Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AFlAHL3k2Ce437EhDxqQ3uZ6cXI.roa
File: AFlAHL3k2Ce437EhDxqQ3uZ6cXI.roa (raw, json)
Hash identifier: oewyGcSZ+wdm+lOQRVyfY5UugEX2zE3NqUGMfTr57+U=
Subject key identifier: 00:59:40:1C:BD:E4:D8:27:B8:DF:B1:21:0F:1A:90:DE:E6:7A:71:72
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC8028F508C135495EDB32266934411A9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AFlAHL3k2Ce437EhDxqQ3uZ6cXI.roa
Signing time: Tue 02 Jan 2024 02:31:00 +0000
ROA not before: Tue 02 Jan 2024 02:31:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209242
IP address blocks: 185.234.22.0/24 maxlen: 24
185.238.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Feb 2024 15:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:8f:50:8c:13:54:95:ed:b3:22:66:93:44:11:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:31:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0059401cbde4d827b8dfb1210f1a90dee67a7172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c0:a7:db:b8:f1:48:0b:18:62:ce:fc:32:68:
f1:f0:93:ad:fb:0d:bd:5a:01:d0:a5:93:a9:ee:aa:
a2:07:a4:c6:ca:af:9c:62:c7:e8:93:58:fd:20:77:
d9:fc:bd:d5:d0:00:d7:d7:68:39:4d:e7:9d:f2:02:
da:dc:92:2b:01:0f:b4:bb:e9:7d:26:29:ab:c7:7d:
3e:c7:4c:4a:67:76:cb:95:1f:15:3f:91:ca:dc:1c:
66:ed:5b:8e:6a:b3:89:65:2b:c8:8f:51:80:2f:67:
a8:2a:e9:bb:be:2b:0b:b9:1d:56:eb:a1:fd:a8:62:
c6:c5:4e:e8:89:8e:9c:1b:27:64:48:c7:bb:9e:3a:
fa:71:07:3d:7d:67:a9:63:61:1f:61:e3:4e:75:ac:
47:c5:e9:3e:81:f7:d0:34:1f:af:d0:be:0d:ab:29:
97:2f:ae:24:45:b3:4f:67:e1:99:20:c1:b2:4e:50:
93:62:a2:91:da:cf:fd:3d:2d:d4:57:13:8b:b1:cb:
0a:76:d8:40:37:6d:19:2a:53:86:e2:1f:f0:d4:87:
44:94:82:c1:6b:69:f8:c0:42:05:f4:26:4e:ca:84:
89:d1:2b:c4:bc:6f:3d:d0:de:d0:47:5e:76:c7:85:
22:aa:24:4f:1d:02:cd:f8:14:f5:58:5f:3f:7b:4f:
d6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:59:40:1C:BD:E4:D8:27:B8:DF:B1:21:0F:1A:90:DE:E6:7A:71:72
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AFlAHL3k2Ce437EhDxqQ3uZ6cXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.22.0/24
185.238.228.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:73:60:ba:8f:9d:1e:ed:fd:50:82:2d:21:2d:38:a3:dd:b1:
9b:91:71:00:1b:5f:c6:c0:bf:83:b0:a1:27:ac:bd:35:dc:54:
f7:fb:12:ad:89:ac:8b:35:1e:ba:97:ee:cd:41:28:2b:7f:b6:
9e:67:05:b6:cd:14:6f:f5:1d:56:41:f6:2e:1e:56:62:ba:2b:
4d:e0:ef:4f:2b:94:53:42:8b:4d:5f:68:04:8c:13:55:3d:7d:
2c:f1:bc:20:34:25:ef:d1:a9:83:c7:03:f4:54:ba:8b:26:e9:
4f:65:6e:ce:b0:55:16:12:c3:87:80:bc:83:d0:f0:bc:ef:46:
e2:b7:9c:14:e0:4d:b4:7c:bc:45:c6:5c:a1:ad:bb:4d:c9:70:
9e:7f:91:6a:53:ce:d1:f7:db:9a:e7:d4:34:3e:3c:31:d6:43:
81:da:88:ae:b7:2d:7b:19:a1:33:bb:99:65:13:ae:37:97:df:
11:ae:a9:a4:60:70:57:81:80:11:28:4d:e0:08:4d:6c:5b:65:
0d:39:10:d2:ff:9d:70:69:50:ee:4d:0e:7d:e4:1b:42:0d:1b:
fe:fe:79:7f:1d:59:89:60:1a:98:59:78:b9:5c:21:68:30:4f:
7e:5e:4e:55:81:5b:1b:18:c9:e8:6b:d4:04:53:19:1d:f5:76:
1b:c3:6c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org