Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/42WYv1y6R_UXn7t0s3A-G03RsJ8.roa
File: 42WYv1y6R_UXn7t0s3A-G03RsJ8.roa (raw, json)
Hash identifier: zxu58YHyUHC30CoB9s8Ylffnix8EuwkJcA9WDwe0KCg=
Subject key identifier: E3:65:98:BF:5C:BA:47:F5:17:9F:BB:74:B3:70:3E:1B:4D:D1:B0:9F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018761498DAEF8A2EEE520116EAAAFEFE9C5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/42WYv1y6R_UXn7t0s3A-G03RsJ8.roa
Signing time: Sat 08 Apr 2023 14:33:42 +0000
ROA not before: Sat 08 Apr 2023 14:33:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 185.126.83.0/24 maxlen: 24
185.240.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 07:38:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:61:49:8d:ae:f8:a2:ee:e5:20:11:6e:aa:af:ef:e9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 8 14:33:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e36598bf5cba47f5179fbb74b3703e1b4dd1b09f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3d:11:4a:04:71:31:24:86:8f:13:cc:66:32:
b3:e3:b1:f8:20:c8:99:51:88:71:6c:55:04:a7:8d:
1a:bc:06:63:dc:5a:13:0d:33:9f:40:b3:26:8e:89:
67:6e:f3:cc:e4:a3:c9:ea:e0:43:05:a0:e9:cc:52:
88:8d:c4:f4:60:cd:ae:00:f2:28:91:72:d6:f4:94:
7f:2e:7d:04:0e:4a:83:b0:3d:a5:47:2f:11:f8:6c:
29:4c:c8:87:c7:e2:cc:fb:c0:83:e2:c7:e0:07:ed:
b5:ef:62:43:66:cd:5e:9f:89:f8:6d:cb:01:f1:46:
15:ca:40:9d:eb:d3:d1:df:87:49:3b:5c:f1:aa:6d:
a1:1f:c6:a3:e8:52:e2:3f:f3:f8:f2:0d:5b:38:5f:
6c:d7:97:80:6d:90:6b:5e:15:15:aa:af:72:87:f1:
d7:8d:77:9f:ee:3e:f4:fd:c4:d3:db:e7:c6:6e:8b:
7c:f6:66:88:e8:1a:d6:66:cf:64:aa:5e:7a:00:84:
d2:30:a2:9e:9f:9e:0e:e0:06:a4:2c:2e:d7:76:d5:
8c:27:c9:50:a4:b9:ce:6c:eb:91:46:23:12:5b:d3:
bb:36:29:ff:ba:27:4e:15:6d:70:90:c8:0d:7d:40:
7d:98:12:91:2c:09:97:27:d1:54:9a:80:ab:99:67:
10:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:65:98:BF:5C:BA:47:F5:17:9F:BB:74:B3:70:3E:1B:4D:D1:B0:9F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/42WYv1y6R_UXn7t0s3A-G03RsJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.83.0/24
185.240.123.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:2e:9e:a9:3f:30:d1:44:84:30:89:91:aa:e8:ee:05:6b:1f:
62:7a:6e:e9:59:af:e0:92:94:9e:f3:3f:c1:5d:37:fc:2e:5f:
29:2a:b0:2b:91:c3:9d:00:95:3c:0d:b8:b8:e9:6c:a7:5a:94:
e3:68:9f:12:92:fd:79:4b:ce:fa:f1:b2:69:b9:1d:9b:d3:74:
f7:07:37:49:04:2b:da:96:1e:3f:a1:33:74:06:bd:8c:a0:60:
34:91:95:04:e7:1c:d4:06:da:3b:42:25:ce:13:38:30:03:9e:
5e:74:2c:9d:1b:fd:2d:89:5d:74:44:dc:4a:ca:87:23:ad:53:
54:5b:07:99:50:68:1b:a0:c1:77:a8:43:09:8d:91:77:86:6c:
01:f0:4b:a1:d5:b9:10:3c:55:33:0b:82:de:86:b6:e8:24:29:
b9:96:d3:b8:07:a1:ce:a5:02:e6:de:33:3b:71:30:c8:19:51:
b8:a0:8e:da:a1:8c:a3:88:e9:9c:fe:ff:e1:8a:94:8b:4a:25:
4d:43:c2:a5:c3:81:7a:ef:11:2f:02:f9:ab:d3:73:40:be:60:
2b:5c:76:01:f1:6e:40:b2:ba:3b:88:e6:c3:a5:ef:ea:90:30:
7b:ef:7d:96:25:fc:34:6f:da:38:91:6e:12:9e:0e:8e:6c:2d:
63:77:2c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org