Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ztqwa7WYb1-dF8jGp-Q7zojeVcg.roa
File: Ztqwa7WYb1-dF8jGp-Q7zojeVcg.roa (raw, json)
Hash identifier: W1TJM3BKie71Qqvf5SOh36ed2ylKxt5R4Itau2Qvbqk=
Subject key identifier: 66:DA:B0:6B:B5:98:6F:5F:9D:17:C8:C6:A7:E4:3B:CE:88:DE:55:C8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0190E00C45F0C68F4F2C32A4656C12AE2D18
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ztqwa7WYb1-dF8jGp-Q7zojeVcg.roa
Signing time: Tue 23 Jul 2024 14:43:39 +0000
ROA not before: Tue 23 Jul 2024 14:43:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211975
IP address blocks: 185.240.122.0/24 maxlen: 24
194.5.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 09:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e0:0c:45:f0:c6:8f:4f:2c:32:a4:65:6c:12:ae:2d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 23 14:43:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66dab06bb5986f5f9d17c8c6a7e43bce88de55c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:41:bb:e8:55:d2:0b:e2:41:18:e6:19:ff:e0:
0e:97:e8:94:72:af:64:a1:d1:2c:10:03:5a:2a:f2:
6a:21:7d:7f:f2:c2:de:2a:49:66:7b:7c:fc:eb:73:
e1:01:76:37:90:ae:1b:af:b1:ba:6c:c5:76:6a:54:
79:68:d6:84:f5:d4:74:70:41:cb:3e:37:db:69:eb:
1a:dd:eb:ac:e8:38:fa:25:94:7c:5a:40:f6:82:8d:
55:ef:b0:e2:44:7e:d8:8a:b2:22:01:73:2d:14:d6:
84:0c:ca:d6:f2:11:bb:77:a9:d1:1c:45:a4:c3:cb:
a4:b7:d1:02:19:85:68:56:ce:fc:e0:ea:b5:d0:36:
fc:d6:2f:52:f6:91:fe:eb:f7:0d:72:f3:64:2d:cb:
71:a5:63:d8:da:d9:f4:7f:14:75:c7:cf:58:7b:d3:
20:42:62:96:78:22:8b:74:a9:18:f9:4c:01:65:34:
9c:9a:18:c1:94:e5:e9:31:bb:fc:8f:c9:a9:70:00:
00:15:b6:66:56:09:cc:74:cc:aa:96:ec:29:63:d3:
fa:31:5c:56:15:ac:83:f2:93:9f:84:b0:a2:6c:45:
8d:a3:e9:5e:43:84:02:de:6c:4d:eb:cf:92:a8:34:
f1:bd:7c:6b:08:99:c2:cb:51:0b:20:13:db:f4:59:
66:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:DA:B0:6B:B5:98:6F:5F:9D:17:C8:C6:A7:E4:3B:CE:88:DE:55:C8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ztqwa7WYb1-dF8jGp-Q7zojeVcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
194.5.64.0/24
Signature Algorithm: sha256WithRSAEncryption
46:c0:2d:f2:2c:fc:e2:14:ad:eb:53:99:77:09:04:d5:72:ea:
72:b9:fd:60:9c:72:02:1a:a2:17:ae:50:a2:bb:ae:85:ce:74:
68:9b:14:8a:fd:a7:06:e1:6f:53:57:e5:0c:eb:01:fa:e5:bd:
6f:a5:51:13:8a:a6:b0:3d:60:d9:58:3d:c3:b9:0a:3d:d1:d0:
7e:7e:82:99:5e:94:08:16:15:f7:6a:64:7e:25:5a:88:00:93:
c8:e9:6f:56:ba:ce:f8:88:8f:bc:47:26:39:5b:a9:cb:59:86:
f6:9e:67:14:2e:f1:d1:18:4f:e3:16:85:34:9d:c6:1d:4e:95:
04:ff:9c:f8:d0:1b:7c:2f:77:e0:10:3e:4e:1e:f3:e6:c7:4d:
4c:c6:b1:4f:fa:09:e3:1d:b7:fe:87:70:e1:bb:ce:26:99:e8:
7a:04:76:d4:ab:50:44:ef:bf:9b:63:d6:e4:d3:02:75:10:35:
1f:ee:a5:ef:b3:ef:c9:c0:b4:3f:ac:2c:47:d4:2c:a7:e4:3c:
da:a5:cb:f4:6f:1a:47:1e:91:6a:74:e9:b7:b5:e3:80:03:c9:
fd:31:ba:ad:33:2f:de:2f:de:0d:67:76:66:bd:5a:d3:ee:e4:
6d:68:81:2e:0e:4e:b4:d3:33:8d:37:97:4c:0b:93:d6:60:33:
4c:47:e1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 12:11:37 2024 by rpki-client on console-fra.rpki-client.org