Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/K9jb2elOG1ceIY-kMRXBH2f0Jn8.roa
File: K9jb2elOG1ceIY-kMRXBH2f0Jn8.roa (raw, json)
Hash identifier: 203YM1Adz/ZHsF7yJ9iJvX47O4q3IQJww8qULM0O2PU=
Subject key identifier: 2B:D8:DB:D9:E9:4E:1B:57:1E:21:8F:A4:31:15:C1:1F:67:F4:26:7F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189BAE68B2094441CFB79FD68BFC9BED267
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/K9jb2elOG1ceIY-kMRXBH2f0Jn8.roa
Signing time: Thu 03 Aug 2023 10:16:58 +0000
ROA not before: Thu 03 Aug 2023 10:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 09:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:e6:8b:20:94:44:1c:fb:79:fd:68:bf:c9:be:d2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 3 10:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bd8dbd9e94e1b571e218fa43115c11f67f4267f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a1:b6:aa:53:87:ce:ef:c6:a9:56:8e:2b:a1:
61:14:a6:82:31:fd:fe:65:b5:6b:66:3b:de:47:ac:
78:4e:47:3a:3e:d3:4d:8f:2e:e7:da:24:81:fc:a6:
50:ec:53:07:70:b1:4e:be:b0:73:85:fb:4d:4c:d4:
a3:53:93:60:a7:bc:ff:39:ca:b1:99:72:c5:f4:cc:
6a:1a:53:6e:fb:af:3d:5c:35:e2:f3:3f:c6:00:4a:
d7:02:1c:e5:46:e4:eb:51:ba:71:90:e6:46:47:5d:
f3:ef:70:77:87:f2:83:a7:0c:1a:61:9e:3d:f6:54:
3e:c5:f6:22:f4:eb:0c:ee:c0:7d:28:ae:ac:14:fb:
c8:92:1f:fd:e4:19:d0:07:fb:61:41:d8:89:25:01:
74:1c:7d:0c:f7:db:97:31:37:14:70:55:c7:58:6c:
fd:5c:13:e9:fd:da:34:d1:d9:4b:27:09:f9:81:2a:
a0:8c:5b:b7:1f:3f:bc:aa:cd:65:44:a7:e0:06:e5:
1b:82:c6:df:0a:7d:08:3b:1a:cc:b8:94:09:a9:82:
22:2f:b6:f7:0b:34:07:40:5f:a9:7c:c2:51:20:70:
61:a2:3b:05:37:b4:f1:82:1a:c5:60:bb:f1:cd:dd:
ee:33:75:a9:7a:04:72:dc:4d:dd:a0:b3:65:e3:1e:
74:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D8:DB:D9:E9:4E:1B:57:1E:21:8F:A4:31:15:C1:1F:67:F4:26:7F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/K9jb2elOG1ceIY-kMRXBH2f0Jn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b7:6c:a4:d5:b8:d8:a6:23:37:27:5c:7d:3a:6c:0c:82:03:
e1:e8:a0:46:29:b4:8b:6b:90:8c:d0:33:53:2e:c4:65:01:bf:
ea:d2:e3:07:ed:87:7b:98:c1:f3:d8:17:38:ac:47:f9:07:3f:
03:88:09:bd:0a:c7:ae:b7:74:3c:9d:3b:72:1e:67:ff:19:e9:
a0:72:56:51:27:76:52:98:3b:b8:6d:da:2d:c6:a5:9d:d8:fd:
14:9a:fb:ec:74:36:51:4b:31:8c:be:a3:76:e7:9d:ee:0d:06:
dc:a9:71:ca:f4:e5:d3:cd:1b:6f:0e:ab:73:68:23:fd:20:50:
42:ba:db:70:88:c3:56:cf:95:8f:92:e1:70:e7:50:fe:42:5e:
e1:fc:ac:7f:09:fc:ee:21:10:6a:1a:c0:2d:de:dd:a3:cd:e4:
52:1b:d3:00:56:88:12:9d:3e:18:74:b7:df:85:ce:11:52:2d:
43:5f:dd:60:d0:11:86:c3:7b:53:a6:22:6f:3b:26:1e:9e:56:
61:a3:cb:c0:d3:b0:52:d0:8c:02:93:dd:94:e2:1d:38:0f:0a:
58:b3:71:4f:50:0d:4c:b6:88:1e:4b:9e:e6:3e:af:85:26:73:
8d:f1:55:2b:7c:ac:27:e5:9f:23:f7:bd:f3:3f:8a:7a:f3:3a:
15:5f:1a:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org