Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/T-ZS51Ocxo6OEbQRpJYWz0MJ5BI.roa
File: T-ZS51Ocxo6OEbQRpJYWz0MJ5BI.roa (raw, json)
Hash identifier: LpV0si0hqTIQFCkdeqjhqHi0EiNrGqzLJLDhPetFOOE=
Subject key identifier: 4F:E6:52:E7:53:9C:C6:8E:8E:11:B4:11:A4:96:16:CF:43:09:E4:12
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AE7A5D8076E067C53D8A37A06C2090B59
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/T-ZS51Ocxo6OEbQRpJYWz0MJ5BI.roa
Signing time: Sat 30 Sep 2023 19:52:00 +0000
ROA not before: Sat 30 Sep 2023 19:52:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 185.246.114.0/24 maxlen: 24
185.223.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 10:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e7:a5:d8:07:6e:06:7c:53:d8:a3:7a:06:c2:09:0b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 30 19:52:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4fe652e7539cc68e8e11b411a49616cf4309e412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:67:5c:2a:fe:77:f1:7d:43:be:cc:04:41:6b:
ba:7c:06:af:79:ba:82:b7:fc:5c:27:15:b7:f7:7f:
f6:13:c1:ae:09:26:5d:30:ae:bd:41:5a:b2:87:06:
85:91:d4:dd:40:e3:94:79:9b:b0:a5:87:7f:69:88:
8a:43:45:cc:00:57:ab:c4:b4:87:dc:b0:c8:a0:32:
1c:74:d7:ef:86:c9:13:a9:29:53:c8:67:ef:ba:a1:
12:af:13:aa:c1:4a:31:b4:48:63:cc:e7:5c:29:bd:
1c:81:1e:3d:9c:75:0d:2d:1c:6f:00:50:4b:a3:d6:
d7:5a:86:65:f9:12:3d:8c:ad:b2:ec:ae:ab:31:db:
5e:f6:6a:80:fd:2d:d1:15:1a:08:71:67:fc:0c:1d:
b9:fa:e3:23:4e:cc:7b:89:9e:00:c2:ed:bb:35:36:
05:17:05:9a:99:67:8c:66:cc:47:34:2e:19:0b:01:
da:33:d2:38:f7:4b:38:6f:2d:2e:1d:59:10:f7:77:
92:3e:85:09:d0:4e:ee:25:4e:de:e2:6f:be:08:19:
58:3f:ed:13:30:c8:ab:cf:59:f2:87:cc:b2:2a:d9:
4f:ea:45:18:2d:86:1e:93:85:62:3b:31:7f:9d:c1:
29:86:35:1e:fd:a5:73:50:d9:e5:63:2d:a6:0a:ce:
9a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:E6:52:E7:53:9C:C6:8E:8E:11:B4:11:A4:96:16:CF:43:09:E4:12
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/T-ZS51Ocxo6OEbQRpJYWz0MJ5BI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.79.0/24
185.246.114.0/24
Signature Algorithm: sha256WithRSAEncryption
90:e6:55:f3:ff:9f:d0:2c:54:4a:f5:0d:15:45:8c:5c:6b:bc:
f2:84:30:74:e9:b4:7c:2d:58:cd:b5:66:a0:ee:c9:36:b3:5c:
d0:2e:39:0d:91:5e:e4:a6:20:1a:e3:0e:27:0e:46:17:73:a8:
04:32:8b:3a:d0:09:42:d4:6d:56:3b:78:27:c9:d9:3a:f0:7f:
39:1f:c1:cb:a6:c5:50:6d:01:7d:3d:3c:bf:b5:10:e2:5c:55:
da:6d:93:2e:af:cc:bf:cc:77:2d:24:91:20:f5:7d:7b:9f:1a:
6e:da:5e:b3:ce:ec:bc:bc:96:8b:70:55:ba:39:58:07:b6:ff:
4a:4e:e3:d2:d4:85:77:3b:e8:46:53:31:27:57:90:80:d2:85:
5b:40:37:8a:44:d1:8c:ea:01:32:5c:9b:65:66:cc:0d:a6:69:
1e:31:a6:07:50:0c:48:90:5a:99:b0:c3:cb:03:88:e7:73:cc:
2d:5a:ca:cd:04:89:00:3a:07:35:5b:f9:7d:41:db:b9:d7:4c:
14:a3:41:cb:fd:5a:fc:68:9f:d7:b8:c2:0f:73:46:59:3e:4e:
91:69:80:2c:1d:e1:42:25:1a:e8:db:60:08:b8:c4:bd:f2:71:
ea:6c:42:86:d1:af:e3:be:8c:64:fc:42:fb:b4:45:5d:c8:33:
8e:83:31:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org