Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1XWO7NR99Wsx_7-mACUSHKDKa68.roa
File: 1XWO7NR99Wsx_7-mACUSHKDKa68.roa (raw, json)
Hash identifier: 0zJFEZYGDXiOI63Y9nkC7uun19x4RaHNSf1E1+1iniI=
Subject key identifier: D5:75:8E:EC:D4:7D:F5:6B:31:FF:BF:A6:00:25:12:1C:A0:CA:6B:AF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC8029070C23A72FB54A6D1D2A2D55546
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1XWO7NR99Wsx_7-mACUSHKDKa68.roa
Signing time: Tue 02 Jan 2024 02:31:00 +0000
ROA not before: Tue 02 Jan 2024 02:31:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210122
IP address blocks: 185.226.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 18:47:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:90:70:c2:3a:72:fb:54:a6:d1:d2:a2:d5:55:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:31:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5758eecd47df56b31ffbfa60025121ca0ca6baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:55:b8:a5:3d:68:13:c5:c9:ff:bb:7e:fb:e0:
bf:52:dd:0f:82:e4:08:48:7a:c9:06:f3:70:bc:ee:
62:95:19:76:37:87:18:fb:13:bd:25:e3:c4:58:3d:
5d:d2:dd:f5:bd:1f:05:3b:f1:8a:f4:77:57:b4:ec:
da:77:d9:0b:3b:e0:96:1e:2e:fb:f0:8a:fb:02:e9:
44:37:93:ae:71:61:08:8e:5a:cc:5e:e0:13:c8:1c:
cd:1c:69:a3:c3:14:fd:d4:01:c2:41:63:bf:6f:4e:
73:b9:8b:be:54:33:55:a8:0d:a5:00:37:a7:0c:35:
73:7f:3f:6e:6b:33:b0:70:34:52:91:27:21:88:ea:
d7:20:c0:9c:85:e6:38:f4:59:af:c3:c9:1d:85:f9:
d5:4b:15:69:fb:6a:8a:6a:5d:f5:e0:3b:14:5a:32:
a4:65:ed:d0:72:f3:d7:47:ce:60:44:27:af:5f:bf:
04:48:f7:2b:9b:e1:39:97:b8:0e:08:16:23:3f:31:
65:2a:68:8d:80:ad:d1:91:97:8b:05:00:ea:cf:ad:
49:a5:78:1c:1a:f7:2e:1b:43:49:72:9c:02:b4:27:
cc:29:51:0d:7c:cd:e0:22:10:ef:54:cd:88:35:2b:
b6:60:ca:74:3e:79:d7:dd:f2:cf:eb:b8:cd:46:97:
a3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:75:8E:EC:D4:7D:F5:6B:31:FF:BF:A6:00:25:12:1C:A0:CA:6B:AF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1XWO7NR99Wsx_7-mACUSHKDKa68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.104.0/24
Signature Algorithm: sha256WithRSAEncryption
12:c3:7e:b4:53:62:88:d4:ec:ae:19:8d:d2:dd:07:53:42:c5:
18:de:4c:b9:12:88:2f:2f:1a:10:d7:55:37:9a:15:d0:fd:3b:
aa:d0:88:c6:fd:5a:02:09:e4:a0:ac:07:c2:16:da:f3:a4:16:
36:a5:8c:1f:d6:be:d4:1a:8d:3d:cd:26:88:1a:8d:73:7e:ae:
f3:f8:72:f6:9e:67:97:4a:75:8e:88:9a:84:33:85:8a:24:b1:
ad:42:0c:3a:fa:46:9f:c1:2d:ea:1b:cf:07:1d:b1:00:6d:70:
6e:67:52:03:ed:48:63:ad:59:9f:7d:ad:dc:93:a7:ab:1c:18:
83:c4:07:7c:d3:01:6d:fb:80:08:2f:88:f2:aa:19:34:d2:f4:
9c:3b:34:99:6f:fa:c6:cb:b9:28:59:c2:e8:f8:99:79:04:fc:
b8:00:b6:0b:2d:bc:c1:cf:7d:a2:94:ff:33:d4:e1:c9:e9:a7:
37:99:56:eb:79:98:58:61:58:75:5e:4b:66:89:54:5f:05:e6:
dd:88:78:22:17:30:d7:d9:38:3f:10:b5:e0:7d:8d:5d:2f:d5:
b5:7c:97:29:cd:1c:56:10:f8:a6:73:6a:05:84:59:2c:33:46:
45:46:f2:cc:9c:ef:f1:8e:ee:24:48:de:a9:fa:33:00:5a:ed:
9a:0c:2c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org