Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RyreZoAcH6DalS2HpgDqmju3ZL4.roa
File: RyreZoAcH6DalS2HpgDqmju3ZL4.roa (raw, json)
Hash identifier: 2gEwae/Wtc93JvPJopsX06NvqOIzyaV9pD2adB99x9E=
Subject key identifier: 47:2A:DE:66:80:1C:1F:A0:DA:95:2D:87:A6:00:EA:9A:3B:B7:64:BE
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B6361E7B63BA84ED3EA5D4C4D6E4F6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RyreZoAcH6DalS2HpgDqmju3ZL4.roa
Signing time: Mon 02 Jan 2023 09:00:44 +0000
ROA not before: Mon 02 Jan 2023 09:00:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60458
IP address blocks: 185.248.200.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 12 May 2023 15:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:36:1e:7b:63:ba:84:ed:3e:a5:d4:c4:d6:e4:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=472ade66801c1fa0da952d87a600ea9a3bb764be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b6:0d:4c:2c:0a:7f:32:48:3c:e6:21:82:b3:
cc:a5:7c:91:0c:15:8e:80:6f:48:de:43:90:a8:e4:
fd:4b:b8:b9:52:3b:74:31:69:7e:26:a6:2c:6e:9f:
7c:8a:81:28:cb:fb:c7:81:76:5a:74:bd:5d:25:41:
57:bc:f0:45:4a:31:98:8d:27:f8:a0:69:09:35:03:
45:4c:97:37:67:2e:d4:45:de:2c:0c:0a:72:78:67:
df:0c:23:f8:27:29:51:54:4d:d1:ca:e8:63:0a:c6:
8f:7a:2c:10:8c:7d:ce:97:37:93:1a:b3:3e:c4:cb:
79:dc:06:bc:b3:70:5c:4b:46:a6:b8:b1:1b:00:17:
c0:85:89:e7:1f:0a:ab:f3:1b:85:63:f0:75:bd:49:
66:8b:07:56:1a:81:24:6d:60:b3:5c:b4:08:8b:74:
ef:94:df:05:4e:67:9a:20:c0:9f:f8:d6:1f:8c:bf:
16:b4:33:38:78:8e:9b:21:6b:87:99:de:41:60:42:
56:c6:ee:75:fc:96:21:09:7c:70:4b:63:09:fd:a9:
ad:17:73:bd:8f:8c:38:90:a3:74:3c:98:04:c3:2c:
e6:bc:8f:58:9e:5d:34:7b:81:96:e5:d2:e8:5e:f3:
bd:ab:9b:99:52:a4:24:6a:b1:ad:d8:ea:ee:02:cc:
df:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:2A:DE:66:80:1C:1F:A0:DA:95:2D:87:A6:00:EA:9A:3B:B7:64:BE
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RyreZoAcH6DalS2HpgDqmju3ZL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.200.0/22
Signature Algorithm: sha256WithRSAEncryption
90:6a:d3:cf:71:d6:b7:f4:06:c4:b9:6c:3f:23:ff:84:e7:a2:
aa:f7:e9:75:63:54:ee:c9:6a:5a:3d:6e:cd:5c:66:3b:9d:0b:
a0:f3:d4:50:77:7f:dd:15:b0:e5:76:5d:d3:d1:9a:ca:e8:98:
91:52:38:09:41:52:79:ab:6f:65:36:df:09:a5:a4:69:21:05:
b8:1a:70:b3:5f:ac:cd:c6:74:84:6a:c6:c0:60:c4:cf:9a:88:
6c:96:b4:c3:d9:d4:d0:42:79:db:02:91:0b:50:2b:32:0f:c9:
df:c3:c5:fe:5b:a4:be:b4:f0:3c:52:be:0d:f8:8b:2e:21:d6:
1c:0f:c7:60:de:e1:32:1d:ad:bf:ed:fe:88:8b:1a:c5:7b:d5:
0d:0c:aa:4c:74:77:8d:07:f5:69:17:d2:44:37:96:3d:4c:8d:
1c:f2:bf:a6:4f:7e:e4:c8:aa:13:dd:42:6e:26:5b:f6:9d:10:
87:b5:4f:6c:d6:0c:d6:79:03:02:e9:a1:ed:48:28:04:7a:7c:
e8:3a:48:64:a7:a9:af:ec:da:82:b2:fd:ea:b3:db:3b:f7:67:
66:f3:43:ac:75:b8:70:eb:88:17:95:17:cf:48:83:41:6e:b8:
e4:47:fb:fb:d9:a5:f6:9d:80:c1:21:73:48:2f:f0:d8:82:c4:
2d:73:8f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org