Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/2DKbYmpimfE-656wpxPQcdUzYOY.roa
File: 2DKbYmpimfE-656wpxPQcdUzYOY.roa (raw, json)
Hash identifier: JG8e0ZAAewZBuu/wutsL7NjFC3Gl6P6aYmnFqbkjF20=
Subject key identifier: D8:32:9B:62:6A:62:99:F1:3E:EB:9E:B0:A7:13:D0:71:D5:33:60:E6
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B6348F500DBC5849E0D628EB03CD19
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/2DKbYmpimfE-656wpxPQcdUzYOY.roa
Signing time: Mon 02 Jan 2023 09:00:44 +0000
ROA not before: Mon 02 Jan 2023 09:00:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49600
IP address blocks: 193.37.65.0/24 maxlen: 24
194.35.41.0/24 maxlen: 24
194.35.42.0/24 maxlen: 24
185.230.54.0/23 maxlen: 23
185.230.55.0/24 maxlen: 24
193.37.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Oct 2023 21:23:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:34:8f:50:0d:bc:58:49:e0:d6:28:eb:03:cd:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8329b626a6299f13eeb9eb0a713d071d53360e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:55:b0:a7:f6:8e:6e:f7:ae:d9:fe:2d:6d:37:
18:e1:6c:8a:dd:a8:67:c5:d8:8c:c1:bb:58:1f:34:
de:5f:90:d9:f3:12:b6:b6:5a:af:d9:eb:b7:e4:44:
8b:d9:ff:9e:6b:e3:21:aa:25:e3:59:9c:6d:5d:c2:
38:c2:4b:57:e1:c6:a1:33:ba:58:f0:02:04:e5:15:
9f:ce:a5:1f:51:9c:5d:97:0a:49:33:b8:a9:61:b0:
fe:30:8e:9a:94:e5:22:3c:08:8e:a8:36:8d:9d:ee:
63:63:45:c5:6c:ce:c6:f1:6f:05:91:37:6f:ba:fb:
d7:42:d7:c5:e5:ac:49:c6:df:71:cc:ee:a3:19:29:
6a:d7:dc:fb:d2:19:19:48:9a:51:05:6f:1e:22:e9:
38:b3:8d:8d:e7:93:e4:95:32:71:e1:f2:34:22:36:
ca:00:9a:1e:0b:da:d3:48:5a:d1:57:e0:b5:29:d8:
80:b0:aa:5e:14:97:27:35:da:96:9a:1d:10:7a:b4:
44:ce:d9:96:38:65:4f:a2:67:b4:32:9a:2e:1d:4c:
f3:7e:36:97:03:d0:92:db:ce:ca:9e:fe:68:95:45:
8e:8b:5e:55:7e:59:4d:78:62:14:e9:a3:a3:de:39:
94:4b:83:6e:a9:73:5d:43:ad:76:34:3e:a4:53:34:
a6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:32:9B:62:6A:62:99:F1:3E:EB:9E:B0:A7:13:D0:71:D5:33:60:E6
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/2DKbYmpimfE-656wpxPQcdUzYOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.54.0/23
193.37.64.0/23
194.35.41.0-194.35.42.255
Signature Algorithm: sha256WithRSAEncryption
43:64:48:1c:74:b1:16:41:9b:29:d2:cc:98:bc:c0:7a:9d:2c:
77:47:9a:d0:b3:24:33:51:04:cd:87:d6:9d:05:d7:1f:b5:50:
63:9c:ea:d1:39:16:91:74:41:a6:ec:4c:6c:5a:63:bf:d2:cf:
09:34:41:32:92:78:f7:aa:fe:05:20:9f:48:2b:cf:23:d7:c1:
af:24:5d:b1:68:be:92:46:09:8a:7a:f0:f2:52:c3:db:dc:c8:
a6:09:2f:ed:9f:ff:77:3c:64:1e:54:c0:7d:c8:e6:b1:0e:c4:
b1:84:64:7a:3b:01:25:02:35:d2:b3:6e:f2:e9:c8:e4:5a:72:
d4:b0:90:65:9f:11:5e:55:70:de:39:26:fe:1e:3a:1d:7d:a0:
95:d8:6d:6f:21:31:21:4c:2a:d7:c7:f6:93:14:31:24:e8:6d:
a1:11:15:34:cc:89:76:d8:e7:84:5f:42:02:3b:ec:af:14:25:
9a:47:52:a9:f8:80:8d:da:c9:50:74:15:5f:c0:bf:10:99:e4:
c6:f4:d9:0b:b7:fa:df:78:88:83:62:19:51:92:b5:88:24:c1:
94:6f:7d:a4:10:3f:eb:df:89:f0:b9:6e:19:60:0f:97:b8:14:
5a:3c:c6:2e:16:57:d4:e5:04:9d:e3:ee:0d:38:49:79:9b:db:
bf:cf:99:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org