d4:b5:22:7c:3c:
45:79:60:68:14:70:04:66:ad:a0:3c:72:e9:28:5e:27:15:9a:
c7:cd:0c:28:ff:53:5f:95:e7:f4:b3:17:5e:da:3f:01:3e:e3:
81:6a:0e:de:18:2d:5a:12:1e:28:2c:90:e0:b2:11:53:1a:f0:
31:ee:14:08:9d:a5:87:fc:dd:de:93:50:b5:4f:7a:74:a0:9c:
03:21:b9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:22 2024 by rpki-client on console-ams.rpki-client.org