Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CkBts0e7-iTWAUJED6uS7TPonmU.roa
File: CkBts0e7-iTWAUJED6uS7TPonmU.roa (raw, json)
Hash identifier: 4qdvslfVDFnVCYJSGJBsBAQVJw0q9CQoYBZWeEWXrIU=
Subject key identifier: 0A:40:6D:B3:47:BB:FA:24:D6:01:42:44:0F:AB:92:ED:33:E8:9E:65
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0186DB02B8B05DDD377300BACF5F1AB5DF22
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CkBts0e7-iTWAUJED6uS7TPonmU.roa
Signing time: Mon 13 Mar 2023 12:47:14 +0000
ROA not before: Mon 13 Mar 2023 12:47:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44592
IP address blocks: 185.225.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Mar 2023 11:27:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:db:02:b8:b0:5d:dd:37:73:00:ba:cf:5f:1a:b5:df:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 13 12:47:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a406db347bbfa24d60142440fab92ed33e89e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:57:6d:8b:23:3b:ed:e4:4b:f0:ae:6a:63:
0a:5e:18:eb:39:44:89:f5:7e:86:83:b1:a9:aa:45:
20:21:11:29:fe:06:73:65:12:38:a5:5c:9e:20:7c:
78:c1:a9:be:b4:34:e0:a2:1e:27:78:5d:4f:14:bc:
07:31:cd:f8:ad:fa:e0:8a:96:be:69:e4:60:a8:13:
3c:39:f1:26:b5:c9:e2:82:b4:7a:c7:f5:86:28:bc:
71:46:b7:a7:0b:a5:51:d3:94:86:7f:30:d0:6c:31:
e4:3c:a7:6d:af:93:46:d6:d7:2f:ed:d5:7f:08:cf:
70:df:df:aa:2f:63:d5:26:e7:aa:4e:9c:cd:32:e2:
64:36:38:2e:2a:32:42:b4:ad:6c:12:50:b8:3e:aa:
36:a7:99:ff:a4:d5:aa:68:59:e5:f5:96:d1:38:3f:
a7:ee:cf:72:c1:5b:8f:ad:a5:2d:bd:de:01:00:b8:
40:7f:96:11:91:aa:91:f3:41:9f:64:62:cc:c7:85:
fd:71:ff:d9:d4:a4:75:e4:ee:30:b2:7e:57:65:33:
f8:a8:77:6f:8b:b3:6a:68:c0:c2:22:a4:ce:68:18:
f4:c4:5b:44:b1:f5:85:51:11:b7:48:79:c2:96:0f:
78:ca:c4:9a:c0:2a:f2:f0:2a:48:81:a0:43:1c:1f:
ec:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:40:6D:B3:47:BB:FA:24:D6:01:42:44:0F:AB:92:ED:33:E8:9E:65
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CkBts0e7-iTWAUJED6uS7TPonmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.22.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:63:df:ba:c8:ae:36:9b:19:6a:db:7e:85:67:00:6f:32:36:
c5:35:a4:39:c5:64:0e:a1:32:52:df:6b:3e:3f:17:e3:43:ab:
2f:cd:ac:c7:3e:f6:07:1d:bb:d4:84:74:e4:85:b8:47:49:72:
7a:82:2d:4b:9b:a9:61:5c:96:c5:78:42:69:ce:8b:52:5d:85:
4c:a1:34:e4:95:2c:13:c3:49:43:c2:81:58:39:2d:b5:c0:6a:
96:3f:3f:1f:18:ef:f4:81:ca:10:61:61:f9:f8:33:5e:c1:2d:
4e:dd:0c:8d:8b:8c:6d:77:a9:0f:0b:96:11:d6:25:25:d7:ce:
6a:7e:85:c5:37:a7:ae:62:5a:59:b5:63:c5:f8:c5:59:e9:b9:
b7:b5:42:47:a7:ef:98:44:b2:b2:b1:f6:08:6c:8b:88:6d:ea:
a8:02:c2:3d:9a:1e:84:e1:7c:9b:da:65:b3:02:62:47:5e:cd:
91:1b:25:7b:7a:5e:6e:85:78:ca:db:b8:df:e4:3c:ba:31:4d:
eb:77:0c:20:a9:84:f1:56:39:6f:78:32:7d:75:70:a3:eb:77:
2b:a5:73:93:15:2f:dc:4e:a6:f8:52:a4:75:c1:b8:4e:88:fb:
1e:39:51:8c:49:53:9f:ca:9f:b0:2e:c5:b9:07:cb:1c:cf:e4:
77:8f:b0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org