Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9G2MYpnj6vteXgyZrHDKbIeTfKs.roa
File: 9G2MYpnj6vteXgyZrHDKbIeTfKs.roa (raw, json)
Hash identifier: IZPNMeZdZ0PKWRImN4pChogWXitsh3tzv0ZsF27LjZI=
Subject key identifier: F4:6D:8C:62:99:E3:EA:FB:5E:5E:0C:99:AC:70:CA:6C:87:93:7C:AB
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B64E4B16D70463DF2EF7086F554DB8
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9G2MYpnj6vteXgyZrHDKbIeTfKs.roa
Signing time: Mon 02 Jan 2023 09:00:51 +0000
ROA not before: Mon 02 Jan 2023 09:00:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213006
IP address blocks: 185.214.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:4e:4b:16:d7:04:63:df:2e:f7:08:6f:55:4d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f46d8c6299e3eafb5e5e0c99ac70ca6c87937cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ad:1c:36:89:d2:03:3e:ee:c9:81:81:b5:66:
7f:39:01:1c:1a:d1:d2:00:bc:39:bd:4f:5a:41:c3:
1c:b0:5b:85:60:7c:f8:e2:20:b1:2f:76:76:e9:cd:
dc:db:69:a8:a1:31:96:4a:06:37:c4:10:5b:1b:23:
f6:0e:30:4f:ba:97:8c:2c:49:c4:c9:b3:e9:ab:2e:
89:6f:4f:1d:55:18:34:79:17:65:7b:8c:e7:fc:d6:
8f:9f:42:94:dc:15:b9:4a:70:62:24:3d:31:2d:30:
04:0c:45:36:36:bb:02:e7:47:94:8a:df:31:bf:7a:
5d:69:61:ad:ec:9d:40:28:e0:65:be:59:f8:3c:b0:
50:aa:1d:e0:25:02:ca:b1:a8:57:42:b8:af:ba:4f:
51:fa:14:73:d4:b9:2e:cf:4f:36:ac:53:e6:b6:3d:
e7:f6:0d:e3:c8:02:d9:de:42:34:9f:d4:78:4c:7b:
d0:c9:64:42:1c:3e:50:2f:0f:ee:de:cf:30:a7:e3:
63:a1:35:8e:a7:ab:c9:10:80:a5:1d:35:cc:dd:c2:
70:bb:ae:33:c6:d9:7d:fa:90:66:a2:14:c5:4e:45:
41:e6:b8:df:9b:b5:2c:07:eb:24:8d:3d:11:e1:c5:
9c:ee:62:7d:ca:73:3f:5c:27:62:7f:12:44:dc:4c:
eb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6D:8C:62:99:E3:EA:FB:5E:5E:0C:99:AC:70:CA:6C:87:93:7C:AB
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9G2MYpnj6vteXgyZrHDKbIeTfKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.84.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:1e:8a:6c:72:65:65:46:e8:d0:f0:d8:cb:93:75:4b:a1:be:
e1:f9:03:1f:fe:2e:04:74:2b:ac:54:8d:b9:d5:b8:c1:d4:98:
64:02:68:e6:f2:d6:19:e8:b5:0b:09:08:15:7f:85:86:3c:33:
04:a4:d6:67:cc:47:2b:85:3a:c0:57:09:05:77:db:a7:62:dd:
d7:4a:23:95:d0:11:00:f9:a7:a1:89:21:b6:f2:bf:bb:af:a2:
9e:fb:04:05:8f:d3:51:2c:a7:7c:d1:e1:f9:4c:35:a8:70:c0:
bb:47:1d:71:a4:f2:60:31:63:9c:3e:db:d0:f7:05:55:99:92:
3b:e5:ab:65:31:b2:04:fb:6e:79:b1:49:69:21:56:ae:b4:69:
4b:9d:8b:43:76:92:98:b1:1a:4a:a1:d7:3c:74:8d:3a:79:31:
c5:60:37:ba:d1:ac:68:28:9a:bc:0f:aa:56:a9:a6:82:20:18:
d1:5f:8b:a7:bf:e4:0f:64:3d:fb:94:ed:a3:85:de:5b:2e:c5:
4a:61:56:9f:07:b8:ed:69:85:2b:d3:a1:34:6c:8a:fb:5b:b9:
b7:80:f7:3d:61:53:0c:05:83:6e:c9:34:8c:ee:1e:cf:6c:b5:
94:f8:c4:d8:c7:f3:fb:b6:76:47:de:dc:71:a8:5b:94:50:06:
70:2b:2a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org