Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CGHkKZ9zN2WfgpWMULtkkOgYLUM.roa
File: CGHkKZ9zN2WfgpWMULtkkOgYLUM.roa (raw, json)
Hash identifier: 7SRaXGX9F/INyb4ceKYnPQ5SKCaD1we8+FNMiMQftW0=
Subject key identifier: 08:61:E4:29:9F:73:37:65:9F:82:95:8C:50:BB:64:90:E8:18:2D:43
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CAC1B97D9E34E3E7339BEEC785CD3A957
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CGHkKZ9zN2WfgpWMULtkkOgYLUM.roa
Signing time: Wed 27 Dec 2023 16:28:58 +0000
ROA not before: Wed 27 Dec 2023 16:28:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197649
IP address blocks: 185.214.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ac:1b:97:d9:e3:4e:3e:73:39:be:ec:78:5c:d3:a9:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 27 16:28:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0861e4299f7337659f82958c50bb6490e8182d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:30:28:40:bb:ca:29:09:2f:c1:48:e8:79:b1:
12:88:24:d2:e4:8f:eb:f8:c6:dd:2b:ce:dc:a2:e7:
28:1a:58:5e:78:f0:21:d6:84:13:45:1f:19:cd:4f:
09:7b:ae:e7:6d:77:3f:aa:a3:a9:a8:36:8d:42:78:
00:70:ed:a6:9f:8c:61:b6:eb:44:f4:d3:ca:ac:2b:
a9:af:8e:c8:22:4b:46:de:ca:26:3c:45:a7:1f:e0:
26:78:d3:b6:60:de:b0:98:29:ce:76:f2:24:ba:9e:
d7:eb:63:83:50:f5:08:69:23:a4:3c:34:d9:d6:61:
02:70:0d:77:05:02:cd:68:5f:79:8f:53:76:3e:69:
ef:b6:6f:40:3f:c2:88:cf:ef:47:8b:71:5a:d1:84:
10:4a:05:a9:8d:8c:13:2e:23:ef:91:b2:24:a6:7b:
99:d3:61:4f:b5:d2:85:48:77:36:5e:9e:ff:de:56:
88:1f:93:70:91:59:56:cb:d3:46:d0:e7:06:7b:b2:
38:9d:73:cf:36:3f:da:2a:2e:b0:91:8c:6e:77:92:
41:b2:dc:18:5c:d3:bf:ed:c2:76:ec:8b:bd:3b:bf:
65:05:3f:83:4d:48:cd:63:3e:d8:98:6d:48:f6:03:
c9:ee:4d:fa:b5:be:00:a6:f5:20:e0:58:4b:cd:6c:
f9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:61:E4:29:9F:73:37:65:9F:82:95:8C:50:BB:64:90:E8:18:2D:43
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CGHkKZ9zN2WfgpWMULtkkOgYLUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.101.0/24
Signature Algorithm: sha256WithRSAEncryption
01:6f:50:cf:e4:95:85:de:aa:fd:7e:69:ff:3e:3e:60:1b:ae:
0d:ba:18:b2:da:a1:cc:2b:9a:4d:cf:de:c8:0d:0e:ae:69:fa:
b5:e0:69:c1:0c:ba:80:04:f5:d7:73:90:ca:be:5a:83:32:28:
cb:6d:9a:96:76:fb:db:91:b2:38:d9:4d:6c:7d:c0:91:bb:3c:
28:ab:eb:e7:4b:f5:2d:e9:9c:97:b3:88:ec:e1:5e:d5:ea:2d:
8b:f2:e2:2b:23:83:89:60:19:36:4f:a8:cb:65:85:0b:40:20:
04:46:85:07:0b:47:e3:43:67:25:87:28:5b:96:06:8a:34:fb:
c7:b2:7b:d9:cb:fc:bd:cf:16:55:af:f0:f1:79:0b:6d:f6:f7:
50:bd:88:8a:30:d7:0f:fa:99:f7:11:12:1f:ea:87:e9:48:2b:
56:6b:7d:76:5e:8f:74:5d:53:89:17:0f:07:5e:cd:08:57:c9:
0f:3a:05:ec:22:b6:72:74:a9:1d:6d:0c:56:74:6e:22:9b:34:
cb:b3:80:6b:af:55:e4:f5:26:7a:98:51:83:69:4d:af:da:2b:
8e:02:6a:1e:81:ac:7e:88:96:db:3e:43:34:9a:5e:0a:34:a7:
29:7a:c6:ce:90:5b:b5:30:77:dc:31:bc:5b:31:24:4f:70:7f:
75:f7:0e:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org