Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9WgIsQ8xEUyYNUZe50cWQSxFo4o.roa
File: 9WgIsQ8xEUyYNUZe50cWQSxFo4o.roa (raw, json)
Hash identifier: qngYss/wHYQxB/HTTMENcwrcFd+9AVzEIryVMjonljo=
Subject key identifier: F5:68:08:B1:0F:31:11:4C:98:35:46:5E:E7:47:16:41:2C:45:A3:8A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018981F5F8A709ADDE0E0F6968489C672BA0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9WgIsQ8xEUyYNUZe50cWQSxFo4o.roa
Signing time: Sun 23 Jul 2023 08:55:28 +0000
ROA not before: Sun 23 Jul 2023 08:55:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212504
IP address blocks: 185.218.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:81:f5:f8:a7:09:ad:de:0e:0f:69:68:48:9c:67:2b:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 23 08:55:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f56808b10f31114c9835465ee74716412c45a38a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:7d:b2:e5:b6:c9:a9:dc:db:3d:43:b3:88:7e:
48:0c:5c:fe:20:f4:f6:62:ac:95:43:12:21:2d:78:
f4:36:44:26:db:8c:98:38:39:ce:fe:2e:bd:2b:29:
74:25:a2:8c:7f:d1:db:23:f6:08:15:30:b8:5f:6a:
c8:72:7c:50:a4:28:24:d8:c7:a5:d0:21:a2:a0:24:
28:b0:3e:42:75:59:c6:7c:47:05:5d:85:fc:40:d1:
89:a3:84:fe:8d:c5:71:e6:6b:4d:83:e1:a4:c3:55:
a4:e9:52:90:52:70:34:6f:82:0c:49:a6:c8:a2:61:
01:57:2d:03:79:7b:7f:87:50:94:2d:8a:0d:d7:c2:
70:5e:4c:e1:9c:22:e2:06:2f:6d:71:db:a5:f5:48:
02:dc:f3:1c:d4:39:d1:d3:46:bf:75:43:66:a3:22:
6e:bf:c8:df:80:dc:f2:b3:4b:84:65:db:d5:34:b5:
1e:38:e6:e7:d5:48:bb:62:9c:40:86:e4:09:f2:8e:
30:55:3f:4f:e9:d7:95:93:6a:5c:07:af:83:8c:02:
02:d3:76:8e:1b:a6:69:48:c7:e3:11:c5:b0:eb:41:
b3:27:e3:a0:c8:db:b8:69:f9:73:0b:06:15:6c:16:
cf:47:69:af:bd:a4:2a:81:e9:5c:c5:9e:79:cd:60:
a8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:68:08:B1:0F:31:11:4C:98:35:46:5E:E7:47:16:41:2C:45:A3:8A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9WgIsQ8xEUyYNUZe50cWQSxFo4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.21.0/24
Signature Algorithm: sha256WithRSAEncryption
21:e7:0a:97:f4:7c:fa:17:91:74:17:77:f2:43:1c:5c:2e:cb:
12:cd:8f:3e:b4:1e:fb:88:14:5f:33:4a:14:e6:da:6d:ee:aa:
81:33:cc:1a:a1:11:55:fb:4b:0e:51:7d:3c:52:64:51:49:d6:
fc:2e:16:61:44:cc:ad:a6:9a:58:1a:c2:88:bc:9d:56:ff:a0:
01:c6:a1:31:67:1a:42:4c:95:b0:f4:e1:5d:2c:df:0c:71:60:
6d:03:c0:6c:0e:5d:e1:45:2f:22:86:09:08:70:a1:23:65:32:
24:04:8d:fa:a2:88:b5:5a:6f:dc:df:77:9b:27:74:69:d8:c8:
9c:3b:6d:aa:73:3b:ca:27:64:3c:93:92:24:00:38:4e:63:f0:
47:10:bb:66:d9:bf:fb:29:20:89:7c:f9:9d:db:54:3c:9c:e7:
8a:4c:dc:f9:45:a3:b5:78:a2:eb:35:a2:37:51:4e:9b:8a:9e:
ee:1c:af:b9:64:fa:04:a7:12:51:df:19:0c:ef:b3:bd:b7:b5:
85:f8:4b:3d:cb:7a:c6:80:27:3f:b9:65:05:99:e3:89:bb:23:
f6:1c:d4:fe:1f:e7:d0:2f:f4:8f:3d:43:fe:29:87:9f:78:04:
16:f4:5f:10:c3:00:c5:3c:f2:e3:c5:d7:57:b4:4f:ca:ca:73:
91:26:91:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org