Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5La4QVXXnxiwN2rIGr5JyYWWATY.roa
File: 5La4QVXXnxiwN2rIGr5JyYWWATY.roa (raw, json)
Hash identifier: bdW6/LKyKSMrBNte5EyHlFaBq937nPhzzDX6rEMLUmg=
Subject key identifier: E4:B6:B8:41:55:D7:9F:18:B0:37:6A:C8:1A:BE:49:C9:85:96:01:36
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0188D56EBEA8236737AF60E807608AB1E59C
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5La4QVXXnxiwN2rIGr5JyYWWATY.roa
Signing time: Mon 19 Jun 2023 20:53:04 +0000
ROA not before: Mon 19 Jun 2023 20:53:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397563
IP address blocks: 185.225.20.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Jun 2023 21:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d5:6e:be:a8:23:67:37:af:60:e8:07:60:8a:b1:e5:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 19 20:53:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4b6b84155d79f18b0376ac81abe49c985960136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0f:93:21:b9:25:ae:a1:30:f1:20:ea:8f:c7:
50:26:4b:8e:21:8f:a0:83:0a:69:66:00:d3:cd:83:
6b:0f:35:f8:0f:f5:f2:b6:1c:c5:96:77:6e:e4:c8:
01:01:92:67:bf:56:b6:34:1a:89:34:10:a8:cc:78:
8d:d9:dd:83:4c:f5:a1:46:0d:99:a4:68:fe:66:9f:
4b:83:23:d0:1c:f7:22:63:82:61:a9:d2:f9:f8:9f:
3e:96:76:ba:46:26:77:5a:81:cb:ce:e3:fd:74:48:
b1:08:14:bd:9f:8d:cb:63:c9:0e:4a:17:13:fd:f8:
97:25:16:91:03:f7:ca:54:a3:1e:f2:88:2c:e2:4d:
a7:79:6d:c2:9e:a3:ae:17:2c:51:bb:21:8c:9e:54:
28:d3:7c:61:bc:d7:17:6c:28:94:2b:80:ff:ef:3c:
99:6f:5b:b3:ed:2b:12:06:c1:88:37:0b:8e:96:42:
e6:b8:b1:6d:4d:75:75:88:e5:6e:a4:3d:6b:50:60:
22:39:95:67:78:9c:e4:9c:43:28:75:49:50:d5:3c:
f9:d3:17:c5:ed:8f:f1:6e:bb:0b:41:2c:0c:bf:6d:
06:e8:15:62:aa:53:a5:54:59:ec:9a:50:26:e8:1a:
2b:22:be:c2:fd:2f:03:3b:69:39:68:1b:7a:8c:6d:
b4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B6:B8:41:55:D7:9F:18:B0:37:6A:C8:1A:BE:49:C9:85:96:01:36
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5La4QVXXnxiwN2rIGr5JyYWWATY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.235.0/24
185.225.20.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:f4:56:07:19:d3:3f:8e:b2:80:56:a8:97:ca:87:18:5e:12:
4c:cc:7e:64:73:fb:54:8f:1c:53:be:48:ea:81:db:76:cb:54:
f9:06:1b:11:88:9e:f9:5c:9d:00:9a:59:35:a9:13:ad:2c:2f:
0d:71:0a:10:d8:14:86:cd:9d:f0:df:06:58:cc:bd:85:ad:9e:
0f:f0:9a:9f:7e:98:93:76:25:33:7d:7a:35:5b:00:af:bb:ee:
b9:ac:a4:c3:db:6b:79:cb:b3:82:51:99:7f:c7:4c:c3:76:62:
e1:be:f1:ef:10:c9:bc:5e:19:67:f3:6c:8a:53:b8:9c:c2:82:
bb:63:7b:21:a6:40:70:b1:7f:01:d4:f2:1e:70:25:99:ec:ea:
b4:c4:c1:a6:31:7f:97:c5:33:03:43:bc:db:b1:cb:a1:f2:86:
0e:e3:15:3d:a8:71:bc:5f:3b:12:1b:05:16:a7:d6:1b:2e:d8:
87:5b:c1:a4:c5:00:4e:47:67:54:31:77:c9:ed:80:13:2e:67:
2b:5b:52:69:17:c4:68:6b:2a:7a:4c:ef:bb:45:95:09:4e:3b:
15:06:5e:54:eb:5c:a5:c7:97:81:eb:fb:ee:f7:20:bc:eb:e0:
a1:ac:87:83:54:30:6f:f4:88:0e:be:5e:1d:27:e7:54:72:0e:
9a:8d:77:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org