Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Pu1rf9gzeFuqOaookEYGWso6I8w.roa
File: Pu1rf9gzeFuqOaookEYGWso6I8w.roa (raw, json)
Hash identifier: o5W1HAOtFq9p2s9PiGb/occGzzJTYX+GoktxD8tUZ9M=
Subject key identifier: 3E:ED:6B:7F:D8:33:78:5B:AA:39:AA:28:90:46:06:5A:CA:3A:23:CC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018ABC66F056E4471B351E6575B4A964F79D
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Pu1rf9gzeFuqOaookEYGWso6I8w.roa
Signing time: Fri 22 Sep 2023 10:19:37 +0000
ROA not before: Fri 22 Sep 2023 10:19:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 185.209.73.0/24 maxlen: 24
185.194.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Sep 2023 18:15:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bc:66:f0:56:e4:47:1b:35:1e:65:75:b4:a9:64:f7:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 22 10:19:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3eed6b7fd833785baa39aa289046065aca3a23cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d4:44:15:22:02:cf:7c:dc:4f:45:6d:50:f2:
b3:93:b1:2f:fe:73:4a:14:03:cf:e4:d5:93:b7:ab:
63:e9:7c:b2:88:4b:f6:27:78:14:fa:cf:9e:ca:1c:
83:9c:ec:c3:99:b6:5a:fc:46:d8:52:67:ef:9a:ce:
ed:4b:12:80:13:e2:58:ce:65:79:67:a4:fe:7b:24:
5e:ce:ed:33:5d:39:e4:02:fa:6f:9e:eb:74:72:b6:
72:43:de:ec:67:13:cb:10:f0:f5:1c:cb:53:83:50:
f8:b7:4c:f9:57:cd:57:14:56:85:5c:2f:72:66:70:
bf:da:90:51:d3:a3:57:07:d1:eb:59:e3:20:f2:f4:
f3:6e:64:54:43:f7:5f:80:ee:10:05:9b:92:0b:63:
c4:9a:50:cd:ba:87:03:22:9a:5c:f5:6a:70:b7:3e:
7f:6c:6e:e2:a4:d1:89:0f:33:48:bc:87:06:40:a5:
fa:9c:52:1e:84:28:73:d3:63:c6:65:6a:d0:b9:37:
68:1f:fd:32:fd:d7:09:39:89:4c:ef:e4:da:ad:ea:
73:c9:73:6a:42:70:1f:e7:64:85:a2:02:46:94:b7:
f7:f2:77:2f:18:b2:11:69:91:56:f1:6e:6c:67:92:
68:2f:a4:dd:d5:de:5c:8f:fd:0a:ec:5e:ce:4a:15:
ae:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:ED:6B:7F:D8:33:78:5B:AA:39:AA:28:90:46:06:5A:CA:3A:23:CC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Pu1rf9gzeFuqOaookEYGWso6I8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.177.0/24
185.209.73.0/24
Signature Algorithm: sha256WithRSAEncryption
02:94:ff:66:83:a2:92:c1:15:ea:95:f3:67:ec:0e:7b:b2:3b:
4c:bf:05:78:ae:36:c5:ec:35:01:fc:b3:62:0a:78:09:20:67:
7c:5e:2a:2a:a6:5e:82:e6:71:64:28:78:74:73:ab:1b:cc:e3:
be:15:42:7b:e6:e2:5d:a7:86:7d:1b:3d:69:84:bc:be:13:9e:
e1:67:aa:33:36:3e:3c:8e:0c:f7:e1:43:c8:79:21:58:bf:e4:
76:13:65:d6:aa:c6:ee:76:7c:07:60:bc:dd:54:27:bd:38:0e:
83:f3:b4:50:97:d4:69:c2:66:92:33:86:2c:64:bd:22:a0:01:
9a:46:e3:31:df:83:9a:6e:1c:72:28:49:34:1c:23:f9:1b:2f:
e5:2b:d3:04:bc:2d:d8:7b:1f:02:42:93:57:6b:85:24:44:7d:
72:cc:1c:32:99:28:3b:87:0b:74:02:a2:a2:24:a1:52:08:71:
6f:04:14:60:ad:04:1a:f5:10:b5:78:9e:da:d7:e6:ad:fd:93:
fd:26:1c:09:7b:85:5c:e6:f1:f7:50:17:45:cf:69:a2:10:bf:
7c:49:52:59:38:ef:5d:3a:fb:cf:86:23:33:bf:12:d7:f7:1f:
ba:08:91:b5:79:0a:0a:d1:41:39:69:38:b3:c5:01:ff:0d:78:
6b:80:f5:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org