Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DwR1Pgjw54K0o-9sSn4e35zTn0k.roa
File: DwR1Pgjw54K0o-9sSn4e35zTn0k.roa (raw, json)
Hash identifier: ncjpIQ7+9PcPs8vifGVXYQePifNbkKS0mMA+GEBQqao=
Subject key identifier: 0F:04:75:3E:08:F0:E7:82:B4:A3:EF:6C:4A:7E:1E:DF:9C:D3:9F:49
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01880B155C6CED151945A6004555476E882B
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DwR1Pgjw54K0o-9sSn4e35zTn0k.roa
Signing time: Thu 11 May 2023 13:52:09 +0000
ROA not before: Thu 11 May 2023 13:52:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 185.225.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 09:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0b:15:5c:6c:ed:15:19:45:a6:00:45:55:47:6e:88:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 11 13:52:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f04753e08f0e782b4a3ef6c4a7e1edf9cd39f49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0f:1b:ec:21:c8:a1:bc:e3:ad:ba:9b:f8:74:
ec:7c:0d:9a:65:5d:b4:33:a5:c4:a8:0e:c9:99:8f:
0d:39:cb:04:57:bc:a5:f9:98:6a:94:9a:86:c8:43:
d5:9b:da:65:4e:e3:3a:ee:d7:58:e9:6a:08:4a:dc:
95:b2:0a:63:15:c9:d2:02:5e:c9:bb:86:bf:be:b3:
1e:65:2e:06:d4:7d:c0:db:57:2f:56:d5:e2:77:45:
6c:e3:3d:e9:80:4e:65:e6:3b:5b:25:47:a4:77:58:
89:81:f7:87:5a:e4:ce:a7:62:36:cf:fe:71:f3:a6:
05:d6:8d:0f:84:57:31:9d:38:ae:1f:3f:18:2e:1b:
02:fb:9c:24:f4:74:7f:8a:89:a9:f5:60:ce:be:d1:
67:fe:c8:d7:d5:cf:7d:00:fd:1b:55:ab:bb:5a:21:
32:72:5b:b6:38:d0:bb:cc:76:9d:cd:89:e1:af:17:
3f:f7:e6:67:49:fb:bf:3b:27:6b:74:7e:83:c5:bc:
96:22:67:1e:0d:15:73:7a:a9:2c:4e:fe:d7:b1:97:
3d:c7:ae:40:93:39:0e:77:f7:86:54:5b:15:4f:23:
3a:11:8f:f8:c4:34:da:61:74:3d:99:4c:05:42:d4:
37:81:a8:dc:58:c2:15:79:14:24:49:49:b8:51:ca:
01:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:04:75:3E:08:F0:E7:82:B4:A3:EF:6C:4A:7E:1E:DF:9C:D3:9F:49
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DwR1Pgjw54K0o-9sSn4e35zTn0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.20.0/24
Signature Algorithm: sha256WithRSAEncryption
49:fc:17:e2:44:2c:2c:cd:4c:e3:2f:46:58:5d:fa:99:75:b3:
3a:1a:7a:e2:46:b7:94:b4:47:b5:ee:48:c3:a7:e7:12:45:f2:
e9:3d:c6:0b:fc:43:da:8a:a6:83:2e:bc:06:fc:c3:03:12:5a:
ae:79:ab:ca:3d:5b:61:ef:cd:41:9d:2c:53:bd:92:7d:f4:3a:
10:75:d5:fe:4e:46:67:5e:2c:af:82:ce:c6:22:1d:4c:58:9f:
9d:2c:6d:5b:32:10:9b:49:dc:a5:c5:1e:27:56:e7:e8:91:82:
00:60:2c:56:08:24:47:53:b2:3c:4c:d3:1a:af:bc:a3:d9:8f:
97:b7:95:2d:6b:23:24:d5:e1:47:67:93:98:7f:0f:6c:00:31:
4e:7d:1e:ca:06:b4:ac:15:41:99:6c:02:94:52:0f:cd:0d:dd:
56:e3:b8:fe:82:03:c0:63:cd:e2:e7:85:5a:f2:7c:52:c1:d8:
62:04:ac:69:26:d4:1b:1b:2b:01:6b:83:71:d4:3a:5a:e6:11:
ac:ed:a6:62:1f:f7:04:13:af:76:4c:41:51:63:79:6f:bc:7a:
44:f9:06:1d:3d:80:7b:79:47:93:23:2a:aa:16:94:ba:e7:eb:
85:c5:d9:21:06:d7:e7:fc:7a:ba:e7:7e:8d:49:42:90:63:dc:
43:75:e4:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org