Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DHjlYnnDelV8u1hK3Dt2k-TM_u8.roa
File: DHjlYnnDelV8u1hK3Dt2k-TM_u8.roa (raw, json)
Hash identifier: VvQQ+zdP+Kplvg4AmMhzcnGXhOLYDHfY+CT8gmqzvmQ=
Subject key identifier: 0C:78:E5:62:79:C3:7A:55:7C:BB:58:4A:DC:3B:76:93:E4:CC:FE:EF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B5BD2FE6FA64684BF257A7B3DE025949D
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DHjlYnnDelV8u1hK3Dt2k-TM_u8.roa
Signing time: Mon 23 Oct 2023 09:17:16 +0000
ROA not before: Mon 23 Oct 2023 09:17:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3170
IP address blocks: 185.218.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5b:d2:fe:6f:a6:46:84:bf:25:7a:7b:3d:e0:25:94:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 23 09:17:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c78e56279c37a557cbb584adc3b7693e4ccfeef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8d:52:31:cd:b3:a1:d1:63:5a:46:7e:c5:77:
44:12:95:7f:66:6e:05:ed:4e:4c:f8:d0:c0:d8:4d:
bc:df:e0:f7:89:2c:b9:c9:66:40:1e:84:ff:3d:e7:
62:21:f1:53:67:fc:fc:06:26:2d:5a:f5:52:db:f5:
04:6b:84:6f:4f:6e:5c:71:51:5b:fd:57:04:60:e8:
46:37:69:1d:90:23:bd:ce:e6:9f:7c:51:be:ba:09:
12:8e:b8:84:9d:09:9c:03:72:c6:9b:50:ab:fe:3e:
9e:9d:01:40:fb:42:f4:7e:12:a5:f6:45:29:1f:53:
04:04:f5:9f:f9:16:73:bf:72:18:b3:33:4a:8b:c7:
2e:0d:8c:91:bd:a6:f6:f7:7e:6d:af:15:9e:dc:6e:
c5:47:97:02:2b:7a:2b:6a:ec:cf:f9:2b:43:ce:3e:
6b:23:3a:d5:d7:5b:2d:7b:fb:ea:1e:55:a9:b0:49:
0a:ef:2f:5b:b8:86:ae:e8:61:57:07:3f:04:f3:b7:
ca:b9:f4:e9:56:41:b0:5e:e4:35:4d:b6:4b:c4:31:
67:39:0b:4a:16:c4:02:52:13:37:ad:5f:0f:17:a8:
f4:43:02:3a:fa:3c:44:f6:46:71:ad:0a:06:f7:e8:
fc:0d:0d:2d:40:e2:02:6b:aa:a3:da:0e:82:3a:d1:
9b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:78:E5:62:79:C3:7A:55:7C:BB:58:4A:DC:3B:76:93:E4:CC:FE:EF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DHjlYnnDelV8u1hK3Dt2k-TM_u8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.100.0/24
Signature Algorithm: sha256WithRSAEncryption
30:a4:b3:76:77:2d:81:8c:80:0e:32:57:77:b0:c5:92:70:b6:
3e:90:a0:9c:d2:59:fe:db:a3:f2:0b:db:0f:53:f0:93:f5:8e:
af:f5:c1:05:c3:89:db:c3:55:29:d3:43:59:e4:14:28:87:16:
ff:a8:b6:99:ca:b3:34:44:49:98:24:a0:b7:08:47:e2:f7:88:
4f:85:bc:a8:3a:00:85:a2:84:dc:a0:f1:42:82:fd:1d:9e:f7:
7d:21:5e:6c:e1:1b:e0:c1:bc:59:2e:dd:72:de:2a:38:08:b6:
d3:37:81:89:ca:97:2d:3c:ec:c0:aa:b6:33:b0:aa:59:dc:3e:
65:f0:a6:07:54:fe:9e:68:e4:ac:d1:52:a7:70:29:28:c8:26:
7a:ae:08:4d:20:4a:0e:24:31:e9:3d:02:a5:46:fb:3f:e8:99:
b1:8a:ed:c9:92:be:63:c1:c9:bf:50:7e:a9:e3:5b:2d:31:18:
ba:b7:a4:80:31:20:15:b0:90:45:58:72:fa:7c:cf:32:38:69:
57:84:7b:71:93:b4:3d:35:3e:6a:db:b3:d4:88:7a:85:02:2e:
95:3a:25:90:f9:38:12:1a:7d:16:f7:85:21:a6:8e:f2:9e:95:
97:fd:81:82:98:ae:28:f1:fa:da:84:b1:a7:d8:b7:fd:db:af:
ad:b6:2c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org