Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_98bz2_pJRe1kHgM4hX8wPdCE_E.roa
File: _98bz2_pJRe1kHgM4hX8wPdCE_E.roa (raw, json)
Hash identifier: EAbpsKq+XBbVGsuyfzSKf+HAjA8CfxOV2/xUvixxlYU=
Subject key identifier: FF:DF:1B:CF:6F:E9:25:17:B5:90:78:0C:E2:15:FC:C0:F7:42:13:F1
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01892BE213CD2468DCEC43740E066208DAFD
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_98bz2_pJRe1kHgM4hX8wPdCE_E.roa
Signing time: Thu 06 Jul 2023 15:46:23 +0000
ROA not before: Thu 06 Jul 2023 15:46:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 194.5.65.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
193.58.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 09:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2b:e2:13:cd:24:68:dc:ec:43:74:0e:06:62:08:da:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 6 15:46:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffdf1bcf6fe92517b590780ce215fcc0f74213f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:17:dc:c0:ea:c7:e2:4a:cc:58:28:e5:12:db:
6e:1b:a2:be:02:05:92:4e:22:72:a6:5f:08:0d:89:
61:4f:a0:c7:5b:ce:bc:04:c3:27:39:97:f8:cf:4f:
74:44:1a:21:c1:7d:81:05:72:c5:06:01:d1:34:8f:
b5:23:ec:24:07:68:90:48:05:a4:86:c8:4a:e9:c3:
75:9b:e1:f1:67:df:d2:31:80:46:a5:da:11:f5:e2:
f7:62:64:fd:52:f7:83:d9:58:39:a0:ef:56:93:d9:
8b:67:c1:10:28:27:92:5b:91:a5:b2:7c:cf:e5:59:
31:47:8f:e6:8a:d4:31:9e:75:29:d7:1f:c3:de:f8:
7d:d3:8a:31:49:57:23:6f:18:f1:58:d6:06:9a:66:
8f:84:7b:0b:35:13:59:5c:eb:4d:cb:de:12:41:e1:
a1:fc:7c:10:df:f1:c1:c0:67:c7:b8:6e:40:1f:33:
60:90:1a:2c:ed:8d:6f:7c:f5:6e:a0:d4:b4:51:75:
3e:08:b9:6f:2a:c5:3d:d9:3a:8a:18:5c:2d:60:60:
85:2a:91:79:85:73:11:30:3f:83:7a:c4:71:89:3f:
c9:48:e8:ff:fb:ed:0f:2b:2b:e1:a8:bc:d7:03:c1:
c2:71:e1:8c:f4:7d:89:4a:9b:fa:3a:b9:66:8c:ce:
ad:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DF:1B:CF:6F:E9:25:17:B5:90:78:0C:E2:15:FC:C0:F7:42:13:F1
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_98bz2_pJRe1kHgM4hX8wPdCE_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.75.0/24
185.210.232.0/24
185.218.101.0/24
193.58.145.0/24
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c0:9b:c1:23:12:1d:10:35:c4:e5:e1:14:79:bb:31:2c:e0:
12:a8:24:48:e3:8b:ce:1d:a1:ed:81:57:bb:ae:0f:62:4d:1d:
da:1f:fe:68:da:5c:bf:c8:b1:4e:f0:60:f2:e0:d2:5c:e1:6d:
d5:e0:f7:da:6a:a8:d5:37:95:c3:89:e2:f3:92:81:06:54:91:
46:af:be:f5:ed:88:89:ac:e5:96:29:bb:b4:a2:5c:f6:2b:7e:
41:ad:21:65:ab:53:e3:8b:35:c9:35:c8:88:79:84:dd:37:67:
ca:31:60:2f:37:c2:47:56:c0:db:08:7c:94:46:3a:a3:3d:3d:
b4:08:92:91:f4:3a:22:e4:c2:ca:6e:fb:1b:3c:7d:8a:ae:e7:
6a:5f:26:c0:10:1e:95:8c:51:4a:9e:5f:d4:85:99:fb:e9:a1:
a3:b8:18:ff:c3:e4:9a:02:d1:e5:8a:db:63:66:2d:b7:1a:a6:
08:a7:20:22:4a:23:75:d8:d2:3e:13:54:dc:aa:58:d1:24:26:
15:79:11:81:7a:9f:15:c4:5a:4d:9d:1c:a1:f4:01:b9:ee:33:
06:ca:2f:13:bf:61:c9:d9:ca:95:90:56:fb:11:dd:e5:84:2e:
a5:fe:e2:c5:bd:d3:e4:c1:6d:da:50:65:e9:90:a1:65:bc:d0:
22:51:d4:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org