Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9x822U-Bf0LVTygiACyfujGxSPw.roa
File: 9x822U-Bf0LVTygiACyfujGxSPw.roa (raw, json)
Hash identifier: XtoJ2ud5DZo+fIw5r2n1z+DiABQEpR8f0MhWmXVn9LM=
Subject key identifier: F7:1F:36:D9:4F:81:7F:42:D5:4F:28:22:00:2C:9F:BA:31:B1:48:FC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018D121DB8ED972431FC5B611F5DB6F27090
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9x822U-Bf0LVTygiACyfujGxSPw.roa
Signing time: Tue 16 Jan 2024 11:52:34 +0000
ROA not before: Tue 16 Jan 2024 11:52:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215727
IP address blocks: 185.209.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 09:56:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:12:1d:b8:ed:97:24:31:fc:5b:61:1f:5d:b6:f2:70:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 16 11:52:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f71f36d94f817f42d54f2822002c9fba31b148fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b4:22:60:7c:f9:60:86:c1:b4:9b:a6:a9:96:
40:2a:b5:55:77:50:76:51:14:46:6d:d1:f9:4c:bc:
0b:46:90:25:0b:7f:15:83:7e:e2:b0:be:c2:72:05:
05:30:4f:79:59:73:8e:33:24:1c:b3:7b:ac:f3:15:
62:fe:08:26:cb:ea:6d:79:f3:98:08:8d:50:1c:55:
3e:c4:c9:5f:f8:38:d6:6f:e0:68:df:6e:a6:b0:ec:
5a:25:a2:d7:d1:7b:d8:42:f0:02:54:d0:f9:a3:77:
c0:91:d1:de:4d:77:4f:8b:ba:19:60:ea:5d:c4:df:
eb:18:34:0e:ca:ba:ee:23:6f:ee:98:93:fa:14:44:
d0:3b:a4:cf:f8:1a:fe:77:b5:96:20:be:f8:0a:19:
17:03:9f:e2:5e:27:51:c7:88:81:42:91:22:d7:2c:
ea:97:9c:e1:9e:6e:b8:a0:39:1e:d9:9c:77:23:dd:
95:62:10:2e:bc:a0:4d:d0:98:5b:8d:bd:b3:7b:a1:
5a:e9:0f:f3:4b:02:b6:4c:ec:d2:73:b5:10:41:f1:
30:27:11:27:fc:3b:ee:fb:8f:d1:aa:8e:08:cb:a3:
5c:10:5c:26:c4:84:42:6b:a3:2d:7a:32:c0:75:dc:
9c:3e:61:48:49:5d:3f:67:74:0e:2c:dd:3d:f3:26:
9f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:1F:36:D9:4F:81:7F:42:D5:4F:28:22:00:2C:9F:BA:31:B1:48:FC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9x822U-Bf0LVTygiACyfujGxSPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.75.0/24
Signature Algorithm: sha256WithRSAEncryption
21:0f:3a:06:2d:e4:53:b9:63:8f:86:f4:d2:22:7f:93:b0:a5:
8e:66:f0:bd:06:e5:27:28:4b:fd:ed:61:8e:9e:2f:eb:cb:7f:
94:b7:c7:26:8d:d3:1e:35:08:19:0f:30:9f:d0:8b:c5:6d:85:
65:8b:c8:4e:4a:0c:1c:1f:e7:52:2f:df:aa:89:c6:23:a2:cd:
5c:5c:9d:1d:be:29:b6:6e:3e:33:e2:82:e4:6a:ce:18:f2:22:
98:07:84:2b:b7:82:75:3d:ac:ee:18:bf:07:d7:db:55:89:35:
bc:79:89:ac:78:f7:0a:20:ea:d8:6d:18:92:9c:07:fc:39:43:
87:92:e9:4c:83:9d:58:d2:b8:31:04:1f:5e:0b:f0:7d:27:55:
81:74:9a:d3:e4:e8:f8:bc:2b:a6:70:2f:5d:9d:7c:55:ef:d6:
d7:a9:59:74:ae:f1:a4:cb:44:58:01:66:69:1a:e2:78:36:06:
a5:f4:1b:83:b8:cf:1e:bf:9c:14:a4:43:cb:8e:cd:06:3c:99:
ea:c9:7d:90:77:d1:2e:91:0c:40:25:df:3f:6b:e2:f5:ae:0e:
f8:ab:2b:d6:8c:64:8b:d3:a3:5c:cf:7b:f7:fd:4e:53:78:5c:
6e:a1:7b:ed:c5:a7:af:50:02:af:cb:8b:2b:c7:47:55:7e:1e:
11:72:b6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org