Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/83N9w8WAwT2GlP44_PnWwV8Inmg.roa
File: 83N9w8WAwT2GlP44_PnWwV8Inmg.roa (raw, json)
Hash identifier: q9bWmJ5tHHszOQcr6ygZXuOior+9NL2YTOKxwxQ/90c=
Subject key identifier: F3:73:7D:C3:C5:80:C1:3D:86:94:FE:38:FC:F9:D6:C1:5F:08:9E:68
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C43A06789DCA22D9B754630D3B7D8C5D0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/83N9w8WAwT2GlP44_PnWwV8Inmg.roa
Signing time: Thu 07 Dec 2023 09:33:54 +0000
ROA not before: Thu 07 Dec 2023 09:33:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57870
IP address blocks: 185.220.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:43:a0:67:89:dc:a2:2d:9b:75:46:30:d3:b7:d8:c5:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 7 09:33:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3737dc3c580c13d8694fe38fcf9d6c15f089e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:73:f5:8d:02:6d:5a:a0:af:a6:9a:ca:0c:33:
23:d5:7b:31:c4:f5:c5:4c:7d:23:9e:77:75:5a:55:
21:d6:e7:6c:b6:24:31:d5:e9:60:2e:74:95:66:e5:
fa:c9:f3:06:25:68:0c:4a:c9:4e:21:3c:db:42:f2:
93:2c:74:8c:5c:21:de:b9:7e:70:9a:8a:96:04:c3:
70:d6:6a:34:ae:be:dd:e1:54:f0:2d:7f:0a:2c:3c:
ad:25:6a:91:1e:df:fb:17:ee:64:12:45:a5:be:d4:
0d:f1:92:c9:11:05:b1:d4:5b:90:09:9b:26:42:89:
76:4a:e3:23:01:0a:d9:e5:d7:52:7e:59:69:03:40:
40:cf:ed:42:c1:e5:93:82:23:3a:3c:ac:0a:d8:83:
1f:fb:a7:04:93:6f:21:1a:a5:5d:7a:88:61:5c:5e:
01:c1:4c:7b:f9:7f:0e:78:fd:4f:ba:09:af:41:43:
a2:4f:66:d8:09:49:eb:28:fe:12:44:aa:de:7d:f1:
56:33:e5:1b:73:f3:e7:7d:01:87:a9:c2:e5:32:dc:
2f:27:64:0a:5d:61:5b:d1:8a:1b:cf:e0:d3:10:63:
a1:86:87:12:8b:bb:11:54:90:81:6f:82:8f:09:96:
6e:4e:ae:33:b2:a1:56:f2:6d:f6:a8:5b:79:f2:48:
19:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:73:7D:C3:C5:80:C1:3D:86:94:FE:38:FC:F9:D6:C1:5F:08:9E:68
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/83N9w8WAwT2GlP44_PnWwV8Inmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.251.0/24
Signature Algorithm: sha256WithRSAEncryption
71:e6:04:43:d5:38:56:71:2b:d7:9e:7e:66:93:72:4d:62:99:
aa:2a:52:29:55:55:1e:97:59:bc:eb:80:81:17:05:f9:3e:eb:
fc:97:c5:14:4d:80:69:34:85:19:e4:b9:1b:f0:a2:15:97:97:
d5:97:cd:01:99:f2:f2:df:57:2c:7d:bf:0c:ea:80:0b:59:65:
74:8a:2c:93:2e:fa:93:ab:cb:5c:4b:70:ad:7b:32:59:7a:b7:
5b:58:04:29:15:c2:b8:af:80:22:02:71:64:a6:4b:3e:13:6a:
72:66:d6:ce:34:a4:e4:18:69:bd:6d:12:26:76:f9:3f:dc:23:
fe:f0:22:01:c9:f5:71:29:85:67:37:c7:74:43:7d:9e:97:0b:
84:44:0f:23:ea:af:60:3c:a7:34:20:60:b3:3e:10:e1:7c:f9:
12:76:2c:0e:d7:5d:5a:25:a9:c6:07:d0:74:c4:d5:36:51:3f:
32:da:43:c8:9b:b2:ad:1b:33:97:58:0f:08:8f:fd:a5:ea:f9:
72:f7:40:3b:5f:c4:6d:c0:32:7b:b4:f2:e0:8a:98:58:64:39:
e8:50:74:93:28:4d:a5:d1:3a:28:96:83:bb:dc:3e:2d:c8:1d:
7d:b4:57:10:f3:92:5e:0d:f8:28:e8:86:17:2d:7b:3d:b7:2d:
c5:07:b1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org