Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KseBZbEu5MFVtbnAO98H0L8cIg4.roa
File: KseBZbEu5MFVtbnAO98H0L8cIg4.roa (raw, json)
Hash identifier: wBsYz+epZ3WiuobbVVms5QEj6kIG4ahDTU3wpjJdILI=
Subject key identifier: 2A:C7:81:65:B1:2E:E4:C1:55:B5:B9:C0:3B:DF:07:D0:BF:1C:22:0E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A2770D51A6A1AD44817C0103EB0C984E5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KseBZbEu5MFVtbnAO98H0L8cIg4.roa
Signing time: Thu 24 Aug 2023 12:07:00 +0000
ROA not before: Thu 24 Aug 2023 12:07:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 185.206.250.0/24 maxlen: 24
185.126.80.0/24 maxlen: 24
185.251.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 09:32:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:70:d5:1a:6a:1a:d4:48:17:c0:10:3e:b0:c9:84:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 24 12:07:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ac78165b12ee4c155b5b9c03bdf07d0bf1c220e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1f:c1:5d:42:95:4c:25:14:e0:f2:bd:8a:2e:
52:a4:c7:13:c1:e8:fb:1d:9f:4a:f8:4b:15:01:b1:
77:c4:87:92:65:c4:b3:0c:42:29:03:ed:f8:18:64:
86:81:98:11:52:5c:eb:bc:b8:5c:e9:bd:20:c0:33:
00:3a:87:4e:3c:d2:15:94:47:39:7d:9e:56:97:c1:
3a:7a:6e:1c:e7:94:64:de:85:ca:09:db:86:18:10:
50:0c:5a:9d:ad:ee:79:9a:a4:a3:7e:0b:83:33:73:
e1:ed:45:27:a1:9c:3e:2d:8f:d9:e6:f3:2d:e4:06:
5e:44:9f:24:9a:59:c6:2b:9b:1d:3c:70:16:cb:77:
48:e7:77:4d:26:59:23:47:f1:49:7a:29:a3:ae:7f:
59:9b:2a:e6:c6:9a:96:94:7c:cb:d1:90:ce:54:42:
1a:2b:53:88:d0:a5:9a:1c:d9:db:f2:34:14:e4:52:
75:c7:34:af:4c:ef:a0:e0:dc:63:78:42:16:df:5c:
d6:68:f9:08:57:03:c8:bd:bc:e6:b3:59:fa:0c:bc:
b6:7e:5d:e8:4c:a9:b6:99:72:35:ab:24:10:1e:5a:
24:31:ce:77:d6:b6:5a:2d:fa:8e:46:e9:fc:46:32:
bb:8b:5b:8c:0a:b6:91:c7:0b:2d:07:35:b4:86:a9:
8d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:C7:81:65:B1:2E:E4:C1:55:B5:B9:C0:3B:DF:07:D0:BF:1C:22:0E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KseBZbEu5MFVtbnAO98H0L8cIg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.80.0/24
185.206.250.0/24
185.251.230.0/24
Signature Algorithm: sha256WithRSAEncryption
14:49:bd:68:cb:12:41:80:88:25:f7:96:e7:b1:c5:b5:65:7d:
44:a0:9d:13:f6:b4:cf:a2:51:6d:c6:7e:ba:aa:a6:f1:7b:f9:
1b:33:b6:fb:91:1f:08:da:71:6a:5d:fb:e6:7d:df:9b:78:38:
7d:0e:4d:65:98:a7:05:1f:83:47:6f:ee:d8:f8:45:31:b5:9b:
61:2f:af:01:8b:ca:76:31:a1:cd:f5:e7:51:80:50:2b:36:42:
0b:34:0a:97:f1:24:27:b9:02:62:89:37:27:07:01:58:69:34:
49:86:36:ce:e2:ba:5f:63:04:32:9c:7b:1c:6b:f6:65:88:eb:
df:27:74:a0:41:ab:25:d7:7f:da:f2:f7:b2:f3:4f:92:59:44:
8c:b3:52:61:0f:e8:25:f4:ba:73:35:2f:c3:a4:9c:86:64:b8:
9a:db:7a:3f:12:b6:d1:77:9b:66:8f:44:36:de:34:c1:31:0e:
c5:cd:5b:d0:dd:8d:50:26:ed:d2:88:ec:71:3e:23:59:c9:54:
ac:1b:52:3c:bf:bb:22:d8:0d:09:52:7b:8a:ec:e2:40:19:1c:
a7:aa:ec:fa:3a:de:26:df:ee:ca:46:21:7f:a4:03:97:b6:d6:
4d:04:4d:87:c5:48:4c:3c:44:ec:a3:c8:0f:12:17:91:75:8d:
03:05:f0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org