Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DCT9_QwCLCHFFVSWeEFhc3ltV98.roa
File: DCT9_QwCLCHFFVSWeEFhc3ltV98.roa (raw, json)
Hash identifier: KQBO4REHA8Lg9sHJphuldLgLdDRw7p+Xu8O+AsfewT4=
Subject key identifier: 0C:24:FD:FD:0C:02:2C:21:C5:15:54:96:78:41:61:73:79:6D:57:DF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01881496D70E6DF074601C980FAE0D7BEC17
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DCT9_QwCLCHFFVSWeEFhc3ltV98.roa
Signing time: Sat 13 May 2023 10:10:09 +0000
ROA not before: Sat 13 May 2023 10:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.230.52.0/24 maxlen: 24
193.58.145.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:14:96:d7:0e:6d:f0:74:60:1c:98:0f:ae:0d:7b:ec:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 13 10:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c24fdfd0c022c21c515549678416173796d57df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:6f:b0:ab:35:7e:11:5e:a9:88:22:fc:cb:
ea:29:af:f1:62:81:1e:91:66:71:f2:ba:fd:5e:58:
d7:6e:0e:7a:7e:24:54:5e:8c:db:cd:45:66:ca:ee:
17:b3:62:3f:d0:a1:2d:1c:9a:f5:d2:28:1f:f8:d4:
45:b9:de:53:e5:93:5a:01:79:78:a2:8c:c4:ea:eb:
bc:e9:95:62:d0:12:27:ed:86:57:c8:54:e1:76:d5:
aa:8c:ab:8f:2b:84:75:38:28:c3:09:04:ff:a4:20:
12:e7:a5:b0:97:23:f5:d5:4d:a2:d3:30:49:49:a5:
f8:8a:15:c6:88:51:8b:eb:00:07:02:db:04:19:4a:
80:f7:70:9f:de:59:7b:07:ff:d5:58:8a:69:a6:64:
c9:b6:3d:41:7f:2b:4a:22:01:fe:a5:5b:d3:d8:b9:
6a:3a:b4:66:76:97:a0:dd:10:da:47:2a:23:1b:a8:
08:88:a9:e4:0d:81:88:91:c5:6b:c3:92:2a:cc:46:
22:f1:9b:81:f7:cf:0f:51:ab:e0:ca:ab:2e:cf:99:
a3:aa:19:5e:3e:8e:a2:74:fb:50:57:e1:99:11:43:
62:fe:61:4a:31:b6:82:51:8f:04:32:aa:33:89:2f:
71:3b:06:9b:0a:8d:63:bd:0d:95:86:69:8f:65:e4:
f4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:24:FD:FD:0C:02:2C:21:C5:15:54:96:78:41:61:73:79:6D:57:DF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DCT9_QwCLCHFFVSWeEFhc3ltV98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.52.0/24
185.251.231.0/24
193.58.145.0/24
Signature Algorithm: sha256WithRSAEncryption
12:68:0c:e1:aa:1b:c4:01:ff:02:98:0e:a2:a7:7c:5a:48:6d:
71:e7:c6:4e:31:8d:96:c2:0e:de:04:a4:b0:5d:60:9e:a5:c0:
8d:a7:c0:f9:63:b2:33:4b:0c:7f:98:4b:b8:67:67:cc:e5:59:
74:9e:59:07:d7:9b:53:22:b0:30:50:00:1d:ce:74:69:4d:4c:
c2:9e:5e:7a:6e:a5:e5:05:32:44:56:97:7d:3d:16:08:2f:27:
9e:4d:72:bc:94:d8:65:55:39:57:17:38:4e:5f:61:9a:00:7e:
09:4b:da:8e:c9:e7:2a:f7:d0:41:e6:ab:a6:f9:57:ad:27:64:
22:fd:54:f4:7f:fb:80:34:38:af:80:3b:d8:50:e0:06:fd:b0:
c6:6a:96:71:6f:dd:db:68:fe:97:72:c8:d9:9b:5f:cd:7d:df:
32:70:c5:83:c4:f9:d0:1d:6b:68:c1:80:55:9b:63:10:76:3e:
59:ce:ea:a4:6a:22:aa:d3:81:b5:48:dd:63:e3:8a:91:07:50:
b9:89:b5:b7:e5:26:d3:4e:7f:c7:f5:55:15:58:fc:4a:ac:6b:
d8:34:f7:e8:a0:fe:ff:0d:f6:1d:37:82:81:ed:6f:52:68:06:
52:02:7e:0c:a1:8e:89:65:02:53:37:2a:67:76:80:df:4f:87:
52:cb:11:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org