Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7v8r7MfML8bb_xMnOBArNvbdOYA.roa
File: 7v8r7MfML8bb_xMnOBArNvbdOYA.roa (raw, json)
Hash identifier: fPBFc7t530BOErlcSybqPpaIWP8QdZn2PxY5vksBkMc=
Subject key identifier: EE:FF:2B:EC:C7:CC:2F:C6:DB:FF:13:27:38:10:2B:36:F6:DD:39:80
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018798B48BE713DA187CD2A9F1675AE72144
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7v8r7MfML8bb_xMnOBArNvbdOYA.roa
Signing time: Wed 19 Apr 2023 08:49:41 +0000
ROA not before: Wed 19 Apr 2023 08:49:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 185.108.204.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 11:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:b4:8b:e7:13:da:18:7c:d2:a9:f1:67:5a:e7:21:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 19 08:49:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeff2becc7cc2fc6dbff132738102b36f6dd3980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e6:0c:97:e1:f1:fb:af:87:91:5d:b6:db:e5:
65:39:79:63:5a:26:df:5e:b2:a6:b0:55:d2:ff:49:
f1:5a:60:05:06:26:33:dc:48:4a:98:2d:e2:f2:f6:
78:11:fd:9f:bc:8d:99:b6:65:05:52:d3:b9:0e:f1:
3d:a4:92:c4:6f:76:80:80:d9:74:17:d1:86:c4:c9:
ed:b2:22:d1:96:b7:c3:00:a1:ca:87:a2:4e:62:de:
84:e1:fc:52:6d:70:15:b6:9d:2d:2f:51:71:9c:c1:
ac:e6:d7:cd:29:16:ff:95:63:ff:42:d5:ef:5a:ab:
8e:1c:fc:51:78:a1:e0:1e:ef:9d:b3:25:3d:0f:53:
c3:09:61:3c:55:f6:c9:ac:67:69:4c:2a:69:55:9b:
05:ca:65:bd:8e:fb:ae:24:a9:3d:40:1d:fd:89:38:
a1:be:b3:c7:e7:0d:9e:2a:62:ea:1f:7d:22:cb:0e:
31:ee:a9:f6:1c:27:2f:16:9f:24:fd:9d:36:9e:7a:
72:1f:82:36:d5:b9:94:9e:0a:34:d9:a9:7b:c9:d6:
bb:71:57:f3:0d:d7:90:ea:21:18:fd:be:88:6c:9f:
d5:2d:6b:68:a6:22:57:f3:51:1a:33:65:8c:37:e2:
57:34:30:a2:6d:62:49:33:13:51:7c:5c:c9:04:6e:
7f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FF:2B:EC:C7:CC:2F:C6:DB:FF:13:27:38:10:2B:36:F6:DD:39:80
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7v8r7MfML8bb_xMnOBArNvbdOYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.204.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:cc:83:7f:f5:16:7e:10:39:8c:1e:71:58:c1:e8:5e:78:5f:
1d:48:4a:a5:2b:1a:05:bc:b2:b4:dd:64:bd:f9:d4:79:76:53:
6a:d5:32:71:9e:c7:c5:27:79:7f:0f:bd:d7:6c:87:b2:74:25:
fc:1b:a1:5e:71:d7:bd:9b:0b:5a:7c:80:9d:67:ed:a4:ec:c1:
b7:2d:fd:3d:59:73:f4:b6:0e:9e:32:1b:ab:33:fd:4e:71:b7:
17:07:c3:13:05:4f:ec:13:99:39:c7:77:0c:75:4b:e1:17:eb:
3d:6a:10:42:00:ca:1d:0c:6e:c7:c6:be:31:00:59:f1:45:34:
9a:1b:b1:d5:be:62:c7:4f:cb:7b:77:c1:b8:19:ec:bc:bd:c6:
57:4f:2d:06:bd:de:6e:2c:ae:04:00:84:ec:23:a6:ac:80:d4:
43:d6:d0:96:6a:e9:98:6e:c7:f5:2e:54:fb:39:d9:a9:39:b4:
19:a9:ab:e9:cf:6e:34:04:f4:ad:af:cc:11:bf:0d:2f:5c:bb:
2d:2c:9c:43:02:e4:ed:10:47:dc:a8:98:cf:30:0d:40:38:2e:
66:06:4f:19:0d:b3:6d:be:bf:4f:1d:64:23:23:43:e7:fe:da:
74:18:94:b5:37:01:6a:3d:fa:39:56:09:19:20:a8:7f:0b:15:
a2:5b:c2:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org