Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/47dNKb2YlZ1QrmhtirHQEBU9_cw.roa
File: 47dNKb2YlZ1QrmhtirHQEBU9_cw.roa (raw, json)
Hash identifier: i8QYu0JT8M6hblMGsMYtI22pN9F3Q1hemOjsJ+pmV60=
Subject key identifier: E3:B7:4D:29:BD:98:95:9D:50:AE:68:6D:8A:B1:D0:10:15:3D:FD:CC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B6353BE2D09EEB005E92101B25E930
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/47dNKb2YlZ1QrmhtirHQEBU9_cw.roa
Signing time: Mon 02 Jan 2023 09:00:44 +0000
ROA not before: Mon 02 Jan 2023 09:00:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50666
IP address blocks: 185.228.160.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:35:3b:e2:d0:9e:eb:00:5e:92:10:1b:25:e9:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3b74d29bd98959d50ae686d8ab1d010153dfdcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:17:5a:35:d3:98:6e:89:77:41:5c:21:46:e0:
e7:b4:a6:0f:ac:dc:cd:7b:d5:da:59:a4:84:e1:90:
cf:8b:04:34:38:19:05:f6:d0:3e:14:25:ee:04:7f:
77:9c:ac:21:ef:41:fc:05:74:f4:86:d5:55:d4:ab:
f2:59:fa:f3:1b:86:c2:9b:4a:b7:cd:27:e8:a0:d3:
f6:b3:6b:ba:cb:06:07:80:0a:91:f8:7a:68:12:5a:
03:6b:bf:0c:61:2b:15:8b:9a:5e:48:58:2f:09:d4:
b4:f1:9d:7e:f7:07:ea:39:6c:4d:fd:00:d3:3f:08:
51:d8:66:73:4a:33:a5:10:c4:e1:4f:66:09:fe:b4:
8d:bf:c8:76:8f:52:2e:db:b9:9b:4b:be:90:ff:1a:
41:39:31:a3:90:57:2f:e6:6c:2c:a0:58:0b:fd:c5:
f7:ec:1e:39:63:6d:89:a0:b1:6b:1e:a7:d8:62:61:
16:c0:41:52:42:50:49:4d:11:aa:cf:2a:6a:b3:a9:
59:db:cb:7c:53:32:c5:7d:c3:59:56:78:6b:c7:6c:
48:6c:cc:08:bf:c3:8b:d8:28:d6:eb:65:78:ef:8f:
35:77:5c:a5:f9:7e:b0:d4:dd:fb:10:6b:12:4f:54:
bd:0a:43:f3:84:c1:f2:b9:94:ff:44:60:eb:c0:83:
24:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B7:4D:29:BD:98:95:9D:50:AE:68:6D:8A:B1:D0:10:15:3D:FD:CC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/47dNKb2YlZ1QrmhtirHQEBU9_cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.160.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:c3:24:7f:4b:82:09:3f:0b:06:96:ee:2d:84:f1:e2:84:5d:
05:12:c8:bc:92:cc:80:28:73:97:95:6f:2c:5d:a4:f2:e0:d8:
1e:40:eb:62:5f:79:6e:9f:30:16:d6:ec:9b:06:a0:5a:af:71:
49:06:0e:dc:f8:d2:68:9e:72:11:47:2f:8c:bd:ef:0b:a0:98:
be:37:fa:d8:45:5c:fc:e9:58:1a:f5:07:2e:9c:6b:59:88:73:
29:e3:31:ae:0c:f4:a5:15:81:8c:61:8a:20:48:19:0b:83:e4:
ae:18:2c:94:b8:a5:d8:91:a1:6f:13:0b:d7:57:51:4f:87:c4:
74:01:5f:5e:b7:ea:d9:b7:9b:33:46:00:56:b8:8d:bc:56:8d:
6b:79:3a:86:22:58:4f:27:8a:b2:2f:7f:47:1f:1c:bd:f6:3a:
b8:72:3d:f6:79:1a:f2:45:70:f0:9c:a2:cb:d7:53:ec:be:18:
7b:40:2a:09:87:b4:11:bc:37:21:98:bc:a1:6c:bc:8f:93:a4:
33:98:3e:3e:b8:25:6e:a4:2f:c0:d3:8c:fd:f7:63:60:4e:a6:
8f:a9:82:0a:08:97:b5:c7:3f:59:0e:71:3b:26:ad:7f:f7:0d:
b7:14:22:09:13:86:c3:ae:ad:cf:bc:da:40:67:2a:01:5d:b0:
9f:d0:b0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org