Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/W2TdiZ-yY9Ads1OEcFRPJaLm2tI.roa
File: W2TdiZ-yY9Ads1OEcFRPJaLm2tI.roa (raw, json)
Hash identifier: 8piiUGVDFIuHI+gZ6WLTEqal0/EpiGQTnSHKI7vwFRo=
Subject key identifier: 5B:64:DD:89:9F:B2:63:D0:1D:B3:53:84:70:54:4F:25:A2:E6:DA:D2
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01896336A426C1C49888049737BD9E9DC800
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/W2TdiZ-yY9Ads1OEcFRPJaLm2tI.roa
Signing time: Mon 17 Jul 2023 09:37:52 +0000
ROA not before: Mon 17 Jul 2023 09:37:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.126.82.0/24 maxlen: 24
176.125.248.0/24 maxlen: 24
185.194.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Sep 2023 10:20:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:36:a4:26:c1:c4:98:88:04:97:37:bd:9e:9d:c8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 17 09:37:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b64dd899fb263d01db3538470544f25a2e6dad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:df:39:40:2f:1b:1b:23:d8:c6:ef:cf:c7:83:
2b:6b:98:93:3a:00:9e:f4:b3:7f:f3:e1:7e:89:71:
e0:75:9f:8f:2d:d7:97:63:45:9d:66:bd:3f:d1:ef:
da:fe:49:4a:02:7c:b0:54:dc:ed:42:57:7a:3e:a2:
79:72:dc:0b:bb:ed:cd:70:32:74:34:9c:1a:31:3b:
31:1f:28:01:ed:9a:04:85:c3:f2:f2:12:c7:6a:e8:
a9:1f:72:64:c6:bb:78:11:f4:1d:35:1b:7c:2d:ac:
f8:06:b4:d6:c2:5a:a6:89:af:15:25:7a:e4:d8:ea:
60:5b:a0:11:88:78:0e:68:33:66:e4:cb:97:42:d4:
6d:3d:14:f0:6d:08:c2:b0:75:75:03:95:01:eb:e8:
fe:10:bd:37:3d:b0:9e:4f:05:3b:62:29:d1:5b:ef:
1d:11:b5:e1:a3:c7:79:2c:c9:a3:df:4e:83:06:23:
5f:30:36:76:22:2c:20:93:13:f0:87:33:7e:eb:47:
68:9d:15:e1:e0:00:0e:f8:83:62:11:d4:51:99:82:
ad:03:8d:34:04:d8:c6:2a:d4:64:6e:90:22:6f:59:
9e:42:ce:04:6e:56:9b:7b:53:65:9d:b0:13:42:3e:
d5:59:ac:36:3e:b8:bb:c2:8b:45:fc:d5:f5:6a:07:
3e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:64:DD:89:9F:B2:63:D0:1D:B3:53:84:70:54:4F:25:A2:E6:DA:D2
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/W2TdiZ-yY9Ads1OEcFRPJaLm2tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.248.0/24
185.126.82.0/24
185.194.176.0/24
Signature Algorithm: sha256WithRSAEncryption
53:05:a9:cb:65:26:fe:0a:7b:50:3e:6b:fa:ea:d9:27:6f:31:
d4:01:b8:dd:5b:f7:aa:59:f0:06:ea:d1:07:b2:b2:57:17:a3:
35:ff:d4:5d:ba:5c:d8:5b:15:47:03:64:8b:8e:21:11:9c:cb:
b3:d1:57:3d:12:f8:be:f1:64:7f:93:09:ba:87:88:ad:f6:84:
94:9a:cb:a3:bd:0b:9a:2e:c6:dc:17:a4:8f:c7:34:16:5a:bd:
4d:68:0f:ae:fd:e4:e5:0f:eb:cc:61:40:12:d5:0e:06:f4:44:
99:ef:ba:c6:e6:4d:51:1b:32:1d:ea:df:df:cc:05:b0:2f:10:
16:71:a8:c2:8f:8b:61:fc:c0:c5:26:36:16:2b:55:db:82:72:
0f:e5:9e:59:4d:52:4f:74:b5:ce:eb:25:42:dd:4e:be:c1:3e:
bf:b7:e9:29:6e:66:28:7c:e4:4a:b3:dc:09:1e:7e:36:69:90:
81:35:eb:9a:42:73:b4:17:39:08:38:75:97:6a:28:f2:78:8b:
b0:78:2d:1b:10:49:c0:43:0e:d1:e1:19:31:c9:05:42:b7:35:
b4:b2:85:54:c0:8a:59:64:60:31:68:4c:25:e5:51:c8:d5:e3:
19:4a:7f:0b:c3:20:99:c5:1e:af:cb:06:ca:08:1c:a0:75:f8:
46:42:e3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org