Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EHhMDYq20N1sxjxKyTidQrJvSfE.roa
File: EHhMDYq20N1sxjxKyTidQrJvSfE.roa (raw, json)
Hash identifier: MfDAHkY2p/HltLC3CC7LZ6dcBaAXncv270MjmSpjaYY=
Subject key identifier: 10:78:4C:0D:8A:B6:D0:DD:6C:C6:3C:4A:C9:38:9D:42:B2:6F:49:F1
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C31C19C5C6F2F450BA282D050F9D8737E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EHhMDYq20N1sxjxKyTidQrJvSfE.roa
Signing time: Sun 03 Dec 2023 22:17:01 +0000
ROA not before: Sun 03 Dec 2023 22:17:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 185.210.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:31:c1:9c:5c:6f:2f:45:0b:a2:82:d0:50:f9:d8:73:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 3 22:17:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10784c0d8ab6d0dd6cc63c4ac9389d42b26f49f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a0:a1:b9:ab:de:40:54:e8:88:19:c5:b5:81:
62:a9:0e:21:54:27:95:0d:ca:49:85:e2:52:d7:5e:
96:48:c5:4a:4a:8a:25:63:da:db:b8:b3:2c:92:cb:
a7:61:02:de:cb:19:a0:d4:50:46:ad:f0:05:f4:4d:
bc:d6:ca:ff:50:a2:35:ea:8d:3e:b6:cd:2e:c2:4e:
cf:e6:9f:a5:08:14:1e:18:bd:d7:6b:f4:a3:ad:d6:
e0:54:0c:e5:30:2c:a4:9f:76:95:a8:19:3b:78:ca:
dc:dc:ef:ce:eb:4c:a0:a4:ad:6e:0c:06:ea:83:a1:
81:36:63:f2:b4:99:d4:3c:37:e6:25:e8:44:5d:81:
e6:4a:f7:6e:b3:a4:88:43:34:fd:04:9b:ab:ce:fb:
1a:e4:2a:73:dc:8d:c1:05:28:31:57:4f:0d:72:67:
ba:cd:80:af:f6:2c:98:ea:55:bb:10:a6:ac:cf:de:
6c:94:fd:20:86:b0:c1:5e:80:27:0b:9f:b2:98:23:
6f:e8:37:61:d0:31:e8:28:90:1f:e3:f5:ab:1b:01:
54:3f:00:2b:66:ef:66:1c:0e:52:bf:47:ab:c5:7e:
4b:b3:77:a9:b0:a4:f3:3e:fa:d7:55:cd:43:2d:f7:
c3:50:0d:54:c0:4f:18:8b:06:b1:a8:1b:d2:4a:93:
b8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:78:4C:0D:8A:B6:D0:DD:6C:C6:3C:4A:C9:38:9D:42:B2:6F:49:F1
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EHhMDYq20N1sxjxKyTidQrJvSfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.234.0/24
Signature Algorithm: sha256WithRSAEncryption
41:01:63:b8:12:1f:f4:f6:44:3a:2d:06:7c:51:b4:04:ff:ff:
e1:6e:70:f9:27:81:76:19:dc:1f:ca:fb:1a:7b:21:fa:03:fe:
b9:37:7f:7a:d7:d0:c4:5a:fc:5b:9f:dc:b8:f9:9c:c2:32:fc:
40:be:8d:ec:6c:dc:1f:1d:48:a2:a8:41:f1:60:54:5d:2d:05:
c2:25:1c:2f:aa:00:33:dc:c5:5f:50:c3:e4:e2:35:ab:fd:c5:
e5:6f:66:ba:87:df:2d:71:71:32:e1:c9:82:b7:25:01:b7:d7:
df:da:2b:aa:61:e9:d6:4d:c7:6e:ea:e8:e3:c6:69:65:37:73:
2a:4d:43:be:28:cb:09:41:f3:41:4e:6c:a5:3d:5d:70:ab:a8:
2c:30:57:55:0f:3b:52:dd:b8:86:23:df:38:d7:96:89:11:3d:
a9:c2:60:e3:d0:b0:eb:58:ad:3b:d8:7e:fb:ea:7a:fa:65:a9:
13:cf:3c:10:13:0f:13:43:dc:8d:a6:2e:f7:3c:8b:df:9b:33:
33:05:a7:21:bf:00:29:83:6f:9d:77:e5:0d:6a:0b:c9:fa:e3:
67:67:79:fc:a3:4e:1f:68:b3:8b:da:53:ba:b7:b7:8a:f7:94:
90:d1:71:36:29:25:4e:40:6e:cf:a7:ad:b4:81:db:2e:9b:17:
fb:97:eb:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org