Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AupbY9iJuCLOS3dzuwRhYwic3RE.roa
File: AupbY9iJuCLOS3dzuwRhYwic3RE.roa (raw, json)
Hash identifier: 7j7WzhlsL8wSdfp1k5uPKnA6TYl8PJfjUX1h5idga+Y=
Subject key identifier: 02:EA:5B:63:D8:89:B8:22:CE:4B:77:73:BB:04:61:63:08:9C:DD:11
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B640040A467A38BF404AC14D5E14A9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AupbY9iJuCLOS3dzuwRhYwic3RE.roa
Signing time: Mon 02 Jan 2023 09:00:47 +0000
ROA not before: Mon 02 Jan 2023 09:00:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206275
IP address blocks: 185.225.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:40:04:0a:46:7a:38:bf:40:4a:c1:4d:5e:14:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02ea5b63d889b822ce4b7773bb046163089cdd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4f:5b:6a:41:87:be:52:91:37:f4:3d:87:c9:
f6:b2:ea:75:7e:c3:c4:c8:ea:4b:d9:a9:45:ee:fc:
4c:86:a0:73:12:cd:72:80:27:8d:a4:28:57:79:c3:
00:d8:f1:3a:16:d0:2b:7b:b7:a7:4b:be:b2:9d:da:
d2:ec:28:81:9d:9a:f7:85:06:8a:e1:6a:ea:3b:3d:
0c:d6:80:58:b7:39:3c:53:2c:27:4f:a8:77:a7:a3:
ec:f9:52:b3:81:7c:b5:9c:84:53:2d:ae:b3:fc:b2:
1a:44:72:df:42:da:51:52:d1:cd:ae:eb:20:3b:98:
e9:3a:54:62:17:67:dc:24:e6:78:cd:8b:62:eb:d1:
71:27:6f:9a:b3:96:4f:ca:e4:4b:0d:8b:30:7d:ed:
22:98:2c:1e:b3:3a:31:b0:6f:71:2e:e1:cc:6f:01:
48:03:f1:09:a6:83:9b:10:07:eb:c6:58:a9:9a:af:
dd:2c:33:c7:f6:3a:4f:29:3c:2c:fe:6e:9b:09:10:
70:84:7f:ad:4c:fb:12:9d:70:55:54:53:54:59:2d:
d7:9f:ee:2f:f2:68:4e:3a:b2:d6:0a:ba:dd:da:f4:
b5:a8:0f:48:12:b8:c6:6e:ae:94:ee:09:fc:cc:55:
fe:ed:64:1d:eb:c8:24:13:8f:a6:d4:d6:15:46:20:
28:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:EA:5B:63:D8:89:B8:22:CE:4B:77:73:BB:04:61:63:08:9C:DD:11
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AupbY9iJuCLOS3dzuwRhYwic3RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.3.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:52:75:7c:b7:cb:63:8c:b5:01:2d:44:31:7f:92:4a:97:ca:
c6:52:48:40:23:8d:fa:e9:13:67:7b:32:19:7f:ab:1b:02:6b:
b1:f6:92:c3:f6:57:2f:58:bc:46:57:a5:b2:04:6f:0e:c9:02:
26:da:19:b0:0c:c9:19:12:11:c2:34:19:80:51:f9:26:b6:23:
7b:83:68:dc:74:84:56:c2:a5:c3:47:72:61:82:05:44:2c:7a:
33:c2:73:32:64:8f:21:7d:86:2b:27:9b:93:cd:2b:d0:55:00:
90:6d:71:6e:5f:6a:d1:05:5a:1e:5b:66:08:b4:51:7c:1c:4d:
ad:22:b2:c1:dc:7e:27:1f:26:e4:52:f1:bf:57:c2:57:b9:a6:
53:52:7a:7a:78:5d:91:e6:96:4b:f4:3a:88:a6:17:69:80:b9:
b9:9a:47:d8:48:89:fc:50:16:a1:2b:a7:47:e6:ff:4c:8e:1a:
ce:67:4e:32:41:73:47:0c:53:40:50:00:22:1d:04:a5:e4:6d:
2f:1c:5a:04:7c:26:59:dc:48:c2:46:dc:e3:19:23:2c:38:8a:
a1:7c:9f:6b:fb:c2:2f:c1:fa:d5:b5:29:72:36:38:ee:61:a3:
59:73:cd:00:a0:5a:25:e7:a0:f5:59:e5:bd:39:52:b0:00:4f:
cf:b3:bc:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org