Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YD6pFZDUpq_m5AevF58V2bF8SvE.roa
File: YD6pFZDUpq_m5AevF58V2bF8SvE.roa (raw, json)
Hash identifier: CJNSE+IQR1MjywDa2lQAKuXpoqsS7d3W9VpHTi4MKW8=
Subject key identifier: 60:3E:A9:15:90:D4:A6:AF:E6:E4:07:AF:17:9F:15:D9:B1:7C:4A:F1
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BD4A137F54268B6012E804CA8CFA300B6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YD6pFZDUpq_m5AevF58V2bF8SvE.roa
Signing time: Wed 15 Nov 2023 20:16:57 +0000
ROA not before: Wed 15 Nov 2023 20:16:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24576
IP address blocks: 185.223.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Nov 2023 23:22:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d4:a1:37:f5:42:68:b6:01:2e:80:4c:a8:cf:a3:00:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 15 20:16:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=603ea91590d4a6afe6e407af179f15d9b17c4af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e1:b2:49:64:2e:ad:21:1b:e5:7b:d0:e2:9a:
42:ff:5b:34:c0:34:24:fc:9f:9a:77:f9:23:1b:e9:
5a:f6:03:76:24:fe:9d:63:86:f0:27:5a:1a:22:29:
a0:04:9e:8f:f5:e0:ba:87:fa:08:90:39:fb:a5:6a:
b9:c0:89:a7:6c:88:ab:0b:ce:90:52:72:af:59:19:
b8:53:57:36:d0:4e:4e:9d:66:43:df:56:e7:a8:d4:
65:84:53:fe:dd:7c:62:d2:c2:e8:92:87:be:f0:a0:
c7:95:a5:20:6e:a1:7d:c2:b7:c1:46:16:5d:8a:e2:
5d:f9:72:2f:95:a4:81:de:d3:dd:72:75:b5:f7:6f:
5a:ec:5e:74:b7:7f:bb:87:83:ad:bc:91:11:b3:c0:
88:22:12:0e:cb:42:39:9f:9c:52:6f:c2:41:9f:0e:
7a:3c:7e:78:14:cd:d1:9d:b4:a8:50:a2:b3:d2:e4:
fa:33:15:f3:c0:fb:c9:89:a6:26:9e:b0:4a:c7:54:
f9:45:ad:37:fb:79:07:d2:70:5a:75:e0:7c:93:57:
1b:32:9c:65:30:a6:13:ce:d9:69:56:b7:94:3c:7b:
e2:41:7a:f7:d8:c3:7f:b1:a9:32:fe:08:a5:e0:77:
92:e4:f6:1d:5d:ab:eb:ab:d7:62:57:8b:69:31:16:
97:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:3E:A9:15:90:D4:A6:AF:E6:E4:07:AF:17:9F:15:D9:B1:7C:4A:F1
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YD6pFZDUpq_m5AevF58V2bF8SvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.82.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:a2:3c:2d:3c:c4:34:bd:bf:14:a2:e2:9d:73:b6:ca:f2:42:
66:6b:53:49:62:9e:42:13:ce:f1:b7:e5:e8:a7:f9:ed:33:50:
87:2b:0b:3f:71:55:c1:d1:1a:68:bf:53:25:ba:1e:65:c5:c8:
e4:8c:19:19:fb:d3:8b:ae:44:0a:2f:ee:fa:ef:ba:7a:40:01:
a8:88:0e:2e:92:44:35:74:f4:6b:0f:60:a5:99:db:4e:ff:a1:
79:ed:35:24:fe:8e:cc:a3:bf:39:98:78:eb:b3:2f:81:b2:92:
64:94:bd:ac:56:86:da:04:57:6d:c5:63:1e:a9:24:7a:31:9d:
ad:f4:08:ba:03:28:28:a0:e0:46:c7:7e:c8:12:85:4e:22:17:
af:6a:ed:09:09:8e:fe:42:d0:d9:6d:0a:f4:be:1c:84:dd:b3:
35:20:4e:22:ae:6d:0d:fc:e2:a3:6e:13:5b:0b:25:41:e7:8c:
30:ea:d3:e2:4d:53:55:5a:13:73:01:d2:3f:64:95:f5:0f:84:
79:2b:a6:fa:56:45:55:2c:1e:64:fa:a1:7c:b7:6a:09:55:87:
e2:22:0d:07:30:64:8a:25:da:00:cb:64:f6:5f:1f:41:f4:e8:
15:39:31:b5:32:bb:09:ba:07:c1:96:d2:e9:8d:c9:1f:a2:2c:
12:fd:c1:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org