Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/81CoJckVthGdrmQFaANU9Vt1eLA.roa
File: 81CoJckVthGdrmQFaANU9Vt1eLA.roa (raw, json)
Hash identifier: PtFWBeRIiyrrMdy1lopFjBK2iM0mhqgxFxpoCdXqi10=
Subject key identifier: F3:50:A8:25:C9:15:B6:11:9D:AE:64:05:68:03:54:F5:5B:75:78:B0
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CD04ABE666714896657C0C3197C56B7A5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/81CoJckVthGdrmQFaANU9Vt1eLA.roa
Signing time: Wed 03 Jan 2024 17:06:48 +0000
ROA not before: Wed 03 Jan 2024 17:06:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 185.209.36.0/23 maxlen: 24
185.218.102.0/24 maxlen: 24
185.199.159.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.209.74.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
185.238.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Jan 2024 22:39:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d0:4a:be:66:67:14:89:66:57:c0:c3:19:7c:56:b7:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 3 17:06:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f350a825c915b6119dae6405680354f55b7578b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:31:7a:f8:f4:45:67:ae:92:f6:1e:e8:2d:da:
99:df:31:4b:4a:ef:5a:ad:49:7b:85:ea:c8:e8:dc:
b5:ae:9c:00:42:ea:f9:95:0a:77:05:a8:43:ca:e7:
95:4f:50:0f:13:46:a5:46:69:2d:27:40:35:b3:fa:
18:2d:63:41:15:ac:39:71:bb:20:0a:aa:05:90:88:
c6:18:3b:18:e3:e6:fc:c2:9c:bd:a2:5b:bd:c9:1e:
2e:58:76:9e:dc:f3:a7:a6:ff:5d:71:8b:6e:96:44:
86:35:7b:f1:6d:e1:01:c5:6d:55:ed:8e:35:c6:20:
97:b4:db:21:d2:23:5f:6e:d9:e2:f1:e4:a0:df:21:
7d:bf:09:9e:d7:6b:68:6f:da:63:42:31:cd:cf:d5:
8f:06:08:0a:0b:a0:d9:a7:0c:9e:87:70:0e:5c:f5:
29:77:48:9b:dc:80:8b:fd:72:39:c3:c9:44:4d:eb:
28:35:14:6d:1e:b0:51:fa:6d:ff:10:30:5f:7d:a3:
1a:b5:7d:fe:bd:59:d9:14:e1:d4:6c:ec:26:f9:09:
7c:30:25:a9:1d:1b:ab:60:18:78:dc:e3:a5:b3:1a:
9c:c9:47:97:f7:21:13:59:42:55:25:88:31:9c:b5:
43:aa:c5:3b:45:16:50:5e:cf:96:5a:40:6d:d6:37:
ef:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:50:A8:25:C9:15:B6:11:9D:AE:64:05:68:03:54:F5:5B:75:78:B0
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/81CoJckVthGdrmQFaANU9Vt1eLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.209.74.0/24
185.210.152.0/22
185.218.102.0/24
185.223.76.0/24
185.223.80.0/24
185.225.2.0/24
185.226.105.0/24
185.226.107.0/24
185.227.145.0/24
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.251.231.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:76:78:20:ce:e2:3a:01:e8:3c:46:70:1e:97:56:73:fb:99:
35:80:13:8e:51:29:50:38:56:97:ad:25:c5:be:60:05:b3:05:
17:74:dd:df:d0:18:2b:1f:e2:d3:aa:56:a0:73:b4:81:19:f3:
85:91:68:31:64:d5:df:27:03:0f:72:ac:04:7d:3e:7d:85:3b:
2c:65:a6:82:d8:84:fa:3c:71:4d:59:e6:ea:6f:4e:df:00:eb:
6d:52:b5:86:88:5f:91:c2:2f:b5:42:9d:0f:73:9c:7a:78:8b:
da:8e:d4:54:11:52:0b:1b:f9:ac:10:e9:8f:92:cc:8d:ee:87:
ed:5c:5d:bf:ac:6b:cb:b6:00:f0:39:ac:7e:d4:4a:39:6c:3b:
5f:52:d6:49:2e:90:e8:0d:50:24:91:5f:0e:ff:df:e9:9f:59:
7f:0e:5e:d1:b2:99:3d:fd:00:a4:2f:8e:a8:58:e3:3c:e8:37:
c9:39:70:6f:c7:65:80:45:76:6a:6a:69:54:06:89:2a:90:64:
60:ec:93:70:1d:a7:f5:f6:c0:2f:13:85:f4:21:b4:1b:dd:16:
ba:41:0b:fe:f3:75:e9:fe:ef:c7:63:9a:5a:12:15:4a:f1:05:
5d:d9:9c:e1:38:67:b3:f5:02:52:a2:5a:ae:94:94:5e:50:a6:
b4:75:fe:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org