Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8oSTrg29Ava0jC5HUcA5McqFPxc.roa
File: 8oSTrg29Ava0jC5HUcA5McqFPxc.roa (raw, json)
Hash identifier: oCXoAj8DsgzNpAeOUlo/7t2Hbl5djWFcPgf2pdsD9Yk=
Subject key identifier: F2:84:93:AE:0D:BD:02:F6:B4:8C:2E:47:51:C0:39:31:CA:85:3F:17
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0185FD2C2997ED1340EB8FD38A4E399E0FFF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8oSTrg29Ava0jC5HUcA5McqFPxc.roa
Signing time: Sun 29 Jan 2023 10:56:47 +0000
ROA not before: Sun 29 Jan 2023 10:56:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213250
IP address blocks: 185.225.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Mar 2023 11:27:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fd:2c:29:97:ed:13:40:eb:8f:d3:8a:4e:39:9e:0f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 29 10:56:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f28493ae0dbd02f6b48c2e4751c03931ca853f17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:93:de:65:de:37:69:5f:e4:83:00:eb:4b:07:
76:bc:24:6b:2f:14:79:e9:a9:47:f2:17:66:e5:de:
ab:1f:7f:c5:ae:e7:85:8e:c8:c7:4e:ce:f9:df:db:
5a:56:0f:be:8c:6a:15:b9:92:c0:57:3b:8f:a0:09:
f1:5e:d4:46:1c:b1:b9:22:c4:19:49:f7:80:3f:37:
4a:7b:71:8e:10:d4:c7:89:21:2e:9d:d6:26:48:10:
4b:97:98:ef:0f:a4:31:d8:24:61:e0:1f:f4:19:a1:
e5:31:eb:6e:7e:00:a1:6c:53:b2:68:0c:9b:fd:6e:
2c:98:db:64:a6:cd:dc:df:6a:33:e5:4c:a5:bf:c7:
9f:ab:b7:88:27:9f:84:48:5d:17:8a:ab:01:32:d1:
06:ac:1c:3d:74:ed:88:cc:92:5c:05:45:6c:57:2e:
0f:7a:59:e0:2e:2c:f5:d9:f6:37:50:f8:ab:02:d9:
ba:81:83:0d:24:41:6f:25:d6:06:eb:45:66:a4:23:
5a:19:01:b5:60:4a:8f:6a:e5:81:89:f2:c7:55:9b:
c6:3d:3f:25:db:ee:97:89:56:1f:58:48:5b:ce:17:
03:cf:00:5e:19:81:1a:5e:0b:ca:62:bd:12:29:02:
9a:f7:37:6e:f5:f0:78:c9:3b:d4:43:ea:9c:0f:41:
8c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:84:93:AE:0D:BD:02:F6:B4:8C:2E:47:51:C0:39:31:CA:85:3F:17
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8oSTrg29Ava0jC5HUcA5McqFPxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.22.0/24
Signature Algorithm: sha256WithRSAEncryption
88:51:c0:bc:4c:f4:07:ae:2c:fe:2a:88:8f:87:bf:6f:05:9a:
76:f4:7e:83:76:8c:15:9d:f7:c8:c0:1f:5c:bb:cb:6e:f6:da:
85:ee:cd:4d:c8:d8:99:61:6a:87:94:54:de:59:34:5e:a7:bf:
2e:b7:5a:5f:60:43:aa:4a:a9:03:e8:79:b2:e0:7e:bb:b4:1e:
75:6c:0e:da:1b:de:79:e0:71:eb:19:7b:c7:ff:89:b9:e9:0b:
8c:93:cc:43:e5:45:a7:af:65:e0:4b:10:8d:f6:93:05:d5:55:
37:e7:6b:c5:6c:b8:c9:17:99:0b:80:4a:8b:99:08:97:d3:39:
68:d6:2a:9a:77:8c:b1:04:ef:0f:94:40:e0:40:7b:07:43:b0:
c2:ba:52:f7:ea:34:09:de:22:1a:d5:c0:2d:46:11:07:42:48:
88:ea:a3:1a:e8:dc:86:47:dc:69:11:84:40:bb:cd:be:96:46:
72:91:1c:06:8c:a2:e5:2d:54:74:66:6e:ac:26:6c:99:c0:30:
57:96:5d:33:24:b2:df:8f:94:c1:1a:92:8f:d4:9d:14:41:bf:
c1:d0:c1:7f:74:4f:a5:75:df:8f:bd:0f:c6:b7:35:e6:03:17:
20:6e:df:ab:36:9a:30:16:05:ee:d2:01:1a:ae:13:d3:1e:6e:
6d:6a:ed:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org