Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/G8puU1rS8DqZ_c0rsShj6k-l31w.roa
File: G8puU1rS8DqZ_c0rsShj6k-l31w.roa (raw, json)
Hash identifier: 59rqkGOmBqybMBNfwYjcgZ3by0BDzLzYCoKp9u8eXhg=
Subject key identifier: 1B:CA:6E:53:5A:D2:F0:3A:99:FD:CD:2B:B1:28:63:EA:4F:A5:DF:5C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BFB90064905D575D688CF43948CFB22F9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/G8puU1rS8DqZ_c0rsShj6k-l31w.roa
Signing time: Thu 23 Nov 2023 09:43:21 +0000
ROA not before: Thu 23 Nov 2023 09:43:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.209.36.0/23 maxlen: 24
185.218.102.0/24 maxlen: 24
185.199.159.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.209.74.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
176.125.248.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Nov 2023 20:57:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fb:90:06:49:05:d5:75:d6:88:cf:43:94:8c:fb:22:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 23 09:43:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bca6e535ad2f03a99fdcd2bb12863ea4fa5df5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:58:03:60:a7:4d:4d:7a:37:c0:54:85:71:07:
bd:54:0a:77:a5:26:3f:30:a2:25:10:3e:b8:f7:74:
77:b3:45:3d:0d:51:5b:da:21:ed:39:9c:ea:b4:22:
02:2b:f7:05:09:0b:53:60:cb:52:5c:bd:73:e2:68:
0f:df:2b:f0:a6:f5:be:fd:da:ed:57:c1:d5:af:5d:
f5:78:27:cb:6a:9d:3d:94:0f:29:cf:dd:89:6d:90:
28:0c:1e:de:93:d7:f8:12:f1:a6:8b:30:d7:1d:f5:
85:1b:bc:b6:02:7f:84:02:0f:e1:65:cc:e7:4d:38:
91:ab:9b:1c:fb:5b:93:62:7d:b2:d1:9c:3f:60:69:
91:b9:d4:b7:a3:fe:24:30:05:93:a6:ea:87:68:af:
77:7f:cc:f8:e8:47:88:b5:8f:c6:ad:c8:62:ee:57:
6b:21:44:c8:82:ad:ef:04:95:e7:c4:1b:97:44:5d:
01:20:f2:04:e0:33:a7:2d:7b:0f:b0:d4:9b:cd:cd:
3b:bd:4e:be:10:37:c4:b4:20:9f:c0:0b:23:cd:a1:
07:48:09:6d:34:bb:97:c1:2d:b3:06:f4:6d:ae:29:
f6:57:ce:cd:9f:57:dd:7e:b9:40:a2:ab:67:ae:0e:
4f:cf:0e:26:e5:c2:dd:7f:20:a5:f5:74:c7:95:8b:
2f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CA:6E:53:5A:D2:F0:3A:99:FD:CD:2B:B1:28:63:EA:4F:A5:DF:5C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/G8puU1rS8DqZ_c0rsShj6k-l31w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.248.0/24
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.209.74.0/24
185.210.152.0/22
185.218.102.0/24
185.223.76.0/24
185.225.2.0/24
185.226.105.0/24
185.226.107.0/24
185.227.145.0/24
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
Signature Algorithm: sha256WithRSAEncryption
53:d6:9f:fa:67:4b:c7:f5:e8:e6:ef:ce:c6:6f:a0:2b:a4:a8:
f5:8d:2b:c1:dc:80:dd:18:99:b7:79:91:8c:d0:b0:b5:24:1c:
b3:eb:09:11:7f:92:93:d4:75:2c:4f:71:9b:67:ea:5c:bc:e3:
fe:ca:56:f9:9e:8e:b2:af:8e:05:12:34:13:d4:d8:12:27:1f:
da:bb:30:98:fa:d5:59:f5:39:16:4e:f4:67:b3:62:0d:3f:8f:
22:42:05:5c:7d:bc:76:1b:93:a8:f3:a7:ff:1b:2f:0d:0d:35:
71:f4:3f:e2:bd:32:bd:5c:23:b1:da:a5:ec:8e:e4:dd:a4:30:
21:1e:73:29:8c:8c:12:e8:9c:e8:b4:ce:14:9a:42:59:82:05:
83:fd:5f:fa:72:16:b0:31:c4:52:ab:6a:b9:4b:e2:a1:1d:79:
16:23:69:ab:17:7a:c6:93:7a:39:64:ba:0f:2d:32:7a:9a:e0:
f9:96:fc:54:26:af:3d:ae:38:98:39:f2:c5:5c:bf:6d:db:95:
dd:9a:f9:33:01:f1:da:75:6b:71:e8:9e:37:10:24:56:72:03:
e1:b5:97:8c:30:f3:45:c5:77:66:a1:78:08:2f:ba:4d:36:39:
52:68:4d:57:42:c3:af:4d:b3:84:2b:07:e6:53:46:94:df:e3:
e6:ce:61:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org