Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PfY3hIJNeUfTY_2zSPny2n1rbAg.roa
File: PfY3hIJNeUfTY_2zSPny2n1rbAg.roa (raw, json)
Hash identifier: /qIfdklHRw0v+0L6qXKxiEZ63/u4UZny+zCRLmTuXio=
Subject key identifier: 3D:F6:37:84:82:4D:79:47:D3:63:FD:B3:48:F9:F2:DA:7D:6B:6C:08
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC80287C02549BDCCE45CE12407E10718
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PfY3hIJNeUfTY_2zSPny2n1rbAg.roa
Signing time: Tue 02 Jan 2024 02:30:58 +0000
ROA not before: Tue 02 Jan 2024 02:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198883
IP address blocks: 185.209.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 09:56:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:87:c0:25:49:bd:cc:e4:5c:e1:24:07:e1:07:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3df63784824d7947d363fdb348f9f2da7d6b6c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9e:a4:4a:ff:a2:68:34:47:a3:70:a0:73:03:
68:be:0a:89:80:c2:4b:56:27:55:93:2a:a6:66:ec:
13:eb:67:82:d7:d2:57:6a:73:4e:2b:8e:66:b3:c1:
59:74:b8:a2:6b:ad:49:7f:78:db:e7:82:1c:2b:11:
5b:d1:d6:d3:03:27:5d:b4:64:0c:ac:a8:e8:d4:cc:
28:1a:70:13:a2:0e:dc:1e:20:3d:f8:f3:24:fd:f4:
93:92:04:96:c6:92:47:a4:77:5c:0f:35:bc:d9:c8:
98:cc:8a:8a:44:76:3b:52:38:47:7a:55:ac:f9:d8:
2a:45:7d:fb:a1:30:f0:72:fb:d6:dd:1f:40:36:e3:
76:8b:c4:27:5b:88:d8:98:d1:22:cd:bd:27:1e:d1:
09:92:72:6a:49:64:c4:4a:3c:60:7a:2a:ca:2c:12:
2e:f6:c3:4f:c9:1f:67:5d:85:2f:96:ba:e2:c7:c1:
a7:eb:61:92:e1:08:67:fe:d4:99:93:5a:aa:92:5b:
1b:56:9c:ab:0c:fa:d5:ee:2c:54:8f:39:74:fa:78:
df:2d:e4:af:12:3e:ca:7b:67:39:2c:0e:77:97:4c:
b3:3b:66:49:ff:b2:db:ee:94:52:e6:0a:89:ad:c9:
f9:5f:69:a6:e4:d0:23:06:e8:f9:be:9c:9f:c0:05:
f5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:F6:37:84:82:4D:79:47:D3:63:FD:B3:48:F9:F2:DA:7D:6B:6C:08
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PfY3hIJNeUfTY_2zSPny2n1rbAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.75.0/24
Signature Algorithm: sha256WithRSAEncryption
82:55:be:c5:d9:42:d3:b1:fd:ef:bf:22:26:e8:da:71:d4:76:
f5:9d:f9:2f:58:fd:ea:c7:ff:5f:53:a1:44:46:70:dd:25:21:
7c:ea:39:18:30:9a:33:da:24:22:78:9f:57:ad:ae:68:71:5d:
84:00:26:ed:e3:23:30:fd:ce:ad:e3:00:25:41:c8:b4:60:b9:
9c:fb:a5:0e:7b:e2:84:64:45:36:82:10:27:83:99:77:ae:58:
80:14:53:0a:44:de:f7:64:fc:f3:e5:5f:d5:0b:57:bd:d9:1c:
5f:1d:5e:16:a8:d5:0b:b8:7c:02:9b:61:a6:ad:65:a3:68:0e:
f9:ab:cc:b1:1b:1b:04:eb:6c:65:b4:82:c5:10:a4:34:98:03:
bd:81:2d:fb:59:00:51:bd:83:06:33:5e:c9:97:a7:dc:4d:96:
d8:6e:c7:51:7e:93:65:41:7e:73:e8:9f:0a:9e:bd:d0:38:f2:
73:13:29:76:a5:f2:cd:d9:6f:51:22:da:19:86:43:67:8b:2a:
d5:c2:87:f9:bc:40:cc:48:73:11:25:36:22:ab:e4:b7:af:3e:
3b:aa:b1:54:e2:92:6f:e3:b6:11:81:9b:ce:14:ab:7c:2d:11:
e6:ad:6a:0d:70:90:45:c6:40:47:e2:cb:ee:ac:03:00:cf:8f:
41:1f:3e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org