Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6-hwgsQCYQs1m6j-RJVWLsLpqJ0.roa
File: 6-hwgsQCYQs1m6j-RJVWLsLpqJ0.roa (raw, json)
Hash identifier: c/a2gNOI9aXoKfHjCDfXwQWh2A6TcPfWybBAioiV3CA=
Subject key identifier: EB:E8:70:82:C4:02:61:0B:35:9B:A8:FE:44:95:56:2E:C2:E9:A8:9D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B63185A6E0925B80532F7FE69B3617
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6-hwgsQCYQs1m6j-RJVWLsLpqJ0.roa
Signing time: Mon 02 Jan 2023 09:00:43 +0000
ROA not before: Mon 02 Jan 2023 09:00:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 185.230.54.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:31:85:a6:e0:92:5b:80:53:2f:7f:e6:9b:36:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebe87082c402610b359ba8fe4495562ec2e9a89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e4:c4:d1:8e:f3:12:d5:9b:6a:81:60:b0:17:
02:d5:0a:44:5a:29:12:04:6b:ac:27:7c:85:c3:39:
81:cc:e0:07:d2:e0:41:ec:13:3a:77:d9:bf:4f:6d:
0d:8f:51:18:98:db:ef:71:1d:da:2a:31:49:48:03:
8c:4b:df:3d:42:2f:42:1e:c9:e7:37:91:7b:67:c0:
35:e8:10:d1:17:40:f0:6c:58:c8:d1:d4:99:b2:dd:
5e:13:ad:97:39:4d:a6:4a:73:80:f5:86:26:b4:50:
36:59:49:83:13:c0:e0:fa:42:3d:39:de:b2:9a:c3:
12:c8:d3:2e:68:79:03:00:dc:6a:ac:03:46:ff:52:
ca:71:4a:11:1d:d7:8a:f3:19:08:cc:f2:49:3f:09:
6b:aa:3f:da:2e:e6:77:52:a5:cc:cd:9a:a1:98:27:
fb:b9:5d:69:99:4b:0a:76:5c:fc:46:04:cf:78:ec:
d4:07:ab:42:11:c0:4f:13:48:d3:04:cc:d7:06:e8:
d1:ae:0a:af:98:82:b3:1c:f7:33:28:ce:f0:fb:7f:
31:69:e7:c3:ea:37:95:6d:22:f5:ef:f4:1c:1c:c5:
5c:c0:26:7c:63:5d:9d:41:22:37:7d:4c:4e:50:0e:
80:1c:4e:35:e3:4a:88:cd:8b:f5:02:c4:92:e8:52:
80:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E8:70:82:C4:02:61:0B:35:9B:A8:FE:44:95:56:2E:C2:E9:A8:9D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6-hwgsQCYQs1m6j-RJVWLsLpqJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.54.0/23
Signature Algorithm: sha256WithRSAEncryption
22:91:3b:10:21:71:c6:31:b8:d5:87:9d:3b:55:53:96:c8:63:
a3:91:44:51:d8:39:58:ed:40:3c:f8:f7:1c:25:83:d5:b2:58:
e6:bd:07:46:65:e2:40:d8:bb:21:a1:63:3a:56:3a:49:be:19:
77:94:09:97:9d:50:ce:e2:10:79:40:4c:a4:6f:8f:a1:43:94:
0b:84:0b:41:48:a0:24:3b:bb:53:79:5d:68:ef:d0:d6:28:e4:
d6:56:37:8c:22:73:68:65:6c:4d:39:a2:67:de:32:54:8e:24:
80:fc:7f:71:99:26:97:94:e3:d0:d2:d4:f1:82:95:3d:4d:24:
f7:aa:d7:57:d2:f4:00:d5:54:4f:fe:4c:3b:d3:a7:92:aa:83:
e3:95:4e:d6:c4:3a:03:1a:3e:b4:6f:0d:78:59:d1:3a:98:73:
58:d3:ea:f1:ed:f1:c9:09:43:a6:4f:cf:38:2c:93:2b:ac:06:
7c:0c:63:4f:27:d2:13:0c:9c:05:f6:54:14:60:7f:61:8e:7f:
04:5c:30:d6:5a:b7:dd:30:d9:52:5a:11:1d:cd:40:6f:0d:ee:
ee:9d:f5:05:ee:83:28:a6:ce:d1:04:04:4b:65:00:22:10:64:
43:6f:9d:f1:3f:e2:c7:33:e6:5c:28:97:f2:58:27:4f:fb:8b:
3f:36:38:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org