Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/I0C8_1ekIDr0hAmDujQGORsQLDw.roa
File: I0C8_1ekIDr0hAmDujQGORsQLDw.roa (raw, json)
Hash identifier: kbD2sHpB4pzr/t7LgM7rd+FLN8HND0GU6XrHBAG7TLM=
Subject key identifier: 23:40:BC:FF:57:A4:20:3A:F4:84:09:83:BA:34:06:39:1B:10:2C:3C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BA930A2DE94CAEA93D97FA2F833883BF5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/I0C8_1ekIDr0hAmDujQGORsQLDw.roa
Signing time: Tue 07 Nov 2023 09:50:18 +0000
ROA not before: Tue 07 Nov 2023 09:50:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47436
IP address blocks: 185.220.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:30:a2:de:94:ca:ea:93:d9:7f:a2:f8:33:88:3b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 7 09:50:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2340bcff57a4203af4840983ba3406391b102c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b0:c8:cb:c7:d0:5d:bc:74:d5:40:06:60:7d:
36:66:e6:08:8f:bb:af:1d:78:a6:fe:b7:e5:38:04:
40:bb:20:dd:78:c1:7a:b3:ae:d0:fd:67:a7:08:08:
c6:ab:81:81:dd:57:29:c0:2e:31:cd:6d:68:53:6f:
33:3f:b3:36:e4:13:38:f7:d9:d0:aa:1a:48:a3:5e:
81:b7:06:f4:e4:ee:b4:c9:cd:a8:40:4d:cc:b6:aa:
46:59:dc:ef:5a:75:54:48:64:52:02:68:3c:a0:24:
ac:60:85:d8:c8:f3:d2:3f:f8:1e:56:99:ec:cb:d8:
cd:da:f9:6d:43:72:f0:f5:63:7f:b2:20:e6:27:38:
77:c8:37:dd:5f:b2:a2:ed:3a:c7:a9:d2:f9:6e:7f:
61:bb:88:4b:3a:b5:34:de:1c:0d:89:1f:7c:a6:45:
fc:f4:ca:83:af:41:aa:60:bc:98:ef:57:69:b7:35:
77:6b:c5:d5:ca:bc:2a:c1:be:a2:c8:b0:ed:50:7d:
20:68:98:10:4b:68:3f:cd:d0:d3:a3:ec:cf:4e:ec:
cd:36:7a:73:5e:c4:62:d2:16:0c:8c:e2:2f:66:17:
6b:c4:45:93:72:a7:74:89:6b:21:a4:dd:28:66:a0:
7e:35:8a:33:f0:e4:68:ad:d6:52:94:1f:c5:78:bb:
eb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:40:BC:FF:57:A4:20:3A:F4:84:09:83:BA:34:06:39:1B:10:2C:3C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/I0C8_1ekIDr0hAmDujQGORsQLDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.248.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ba:d1:ad:37:df:d1:55:52:74:76:bb:1c:95:b6:c3:5e:e6:
d7:a4:43:77:a5:cf:e2:f6:7b:47:4f:2a:53:66:f1:1e:e7:99:
02:8c:a7:1c:20:e8:f0:9a:ef:7d:1b:93:1a:ae:7d:be:09:ca:
a1:3e:29:e9:68:3d:d0:79:f6:90:1e:2c:40:1f:63:7e:f3:1d:
92:b5:df:c5:d1:b6:98:8d:5a:02:ef:9d:7c:fa:c1:2b:96:65:
99:7c:ed:a4:ee:ad:b7:c5:08:59:a6:5a:89:e9:21:cd:3c:2a:
6a:db:da:62:f9:54:69:5a:61:0e:c3:0c:c9:96:ca:2e:26:a9:
8a:33:d4:a4:28:4f:21:8d:f9:d8:da:45:ed:f3:cb:9a:8c:93:
1e:a0:19:c7:bd:b2:b7:04:87:ef:9d:6a:61:bf:fc:ad:93:2f:
aa:d8:8c:cc:61:b1:1a:2a:6f:8a:14:ce:d7:cc:5f:40:ed:b6:
00:21:69:ad:a5:c6:f2:8d:c5:0b:a3:39:d4:52:a9:c6:92:92:
48:73:be:62:19:5d:a5:fa:87:da:7f:a3:76:3d:bc:0e:eb:af:
7b:22:05:94:0e:00:a1:b2:be:9b:37:f0:07:12:bb:ac:fa:57:
75:e5:10:aa:89:90:5c:ca:a0:75:2b:9b:df:cc:c2:48:b2:90:
e9:7b:cf:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org