Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ejo5bUSoYS30VLI9BcDpC9yJn4U.roa
File: Ejo5bUSoYS30VLI9BcDpC9yJn4U.roa (raw, json)
Hash identifier: 0q9Uc5oNQvJN39tAnS6IWreGw919dC1zKTkqEfeKZvk=
Subject key identifier: 12:3A:39:6D:44:A8:61:2D:F4:54:B2:3D:05:C0:E9:0B:DC:89:9F:85
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189217C71D2C43D75169271DDDFF7EB8D63
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ejo5bUSoYS30VLI9BcDpC9yJn4U.roa
Signing time: Tue 04 Jul 2023 15:19:10 +0000
ROA not before: Tue 04 Jul 2023 15:19:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212728
IP address blocks: 185.218.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Oct 2023 09:16:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:21:7c:71:d2:c4:3d:75:16:92:71:dd:df:f7:eb:8d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 4 15:19:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=123a396d44a8612df454b23d05c0e90bdc899f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:08:8e:d8:10:38:d0:4d:29:e3:44:4a:d7:3b:
65:38:e5:89:b3:c9:2f:ec:37:9b:46:c6:ae:f1:78:
fe:03:12:01:89:69:01:e1:be:80:19:07:41:dc:b7:
d6:69:09:e5:ea:38:2f:1f:af:8b:9e:94:65:28:b2:
5f:0f:01:af:96:2c:79:ff:47:dc:1d:fd:a6:74:72:
67:18:08:6b:e1:e7:2b:a0:56:dd:5d:ea:7a:8d:d4:
ab:42:f9:3d:e2:2b:5e:1a:58:51:9f:f2:93:26:cc:
bb:55:68:6e:4a:6d:77:c2:d2:de:d8:8f:73:76:b1:
6e:98:5f:97:8c:b9:70:9a:18:d9:cd:be:ad:f2:73:
41:9b:6f:b8:e3:bc:ec:27:70:8c:c1:87:c3:01:ed:
7f:65:4f:19:24:e3:98:79:98:d1:44:d7:5b:9f:33:
6a:d4:a8:7b:1f:df:1c:5a:06:27:ff:f5:a1:99:3e:
6d:43:b6:53:ea:3a:ce:34:7a:4b:ae:72:80:ab:f5:
47:c9:6a:ab:c9:67:9b:3e:01:cd:a0:e3:04:09:a9:
8d:b3:5e:08:09:3d:76:5f:23:b4:57:90:90:1c:7a:
ce:c0:51:cb:0c:6c:94:32:00:57:2e:82:dd:8a:70:
79:0f:f9:ad:77:68:9a:a9:27:4b:81:0d:4b:6d:da:
77:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3A:39:6D:44:A8:61:2D:F4:54:B2:3D:05:C0:E9:0B:DC:89:9F:85
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ejo5bUSoYS30VLI9BcDpC9yJn4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.100.0/24
Signature Algorithm: sha256WithRSAEncryption
92:0a:0d:e6:32:95:88:f6:77:a8:42:fe:6d:08:48:a8:b4:35:
0b:a8:eb:5e:6c:d0:af:c9:b2:5a:bf:5e:33:94:ba:0d:8d:f4:
d5:9d:98:40:be:8c:4b:c5:ef:43:0c:99:69:9d:36:ab:ab:44:
87:35:10:dd:3a:3a:d8:ff:18:66:48:2f:ab:c3:c5:51:41:81:
4b:71:74:cf:51:29:4b:57:8f:5a:36:57:4f:24:d7:8c:86:fd:
df:88:ca:cd:23:15:89:d9:08:53:ab:98:d4:1e:72:87:6b:05:
54:6f:91:44:4e:83:b3:a7:8e:e0:42:ea:c3:45:a1:d2:47:92:
cd:73:3d:e4:4c:d0:56:e6:13:7e:6a:38:82:b0:6f:1b:0c:90:
89:a1:3c:cf:6c:d4:2d:f1:af:57:bc:d3:d1:63:22:fb:49:d6:
4a:f9:61:44:fe:6d:fa:66:79:9d:37:3a:0c:27:da:fa:72:0c:
cc:2d:5e:e2:03:99:a7:15:27:f3:21:cf:bc:e8:3a:4d:19:7a:
af:22:85:80:e3:1b:67:13:d4:eb:c2:50:fe:03:bb:77:fb:b9:
30:4e:2b:bc:bb:1a:30:30:d2:6d:09:b9:bf:b2:5c:3e:1d:ab:
55:0f:ec:5a:e0:9f:e9:da:33:56:69:e8:03:18:bc:11:db:08:
b9:dc:e0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org