Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SjHtKLlleGHjxBkdtfTGJ62jG9Q.roa
File: SjHtKLlleGHjxBkdtfTGJ62jG9Q.roa (raw, json)
Hash identifier: DXfQMw4Xbd0OoYMpG3jIbmk789tCYkw2VXv1UpomBjw=
Subject key identifier: 4A:31:ED:28:B9:65:78:61:E3:C4:19:1D:B5:F4:C6:27:AD:A3:1B:D4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01866FD640ED8187FE09C1FBD3DFCD69BDCC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SjHtKLlleGHjxBkdtfTGJ62jG9Q.roa
Signing time: Mon 20 Feb 2023 17:19:17 +0000
ROA not before: Mon 20 Feb 2023 17:19:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.218.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 15:45:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6f:d6:40:ed:81:87:fe:09:c1:fb:d3:df:cd:69:bd:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 20 17:19:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a31ed28b9657861e3c4191db5f4c627ada31bd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fd:26:68:4c:3f:7b:a8:b5:4d:47:59:d2:2a:
c3:55:d4:ab:f6:23:e4:5e:40:dd:c5:de:1f:9a:b6:
c6:bb:36:3f:12:15:a2:df:8c:a4:f7:98:f7:e4:93:
32:59:da:e6:07:8b:21:ed:fa:82:31:79:9b:19:9b:
93:97:44:33:cc:71:63:8f:31:d8:ac:72:70:e3:f7:
2b:b3:73:74:d8:1f:40:69:ac:5d:81:d9:a4:17:28:
49:32:fb:eb:9f:f0:bf:be:80:bc:2e:44:73:84:19:
ee:a2:42:e5:17:6b:a5:4d:23:61:b5:78:97:b8:95:
df:55:2e:0c:9a:14:43:06:67:25:0d:87:2c:fd:70:
16:45:32:4a:e8:6e:9a:23:2f:8f:6e:ad:0a:bf:2b:
b7:6b:20:a3:61:bb:36:74:a0:33:65:19:03:53:d6:
2f:3f:88:fe:26:3f:99:62:73:6a:dd:e9:54:5a:d5:
97:fe:a1:92:de:28:a8:be:ed:6b:ce:23:da:f0:10:
5c:af:a0:f7:69:9c:70:c0:73:03:52:60:09:12:3a:
e8:6c:b6:1f:e2:e6:bc:23:6b:ce:52:c8:98:83:d7:
a5:29:21:db:6a:fc:f9:22:e3:24:f6:59:34:38:83:
fa:ce:6a:7f:f9:fd:34:d2:64:76:3d:96:ec:78:ee:
24:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:31:ED:28:B9:65:78:61:E3:C4:19:1D:B5:F4:C6:27:AD:A3:1B:D4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SjHtKLlleGHjxBkdtfTGJ62jG9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.20.0/24
Signature Algorithm: sha256WithRSAEncryption
71:e9:6e:1f:21:4c:34:43:e6:60:7d:c5:d9:5e:89:77:4b:4e:
55:b0:db:3f:b1:57:ce:06:9d:f1:69:97:b3:2d:68:45:4a:72:
2a:09:ec:3b:e6:20:de:8e:64:dd:88:ed:e0:aa:40:d8:3f:32:
6a:70:75:e0:89:e2:66:77:74:f4:85:95:75:b0:9d:f9:f7:9c:
f1:95:fd:86:d7:cc:a4:f1:55:81:48:c9:df:79:c2:08:d1:d4:
07:c7:d2:d1:e8:4a:31:17:f6:5d:f3:3b:50:7a:49:f3:9e:44:
8b:5f:8e:54:56:23:00:02:bf:27:b1:19:68:6e:0c:80:43:d3:
72:10:07:83:32:f2:94:48:d4:4a:82:49:01:2f:c2:66:b6:f2:
3b:09:a3:18:80:ab:3c:c5:17:34:07:7b:01:1e:c5:af:24:68:
95:ae:29:37:86:f0:a7:d9:bc:4e:2e:eb:9a:52:9e:da:ae:b8:
20:37:13:99:02:25:24:4d:80:a8:a0:6a:71:ac:d1:12:2d:d0:
5f:4f:ce:5b:06:89:7c:b4:19:4a:f7:4b:e3:f2:b0:80:2a:c7:
81:c1:2f:6b:d5:6c:0f:1e:e1:8e:52:ac:fd:52:03:f2:01:c5:
4e:3e:04:25:30:e9:5f:9c:9a:ba:2b:8f:d5:67:19:f6:30:d8:
c4:4a:0d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org