Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/S52hj826gPdBYDjyxxBj_Mt-Roc.roa
File: S52hj826gPdBYDjyxxBj_Mt-Roc.roa (raw, json)
Hash identifier: t+fgKg30WN5YZ6dUGheBjbYlFHvmFgYHKZijGwMKMUo=
Subject key identifier: 4B:9D:A1:8F:CD:BA:80:F7:41:60:38:F2:C7:10:63:FC:CB:7E:46:87
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0186D00462446174C2AE0F54C587E5286D80
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/S52hj826gPdBYDjyxxBj_Mt-Roc.roa
Signing time: Sat 11 Mar 2023 09:33:13 +0000
ROA not before: Sat 11 Mar 2023 09:33:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 185.225.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Mar 2023 10:46:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d0:04:62:44:61:74:c2:ae:0f:54:c5:87:e5:28:6d:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 11 09:33:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b9da18fcdba80f7416038f2c71063fccb7e4687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9f:de:1e:3e:f1:8c:05:71:2a:ca:08:a0:d4:
77:19:ee:e6:2e:00:fe:98:9d:f7:20:da:31:7e:dc:
3a:8b:b0:ce:07:37:9e:d2:01:b4:f8:ab:cd:b6:5d:
16:f1:e9:9e:bd:c8:11:6a:ff:70:2f:66:04:0b:c7:
c9:8e:b8:1a:4d:10:20:8f:64:5c:88:d8:ca:55:60:
7c:95:07:d0:1b:2b:13:6f:1c:02:7f:35:29:eb:b4:
06:65:17:97:c3:b3:73:16:df:29:40:ba:4d:f0:fb:
d3:66:41:bd:95:4e:95:48:ff:2b:cd:e8:a7:98:46:
0a:76:25:ad:20:7a:74:ed:35:c4:9c:ea:9f:b4:74:
9a:24:6a:27:80:76:55:12:68:00:b7:01:8c:f7:9a:
89:92:11:6a:4e:36:b5:a1:8f:b4:a3:d3:59:08:a0:
f8:d3:92:13:d4:fd:12:66:a0:30:0a:85:77:db:31:
c3:fe:d0:5c:8b:d7:ed:f1:a2:2e:9a:ee:d9:cf:71:
56:fe:d9:cf:94:be:2a:ff:ae:a8:bf:06:e7:e0:94:
a4:23:30:9a:da:ee:08:d7:f6:66:06:6f:e3:de:6b:
72:9b:6a:b9:d5:36:f5:bb:6c:30:ab:5e:88:ef:c9:
59:f7:16:cd:ef:17:97:49:a3:de:79:57:6a:ff:29:
81:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:9D:A1:8F:CD:BA:80:F7:41:60:38:F2:C7:10:63:FC:CB:7E:46:87
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/S52hj826gPdBYDjyxxBj_Mt-Roc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.2.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:28:94:81:6b:aa:42:d3:81:e8:57:82:0a:67:6c:d7:9c:ec:
b8:05:f6:33:ae:32:61:a0:81:91:3b:ea:e6:fe:63:87:73:51:
1b:eb:45:05:d4:85:49:d7:dd:2f:53:3e:c7:d7:77:3b:1d:b1:
78:65:e5:f4:26:79:2f:60:83:54:0c:ed:e4:60:49:1c:01:0a:
8d:5c:64:ab:f0:15:97:6f:58:05:a0:57:08:66:b8:63:e4:fa:
7f:fc:68:11:55:54:51:38:66:b9:24:0f:10:9c:dc:7f:94:c7:
41:20:fd:b0:21:53:44:1c:fe:dc:c4:a0:9d:a6:64:5b:cc:f2:
8c:d5:e6:f7:60:8b:af:40:40:ad:3a:eb:8e:6c:e4:b6:a7:75:
50:69:69:9f:73:bc:fc:38:70:6d:b8:b4:91:cb:41:c2:02:fc:
41:51:00:4c:ff:83:4b:35:19:48:74:04:55:21:9c:1e:30:5f:
99:d0:e7:84:ff:10:5a:2c:f8:46:7b:f9:1d:99:f0:fe:27:6d:
4c:a3:63:59:ef:e2:51:00:f5:01:ef:44:80:7e:c7:c0:18:51:
5c:53:a5:9d:37:62:64:c3:b4:0e:3f:99:92:2f:3f:8d:18:ba:
92:42:40:3b:a8:b1:da:ce:1b:b9:1e:fc:28:c1:02:02:2c:61:
38:4a:ac:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org