Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6ttfqD8GUTG2FpgyCGNplmExUIc.roa
File: 6ttfqD8GUTG2FpgyCGNplmExUIc.roa (raw, json)
Hash identifier: HPyqTTszet81SBsX1W8vKzprJ5eIcWNT/a2HwTwJpx0=
Subject key identifier: EA:DB:5F:A8:3F:06:51:31:B6:16:98:32:08:63:69:96:61:31:50:87
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC8027F5A0AC2DBABBD7CBA520B8EEC5A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6ttfqD8GUTG2FpgyCGNplmExUIc.roa
Signing time: Tue 02 Jan 2024 02:30:56 +0000
ROA not before: Tue 02 Jan 2024 02:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57870
IP address blocks: 185.220.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jan 2024 11:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:7f:5a:0a:c2:db:ab:bd:7c:ba:52:0b:8e:ec:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eadb5fa83f065131b61698320863699661315087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c0:b0:f8:ee:dd:89:a8:70:77:46:ff:18:1a:
9b:c2:4e:48:1d:12:6b:85:e3:92:2e:53:bb:de:d5:
5e:79:87:37:7a:38:b0:3b:25:f6:2e:fa:99:62:41:
da:bf:84:1a:35:f5:9e:1f:60:b0:67:b6:80:2c:7f:
96:3e:8d:bf:bc:b0:37:60:ac:33:6f:a5:07:ac:d1:
e1:44:07:c3:06:21:60:de:23:d8:fa:15:68:c9:36:
7d:a0:7f:30:b9:0b:9c:63:80:13:bf:de:03:00:35:
00:dc:e4:6c:43:2e:11:59:c4:2d:bf:45:8a:d5:17:
d2:cd:d4:ab:dd:c3:e0:ce:cb:70:68:ab:93:a3:63:
58:d7:ae:dd:60:fb:a9:7c:59:94:5e:cf:eb:15:3e:
ec:9e:65:63:9f:fa:98:d4:42:87:f7:d1:23:26:7a:
a5:67:14:7b:ec:09:3f:b4:4f:06:da:3c:f0:95:c3:
d5:33:37:3d:87:e5:17:82:57:53:04:fc:d7:17:ce:
88:ac:c6:e6:cb:85:16:60:d5:dd:24:84:2b:53:d6:
bc:3f:c6:8f:bb:65:e1:ff:b8:40:5a:f3:2a:4a:d0:
7f:59:9f:9a:03:b3:31:03:9c:89:e7:88:aa:dd:03:
53:99:a4:e7:a4:ec:c6:45:e6:36:55:b5:9c:95:99:
c4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DB:5F:A8:3F:06:51:31:B6:16:98:32:08:63:69:96:61:31:50:87
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6ttfqD8GUTG2FpgyCGNplmExUIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.251.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:15:1d:7a:8e:c2:ae:5f:a1:93:77:bc:6d:68:3f:7a:c9:17:
d0:77:22:1d:3f:46:e0:57:30:05:d1:6a:d0:d6:b9:76:08:17:
0b:c0:5b:56:6f:ad:5b:17:3b:31:24:38:11:ca:ff:84:b9:45:
2a:46:65:4e:e3:a1:2e:da:50:b0:01:52:af:fe:93:f6:b6:6c:
48:f1:c7:39:a4:48:30:a6:4a:c1:aa:01:cf:97:3f:6d:8e:23:
60:17:8e:8b:85:ad:73:e4:5d:56:de:fa:60:3e:0e:0e:2c:eb:
8b:60:d6:64:75:23:31:de:68:06:cb:cf:1d:38:9c:3e:1d:68:
56:20:13:c3:93:e0:2f:35:1e:68:11:cd:c8:d4:59:5f:dc:b0:
ae:bb:06:fc:2f:71:8f:54:d2:6a:1d:23:ca:bb:ff:2b:1f:cc:
4b:5d:44:b0:7f:dc:6c:fc:7c:f8:0a:93:ee:c7:b0:d8:25:75:
8e:08:f7:66:55:a8:db:03:a1:47:10:d1:27:57:a7:b0:91:60:
26:dd:76:87:6d:27:cc:61:b2:c9:81:0d:e7:c5:3f:3c:83:ec:
c6:31:39:a0:44:48:00:73:68:5b:45:e8:89:ef:a9:71:b0:6f:
27:77:b6:e6:e7:8b:dc:de:87:e7:74:d8:0d:8c:5d:7b:e6:fe:
1e:6a:4a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org