Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/y6egZbmT6hNPJsatbRNl-fAPCcg.roa
File: y6egZbmT6hNPJsatbRNl-fAPCcg.roa (raw, json)
Hash identifier: uWpJ+S8nLR4iJX1ohqM2qgF7Z0m5RxaxydOhZda4GMk=
Subject key identifier: CB:A7:A0:65:B9:93:EA:13:4F:26:C6:AD:6D:13:65:F9:F0:0F:09:C8
Certificate issuer: /CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Certificate serial: 01908EC3DB0BE9177074DCCC45E60E58EC13
Authority key identifier: FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/y6egZbmT6hNPJsatbRNl-fAPCcg.roa
Signing time: Sun 07 Jul 2024 19:55:18 +0000
ROA not before: Sun 07 Jul 2024 19:55:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58232
IP address blocks: 185.49.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 10:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8e:c3:db:0b:e9:17:70:74:dc:cc:45:e6:0e:58:ec:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Validity
Not Before: Jul 7 19:55:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cba7a065b993ea134f26c6ad6d1365f9f00f09c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5c:f6:08:c1:7d:72:a7:e2:5e:79:d4:e2:fc:
81:82:fa:cf:d4:15:74:f8:d7:9e:80:99:6a:20:a6:
9e:1e:41:ba:88:30:a6:40:5c:ef:c0:b5:e3:a5:36:
a2:03:a2:46:58:3e:f1:8a:50:ee:ee:2a:bf:51:9e:
fc:94:72:11:e2:c8:87:d9:75:01:86:e2:93:56:bd:
b1:03:61:17:1e:09:f5:07:7a:cf:f1:08:30:44:38:
c9:2c:5a:96:77:f1:3c:2b:38:1c:f5:3f:c7:7b:8a:
64:8a:ac:eb:55:8c:8f:03:50:0c:f9:0f:db:79:55:
30:23:00:ab:00:02:16:43:7e:23:9b:1c:19:bb:6f:
5f:47:27:b3:7b:f6:e2:c2:8e:55:f3:a8:61:91:e3:
22:68:14:fa:73:82:d4:92:5d:e9:d6:64:51:da:be:
bb:b9:87:89:eb:a9:19:e3:96:97:fc:d4:da:f7:de:
ef:77:fa:28:81:e6:5a:6c:34:8d:49:ef:88:1b:d9:
71:73:56:b2:f0:6b:8c:97:87:9d:8f:57:ae:42:7f:
1b:9b:95:43:a3:cb:68:51:6e:05:a5:0a:10:fc:a7:
b0:3f:e5:86:73:2f:ac:5b:c4:a3:ff:7b:33:86:2a:
5e:a5:35:0d:eb:ca:4e:0f:b4:f2:9e:8b:65:1f:9d:
51:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A7:A0:65:B9:93:EA:13:4F:26:C6:AD:6D:13:65:F9:F0:0F:09:C8
X509v3 Authority Key Identifier:
keyid:FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/y6egZbmT6hNPJsatbRNl-fAPCcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/1-j0LwRsp2kStVzBMP4VohwoBnCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.105.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:27:57:07:5e:19:52:ba:f1:3c:29:df:36:7d:4b:28:02:48:
b0:8a:eb:f8:60:ff:7e:9b:13:2d:76:e4:24:2b:45:69:86:aa:
52:71:99:cb:f6:c1:0b:8e:35:21:3d:2c:a0:2a:26:f5:ea:ec:
90:d9:1a:63:d7:3b:6d:93:5b:2d:28:9e:1e:f3:1b:eb:01:d8:
10:ce:82:a1:e1:42:a9:4a:70:77:ab:45:5f:1a:54:ff:df:0f:
65:f6:2d:1f:0d:29:e0:ac:7f:51:e7:d7:c5:fc:6e:46:40:dc:
0a:1a:bb:89:ff:19:87:b7:fa:30:f2:f8:75:f3:b4:26:c9:a5:
0e:fb:0c:09:02:4c:de:b4:49:d9:44:c2:d2:ff:e2:91:75:be:
f6:1b:1e:5c:21:e7:75:97:f0:cc:a7:b0:73:42:7a:3d:d3:d1:
c2:ab:a1:ca:cb:8b:7e:0f:f2:e8:76:d7:2d:03:b6:26:36:23:
c5:1d:5a:db:d4:9d:1e:8b:41:44:60:88:15:87:f1:01:ab:56:
7d:d6:66:89:77:4e:4f:90:e5:8b:26:b3:6c:94:3d:49:e9:51:
4f:c2:3a:31:76:19:ff:db:9c:f7:e3:4c:c1:3f:bf:3c:0a:cb:
1b:5d:f4:ae:b1:58:6c:e7:61:3a:90:0f:ae:51:2a:6a:32:fc:
2b:e1:31:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 12:49:06 2024 by rpki-client on console-fra.rpki-client.org