Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/K5Nr6Dl901GmpcU1fYhUjW0zaBQ.roa
File: K5Nr6Dl901GmpcU1fYhUjW0zaBQ.roa (raw, json)
Hash identifier: NWUqtlnV67r65Y+r+EFQTAlv1zRARIw0vZmDvDbeu8Y=
Subject key identifier: 2B:93:6B:E8:39:7D:D3:51:A6:A5:C5:35:7D:88:54:8D:6D:33:68:14
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0186C57FD0D7DD4661BAE5699651CA9F69BE
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/K5Nr6Dl901GmpcU1fYhUjW0zaBQ.roa
Signing time: Thu 09 Mar 2023 08:32:13 +0000
ROA not before: Thu 09 Mar 2023 08:32:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13213
IP address blocks: 185.218.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 16:09:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:7f:d0:d7:dd:46:61:ba:e5:69:96:51:ca:9f:69:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 9 08:32:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b936be8397dd351a6a5c5357d88548d6d336814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5d:55:e3:47:b7:5f:d2:40:2d:73:cb:0c:a7:
5a:59:f3:56:ff:32:90:0d:db:c0:88:ef:f3:98:b7:
bf:56:e4:64:aa:b5:da:49:91:32:e3:6e:6c:4d:5d:
f5:1e:ae:10:2b:5e:e3:13:c0:4f:d5:cd:1e:a7:0c:
77:42:c4:d7:a0:e7:f9:1a:c4:88:ca:f9:78:9d:05:
f8:a0:44:8f:a6:89:0e:1f:0e:76:1a:58:bc:01:c9:
51:33:6c:48:10:18:89:2b:e6:c6:6c:35:88:02:47:
c9:77:26:ba:42:1d:a8:0a:6b:63:33:93:47:b0:31:
ae:a2:86:60:91:fa:73:67:2b:52:84:82:23:02:82:
2b:24:58:0d:99:e8:e8:f8:41:06:fa:2f:e7:89:81:
2d:0d:1c:8c:ed:b8:84:df:fa:5c:06:96:7d:f9:61:
61:1c:92:99:55:69:49:7d:25:f7:52:5e:07:3f:8e:
b8:6a:fb:43:4b:60:87:ac:1b:99:3c:3d:b2:6d:5f:
ae:aa:1c:75:fd:f4:f1:03:21:be:53:69:96:07:21:
97:cb:4f:bf:88:5c:59:21:46:77:38:51:b4:72:45:
7c:d1:f6:bc:27:7c:a4:e7:2a:8a:da:d0:8e:00:05:
8b:68:ec:3e:36:a7:c3:2c:2e:bb:07:9a:08:b8:fb:
79:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:93:6B:E8:39:7D:D3:51:A6:A5:C5:35:7D:88:54:8D:6D:33:68:14
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/K5Nr6Dl901GmpcU1fYhUjW0zaBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.22.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:d9:82:21:95:28:29:25:1e:ef:72:39:6e:63:b3:9f:b9:d4:
02:8b:aa:da:7a:67:3c:18:59:8f:03:11:2c:02:e1:30:f5:ed:
0b:45:f1:36:74:73:d1:e2:dc:c4:40:f8:4d:09:83:d7:29:83:
c4:5b:78:ac:40:b7:7a:20:19:22:94:77:c0:3f:42:3c:3b:88:
de:95:ea:44:38:a4:a4:93:91:6a:9c:d6:94:1b:e4:6f:37:1e:
f5:e8:61:2e:f6:6c:36:73:a4:0f:0f:a0:4e:8e:7a:e3:bc:55:
e5:cb:97:bb:97:f7:20:26:2f:90:c6:54:6f:54:f8:88:91:b4:
10:d1:24:54:73:dd:ce:77:99:c4:27:02:40:6d:34:15:57:1b:
6e:ff:4d:fc:61:a3:4c:f5:1c:91:8f:cb:44:2c:02:94:23:7c:
c1:65:c0:89:39:0f:0b:f0:66:80:8c:cd:47:d4:79:8a:af:39:
3c:42:a5:e4:1f:0a:3c:2a:cc:22:ef:e6:39:7c:d0:c3:44:ff:
f3:95:95:60:5f:dc:3d:c4:08:29:50:2f:63:8f:85:85:6f:4d:
78:5c:54:13:e9:ea:06:17:43:9a:9a:c6:93:f7:85:8a:3f:ea:
6b:e1:53:0c:8f:8d:be:df:c4:5d:17:90:0c:ed:0a:1f:80:09:
19:f1:da:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org