Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PnAZuKxLtXMLjtgmw_6AUCygVfU.roa
File: PnAZuKxLtXMLjtgmw_6AUCygVfU.roa (raw, json)
Hash identifier: DWy9j/djvAgGLMEff0OXiU0pKb8aTKhAEAtvdbL64Pg=
Subject key identifier: 3E:70:19:B8:AC:4B:B5:73:0B:8E:D8:26:C3:FE:80:50:2C:A0:55:F5
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BC9A025F4976DCD0041364FFFCC91AE71
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PnAZuKxLtXMLjtgmw_6AUCygVfU.roa
Signing time: Mon 13 Nov 2023 16:59:57 +0000
ROA not before: Mon 13 Nov 2023 16:59:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:a0:25:f4:97:6d:cd:00:41:36:4f:ff:cc:91:ae:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 13 16:59:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e7019b8ac4bb5730b8ed826c3fe80502ca055f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f1:8b:b6:bf:a9:d9:f1:22:37:ea:95:fb:da:
fd:a0:82:91:60:e0:e8:43:a2:8d:ef:64:50:53:31:
11:70:e3:23:6d:16:21:bd:59:fd:b1:6f:0f:89:6b:
35:0f:54:16:2a:58:cd:8b:73:39:8b:4e:7d:7c:84:
31:ac:74:7a:03:fa:d7:1e:b7:28:3c:15:4c:70:84:
35:cb:30:e7:fd:cb:03:5d:cf:ed:dd:6d:20:95:08:
3e:25:7b:f7:56:62:09:29:d6:1f:f3:48:14:af:69:
92:7a:2a:1a:5b:19:9e:22:07:40:d5:9e:2e:3c:c1:
48:69:06:6e:e2:67:83:9a:f6:a3:30:22:5b:b3:f7:
00:e1:3d:c8:a9:26:31:3e:c7:37:98:0e:2b:af:b1:
37:20:39:af:e1:a1:31:c6:0c:93:1d:89:83:40:2c:
66:ba:4e:eb:7e:44:52:1f:4a:a7:9c:8e:82:d9:9a:
d7:03:a6:60:77:de:92:7d:04:cc:d5:87:39:d9:67:
23:8c:19:86:d8:9f:1c:77:0d:fc:58:4b:77:48:b2:
3d:0a:f8:ba:6a:bc:5e:6d:51:b3:e5:48:75:5d:75:
ee:f1:6a:06:d9:69:7f:59:b4:88:b8:8a:93:db:95:
d9:38:50:5d:26:13:a7:6d:cc:45:5e:52:f9:72:8f:
e8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:70:19:B8:AC:4B:B5:73:0B:8E:D8:26:C3:FE:80:50:2C:A0:55:F5
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PnAZuKxLtXMLjtgmw_6AUCygVfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
80:1a:01:8b:1e:0c:8b:b0:09:0a:36:ff:83:7f:c9:e4:48:02:
37:a5:bd:cf:58:9f:32:2e:9e:8c:d6:80:55:c0:6f:0c:17:28:
9f:80:19:c2:84:89:b2:64:24:5e:45:0e:d5:26:37:07:08:4b:
7b:1b:c1:20:c9:fe:6a:f8:5c:85:79:55:9f:f7:b8:16:45:af:
d4:44:ff:de:a6:8a:a4:84:e6:03:48:e2:6d:08:9e:f3:3c:48:
ce:bc:d5:79:57:9e:4f:03:9b:04:ff:cf:78:ef:74:f5:da:a4:
9f:70:7e:15:42:27:3e:1a:e5:9d:23:d8:ad:38:e5:c4:5e:d8:
35:5d:1f:52:f1:b5:a5:f6:31:aa:56:0c:a0:e9:bc:ba:ec:3d:
b7:78:de:2a:36:64:1b:f5:ea:0c:27:81:c3:87:7e:dc:62:93:
b7:ce:7f:55:9b:f0:2e:62:15:dc:b2:b8:bf:2f:da:e1:09:b2:
0c:76:68:d6:e0:b7:db:a7:cf:e1:1c:a1:ad:86:92:fd:4b:b5:
35:11:bd:7b:a6:2d:3e:17:bf:2e:0c:c4:b6:d0:a6:43:6b:75:
d5:08:23:bd:91:2b:29:b7:81:57:51:a8:e8:61:95:56:1a:00:
3c:85:e7:70:72:fd:52:cd:66:b8:9d:73:c5:36:7d:44:d8:c1:
b9:4e:1f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org