Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KItZjjv4jPMrXp_M-xchJkSZ4XM.roa
File: KItZjjv4jPMrXp_M-xchJkSZ4XM.roa (raw, json)
Hash identifier: HEnLuocFXzc71D7p/jWoWG3RJT5W8kGLgC6XWcFACrU=
Subject key identifier: 28:8B:59:8E:3B:F8:8C:F3:2B:5E:9F:CC:FB:17:21:26:44:99:E1:73
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01891CC21CAFA063172DD7FC55DBDD6FC1CF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KItZjjv4jPMrXp_M-xchJkSZ4XM.roa
Signing time: Mon 03 Jul 2023 17:17:10 +0000
ROA not before: Mon 03 Jul 2023 17:17:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61112
IP address blocks: 185.214.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 19:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:c2:1c:af:a0:63:17:2d:d7:fc:55:db:dd:6f:c1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 3 17:17:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=288b598e3bf88cf32b5e9fccfb1721264499e173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ea:6b:7a:f8:32:02:ed:65:a1:c3:9b:d6:3a:
66:32:98:37:f8:b2:e8:c2:fd:3c:52:63:9d:ce:c3:
c3:ba:d8:fc:54:a4:99:0b:30:75:73:55:eb:9a:4c:
f2:a0:8e:02:80:96:ab:86:66:d7:06:5c:5d:aa:4e:
c8:2b:29:25:15:b6:94:8d:03:ef:f6:b3:f9:67:47:
b6:a4:63:e9:6d:2c:74:da:f8:16:68:f6:ee:80:e8:
47:d7:fc:2f:c2:34:b4:53:51:72:9c:a3:41:f5:3a:
7d:31:04:ea:d4:5f:3f:24:a6:63:ca:90:0a:be:dc:
27:a9:b0:c7:28:64:19:a9:e5:60:05:65:0d:c4:fd:
d0:8f:6d:c4:93:f8:89:1b:bf:6f:f6:e2:e3:bd:cc:
1d:13:75:cd:1c:10:6b:2b:13:59:dc:30:71:0f:bb:
ab:fb:fc:cb:4b:41:fe:65:f4:5e:73:27:9b:d2:98:
12:0f:75:b2:ee:59:b5:f2:6b:14:11:42:08:aa:6d:
f0:34:f5:c6:3f:ca:b7:c0:03:f1:08:9f:48:d7:4e:
f2:45:a9:63:62:a3:d8:20:98:75:a3:57:60:a8:10:
c6:46:99:1c:85:07:d1:f4:b4:cc:cc:fb:b9:75:14:
13:86:f2:99:82:98:e8:f7:66:7e:99:85:f4:61:dd:
59:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8B:59:8E:3B:F8:8C:F3:2B:5E:9F:CC:FB:17:21:26:44:99:E1:73
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KItZjjv4jPMrXp_M-xchJkSZ4XM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.103.0/24
Signature Algorithm: sha256WithRSAEncryption
23:f7:f1:39:41:4a:eb:a3:93:a3:de:f3:c8:6a:c1:c2:76:87:
b7:f3:fd:82:fe:0a:ca:4b:36:a0:01:24:24:cd:bd:5b:50:31:
54:5d:65:ea:1f:ea:5b:fc:96:fc:2d:e6:db:c3:14:b0:c5:85:
30:ec:3f:7c:86:50:cc:af:e7:30:56:36:50:8b:62:a8:7b:7a:
9e:59:38:25:43:7a:9d:d6:08:68:47:dd:9a:84:b7:c1:59:53:
b7:0f:01:b4:81:47:41:8f:16:0f:e3:ed:96:8c:ed:0f:3a:50:
a4:71:31:32:42:8d:ff:75:05:8f:f5:44:d8:0f:6a:77:f2:5f:
a9:65:04:75:93:1c:ec:6d:64:d1:46:1d:bc:44:a0:bd:4a:75:
69:85:13:b0:32:f8:46:23:52:5b:bd:ee:69:45:e8:43:87:93:
fc:d0:7f:0c:5e:db:5c:25:3c:8a:b7:ed:ec:31:58:b4:8c:fc:
e8:ca:95:77:61:ee:42:cd:cb:e7:3a:d8:61:b7:d8:63:57:3e:
da:28:ba:76:b1:1a:46:02:2f:14:9d:f3:96:cf:03:97:2e:1c:
7b:42:40:00:19:d9:25:67:26:3e:bc:43:ee:c8:30:a8:d9:f8:
fb:35:09:ea:06:08:4a:79:be:ae:f7:80:9a:ee:7e:03:69:8f:
94:ca:f0:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org