Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/JLWNi0pol819Lnw9TzCl0dHJsP8.roa
File: JLWNi0pol819Lnw9TzCl0dHJsP8.roa (raw, json)
Hash identifier: xd0Pp8fRnZB2NGHei3hq4EcQm9DfjcuPMNm3B0FioVc=
Subject key identifier: 24:B5:8D:8B:4A:68:97:CD:7D:2E:7C:3D:4F:30:A5:D1:D1:C9:B0:FF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AF0F502B6889B3DB8EA4A59E7B779B1D1
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/JLWNi0pol819Lnw9TzCl0dHJsP8.roa
Signing time: Mon 02 Oct 2023 15:15:03 +0000
ROA not before: Mon 02 Oct 2023 15:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.220.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:f5:02:b6:88:9b:3d:b8:ea:4a:59:e7:b7:79:b1:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 2 15:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24b58d8b4a6897cd7d2e7c3d4f30a5d1d1c9b0ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c5:a2:14:1e:f1:02:f7:ae:7f:21:70:f3:11:
5d:5f:06:a4:c3:6f:dd:bb:02:13:9d:f1:12:17:d4:
34:dd:92:3c:8f:4e:50:05:c6:67:7d:c6:af:b1:f1:
6d:23:6a:d6:62:af:99:29:0b:06:cf:49:77:99:6e:
23:8e:20:ec:75:d8:2d:a1:2c:02:c7:a1:4e:e9:95:
eb:ff:93:6c:8d:6c:b2:fc:40:5b:f2:8a:4e:8b:22:
32:60:82:6d:1c:2f:30:70:aa:5d:e7:17:30:b8:9e:
a4:19:e0:3b:50:35:42:7c:cb:fd:64:a9:bc:04:06:
41:4c:86:19:f1:e7:f4:a8:91:46:c1:f3:c0:97:24:
c5:1f:9a:d9:78:01:38:ab:92:a1:31:1a:8d:1c:0f:
3c:5a:bc:89:6a:85:17:a6:29:9b:cc:49:aa:97:c9:
4d:47:85:b2:13:22:7b:53:f8:3e:5d:7a:83:96:c3:
43:ea:81:8e:a3:13:8e:5a:14:a5:d5:e6:90:4c:ec:
66:f9:99:60:2a:27:e5:21:f3:83:46:03:6e:72:61:
b9:f5:33:68:54:9f:bf:14:a8:8c:56:33:da:43:7c:
26:fa:90:4a:21:01:17:5b:61:1e:ca:12:76:2c:83:
1d:76:89:f6:7c:69:7c:ef:c2:f9:90:d1:f8:57:c7:
d0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B5:8D:8B:4A:68:97:CD:7D:2E:7C:3D:4F:30:A5:D1:D1:C9:B0:FF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/JLWNi0pol819Lnw9TzCl0dHJsP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.250.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:a8:1f:3e:3d:e5:c8:32:f0:7d:03:c8:20:24:4a:ce:71:fb:
9c:c1:95:c2:5c:57:20:86:f8:99:0d:66:58:2b:a8:22:f9:ee:
dd:55:f2:e9:01:3d:22:09:e1:02:fe:09:67:5b:47:cc:c8:b0:
b8:f6:ee:97:8c:91:e2:ce:18:74:0a:aa:13:93:c3:9d:83:59:
00:c7:0e:8c:12:ca:58:07:b0:ab:08:84:da:b6:c2:cb:ba:42:
c8:f4:f0:46:08:ff:6a:92:80:c1:bb:a1:37:51:b0:0c:60:50:
cf:c6:8d:e5:d7:74:59:a8:85:bd:2e:d5:e6:cc:ea:8c:01:06:
da:3f:1e:18:dc:be:6a:df:ae:a2:2e:87:7f:a5:97:92:bd:34:
50:33:e7:c6:10:cf:6d:00:b5:64:f1:1a:5d:60:07:1e:2f:87:
dd:68:2f:77:16:f5:bb:88:51:29:6b:52:a2:4d:48:66:12:ea:
83:89:a9:a7:5f:65:7e:b0:3f:e2:3a:bb:b2:f8:78:37:52:e2:
24:d0:f6:5a:b5:57:5d:20:94:68:37:67:d4:46:52:4d:aa:cc:
b8:5e:79:2d:ed:1b:02:6d:22:54:3e:16:96:d0:73:ed:18:00:
a5:ca:3a:75:48:25:21:3c:4d:46:cc:9b:e9:ca:db:74:c4:d8:
be:1d:cf:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org