Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ItZw9-_hpXkgnXTIh12KKLMv700.roa
File: ItZw9-_hpXkgnXTIh12KKLMv700.roa (raw, json)
Hash identifier: RjvbUVBB6/J07KGMdU6rT0k7n6KLMFiOdBo74UeqmKM=
Subject key identifier: 22:D6:70:F7:EF:E1:A5:79:20:9D:74:C8:87:5D:8A:28:B3:2F:EF:4D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01886DCDD18F39EE38F2E35784088DF9814C
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ItZw9-_hpXkgnXTIh12KKLMv700.roa
Signing time: Tue 30 May 2023 17:56:24 +0000
ROA not before: Tue 30 May 2023 17:56:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61327
IP address blocks: 185.225.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 10:05:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6d:cd:d1:8f:39:ee:38:f2:e3:57:84:08:8d:f9:81:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 30 17:56:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22d670f7efe1a579209d74c8875d8a28b32fef4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3b:9e:28:f5:06:e3:df:21:35:f0:63:af:92:
2f:99:1b:2a:8a:c2:5a:ff:ca:15:5b:1a:3f:60:01:
18:57:ad:b3:c6:d2:65:ee:c7:fe:31:22:f2:dd:a7:
a6:bc:c3:df:d4:d7:46:c6:8a:3d:e8:01:8c:7f:90:
d7:10:8d:b6:68:b0:b5:6e:f4:87:f1:2e:89:f1:55:
71:f8:76:a6:97:09:bf:24:22:55:8e:99:08:90:46:
c2:67:8f:f8:4f:7b:25:ab:3b:ce:fd:29:90:90:4e:
c3:d8:24:3e:90:4d:69:cf:f8:7f:ac:e3:bf:a6:9e:
c1:de:35:ac:2b:e2:0b:8f:a3:f1:65:99:d1:ec:b0:
ad:a9:da:82:d4:9d:8c:1b:be:23:d1:0c:8a:20:e8:
a5:7e:7d:ad:2d:01:87:ed:3a:12:3c:66:01:23:c3:
91:99:f0:53:d9:40:28:73:c7:76:6f:d6:88:05:ae:
62:b6:35:a9:5a:a6:3b:3e:ad:e1:60:d7:1c:89:59:
ca:a3:29:47:0c:7c:d6:7b:78:38:e1:31:78:58:a9:
b1:2d:aa:67:11:37:c1:50:b8:02:21:07:3c:1d:02:
d1:d7:2b:ac:2f:91:23:e6:1d:1a:3d:0d:02:17:63:
ce:bb:0d:43:6d:d4:ed:46:d6:1a:cf:be:e3:be:6f:
61:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D6:70:F7:EF:E1:A5:79:20:9D:74:C8:87:5D:8A:28:B3:2F:EF:4D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ItZw9-_hpXkgnXTIh12KKLMv700.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.0.0/24
Signature Algorithm: sha256WithRSAEncryption
00:f8:65:ee:fc:55:09:21:05:e0:e7:40:c8:51:46:01:78:b5:
db:22:30:f2:81:de:46:fe:a3:44:37:60:fc:4f:bf:7e:6c:75:
59:fd:47:58:f0:0c:52:68:43:54:0c:76:87:b4:ea:05:dc:49:
fb:ed:48:27:8b:0a:6a:ff:a5:77:44:ca:0c:6d:6c:f7:36:59:
01:d5:30:84:8f:cd:58:c8:f8:58:4c:36:5f:19:e1:c6:d5:db:
97:3a:c7:1d:a7:26:60:33:0b:4a:87:8c:93:99:7b:ca:32:76:
9f:d5:28:46:c6:68:b6:33:c0:0f:1b:02:4b:37:2a:f1:c0:9c:
5b:87:d6:ad:da:95:58:e1:5a:a2:17:59:d7:e2:26:84:80:16:
14:8d:44:c0:d2:a3:6b:4d:b3:54:6f:1d:3f:a1:a4:93:6d:88:
c4:b5:77:d8:1b:7f:85:26:88:de:fb:68:6c:d9:2d:da:1a:17:
e6:c0:72:79:03:a9:22:d7:49:88:0f:28:62:11:fe:12:c3:b4:
f5:67:36:ea:66:1c:7c:c5:40:14:5b:93:39:f9:6e:72:05:4f:
ee:80:56:eb:96:7d:e3:e1:fe:83:90:a6:fe:a0:f9:ad:56:0c:
eb:93:4c:f4:48:b1:1d:d4:a2:10:64:80:53:5e:6c:54:79:72:
8b:e1:19:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org