Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aLdmKTPvNnmQAr8tjhQsOvq8Ndw.roa
File: aLdmKTPvNnmQAr8tjhQsOvq8Ndw.roa (raw, json)
Hash identifier: VS2ZHUlhZawjXNetBdMYq1a7913tYTGDHP6PNn2T8aQ=
Subject key identifier: 68:B7:66:29:33:EF:36:79:90:02:BF:2D:8E:14:2C:3A:FA:BC:35:DC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0187EBC6C772D583AB70024E0A53D99B07C7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aLdmKTPvNnmQAr8tjhQsOvq8Ndw.roa
Signing time: Fri 05 May 2023 11:58:05 +0000
ROA not before: Fri 05 May 2023 11:58:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44592
IP address blocks: 185.225.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Jun 2023 17:13:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:c6:c7:72:d5:83:ab:70:02:4e:0a:53:d9:9b:07:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 5 11:58:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68b7662933ef36799002bf2d8e142c3afabc35dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:40:a1:a2:bb:ea:e8:28:54:71:17:5a:02:d6:
3a:34:af:31:a6:00:6b:9e:b6:b2:bd:08:5a:54:6f:
e8:58:01:7e:38:1d:7a:c5:ba:c8:71:8d:8c:dc:15:
42:87:f1:52:ef:02:45:4f:f4:32:10:05:92:37:1a:
be:0e:c9:0e:cd:66:38:1c:64:aa:b6:f0:f1:39:18:
7b:9a:0b:bb:25:b5:37:a6:4f:3f:05:96:41:bc:fc:
79:7a:23:57:cb:c1:36:43:83:a0:a3:d1:4f:79:77:
7e:7b:33:47:8f:5f:c0:ae:b9:18:16:8d:c9:e1:41:
ff:7c:50:da:4e:c1:cc:da:45:8b:1d:fc:88:61:93:
ab:d5:cd:d3:dd:6a:9e:6d:6c:a4:af:4f:13:43:12:
76:8d:7e:fa:aa:48:3e:29:f7:41:b4:d8:01:28:02:
5a:53:5d:f2:5b:12:0e:63:ca:d1:54:33:7d:9e:1a:
24:fa:45:81:f6:01:49:a4:e0:35:93:28:07:e5:a7:
10:27:eb:83:7f:6a:b9:eb:2d:b8:56:2a:ac:d0:dd:
51:64:88:28:45:59:b4:70:af:ca:d6:b4:4a:39:9d:
37:58:46:ac:95:ab:27:4b:41:42:c8:8a:3f:a5:33:
4c:6b:8f:d4:ad:57:8e:1c:c8:ed:4d:01:e8:cd:05:
0e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B7:66:29:33:EF:36:79:90:02:BF:2D:8E:14:2C:3A:FA:BC:35:DC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aLdmKTPvNnmQAr8tjhQsOvq8Ndw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.22.0/24
Signature Algorithm: sha256WithRSAEncryption
22:74:c3:c0:5c:b8:8d:8c:70:56:e8:19:c4:ae:b4:ca:88:12:
f2:f4:2b:c1:b1:db:61:de:67:1a:0e:ae:d7:b5:1b:7a:3c:3f:
29:f0:84:fa:c8:05:35:66:44:02:99:04:5d:8e:ba:02:12:8f:
5b:75:eb:5a:1f:21:df:d4:58:1d:af:08:80:fe:f3:ea:28:2a:
5f:7f:7c:83:52:7e:64:82:7f:1f:70:4c:63:0e:77:63:f7:de:
01:d5:4e:3e:dc:45:ab:42:71:58:09:5b:83:52:78:58:d8:6a:
46:d0:6b:02:e8:47:03:f1:d3:12:71:1c:d5:1e:89:ba:7f:8a:
72:cc:b8:99:c8:c5:15:75:01:49:18:98:69:f3:54:dc:89:f7:
86:67:69:3a:82:b9:14:c9:03:0d:a7:5f:93:b9:44:89:ba:0b:
67:62:ec:78:ef:e0:1a:dc:ee:c8:fc:8e:8b:a4:70:db:98:e9:
a2:ed:02:62:8b:75:12:b5:5f:60:ee:9d:20:ba:0e:b9:53:e9:
cb:0a:35:1b:87:b6:a0:cf:48:a6:f8:63:f3:01:d5:91:6c:05:
0e:4b:1c:74:7c:fe:c2:15:da:d0:e4:e9:70:6d:86:9d:98:5f:
55:88:6b:b8:fe:50:f9:81:d7:ab:4b:fc:50:a1:9e:de:ab:ca:
e3:5a:dc:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org