Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9yO0hGvQMq25NbVyvu5tceKgZpY.roa
File: 9yO0hGvQMq25NbVyvu5tceKgZpY.roa (raw, json)
Hash identifier: qeBWQ1aYF0o2T8nLeMnfueriuALjw57HlQWQyM1uBKs=
Subject key identifier: F7:23:B4:84:6B:D0:32:AD:B9:35:B5:72:BE:EE:6D:71:E2:A0:66:96
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B63ED406ADC17E4C2D90384AAAD24C
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9yO0hGvQMq25NbVyvu5tceKgZpY.roa
Signing time: Mon 02 Jan 2023 09:00:46 +0000
ROA not before: Mon 02 Jan 2023 09:00:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206092
IP address blocks: 185.238.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Nov 2023 10:24:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:3e:d4:06:ad:c1:7e:4c:2d:90:38:4a:aa:d2:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f723b4846bd032adb935b572beee6d71e2a06696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7f:aa:7d:fa:02:2e:27:8f:d4:8b:55:1c:a7:
b1:7f:81:b6:7b:a0:83:13:4c:8e:77:eb:0e:24:d3:
8d:81:29:40:3e:a2:3e:2e:0f:ce:7a:1f:d8:bf:1e:
0e:94:d8:11:9a:61:cb:cd:ca:a1:cf:4c:a9:62:ae:
4c:d7:06:31:5e:9b:e7:a9:49:46:83:76:b6:b8:61:
b4:4e:3b:43:b9:d1:b0:d6:43:c7:b7:fb:14:5b:0b:
55:41:81:d6:95:13:89:a1:80:7e:be:14:c5:94:e4:
9b:f0:d5:36:ae:6f:e6:b8:c8:88:b1:f3:96:cf:22:
a3:6b:89:fa:96:94:05:e4:35:73:c3:49:fe:4c:9f:
04:a1:4a:f5:f3:4f:c8:de:2a:dd:d4:b6:dd:8e:e2:
17:d3:64:91:70:8a:5c:f0:fe:ba:83:c0:27:14:8a:
cb:ac:22:a2:f2:18:b9:7f:5f:76:07:fe:bc:0f:43:
f5:a1:a2:ef:be:33:ea:44:9d:2d:12:33:9a:6b:92:
a1:ee:fd:1f:c1:25:72:88:25:9c:1a:bc:58:b5:b5:
bf:06:ab:28:60:33:da:ae:a4:5b:6f:6e:0c:d3:6a:
3e:45:b8:1c:bf:f5:b6:d8:ac:df:65:b0:f0:d9:cf:
d0:fb:3e:4b:9f:c2:ba:0b:0f:22:c3:cf:3d:7a:5f:
ce:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:23:B4:84:6B:D0:32:AD:B9:35:B5:72:BE:EE:6D:71:E2:A0:66:96
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9yO0hGvQMq25NbVyvu5tceKgZpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.231.0/24
Signature Algorithm: sha256WithRSAEncryption
93:20:79:64:41:a0:f3:10:5b:b0:3c:a1:9c:18:53:d8:02:ba:
51:3d:52:20:18:a4:22:14:f4:7d:94:15:6f:d4:87:e3:be:2c:
f6:9a:ff:81:10:2b:8d:05:57:3f:c4:04:8b:b8:1d:af:65:d1:
cc:70:3c:2e:12:54:8c:97:f3:ec:86:67:70:38:b0:0a:aa:b9:
54:ad:c9:b2:a3:55:c7:70:12:e1:a1:04:94:ab:e3:1a:69:a1:
0f:13:3e:88:11:50:57:26:fa:57:f5:f6:c4:9d:14:23:87:f3:
87:b0:a5:ff:4e:c6:b2:eb:1c:0c:bc:3e:89:44:d4:0e:ef:12:
5e:fe:e5:55:d2:b2:90:2f:d6:1e:bc:c9:9b:df:14:16:90:6f:
a1:fe:0d:9b:10:43:1c:8e:97:00:a5:d4:9e:f7:ed:73:43:94:
be:20:23:d4:53:9b:be:a1:df:2a:1a:8c:67:f9:e2:43:c2:27:
8e:de:e8:f5:47:56:4d:6b:ba:59:2a:8f:ea:a9:d1:7c:a6:2f:
1f:5f:60:b2:b4:1b:97:1e:ef:f9:68:32:54:0f:ca:5e:60:64:
b9:75:5f:68:bc:ba:97:a6:85:a3:30:e5:24:ec:58:45:3a:28:
c7:46:7d:6f:2a:63:52:c0:7a:4a:22:2b:e9:41:b1:91:8f:7f:
11:37:24:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org