Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/apciljcCym2G8bGSfaVY0JPE-Ws.roa
File: apciljcCym2G8bGSfaVY0JPE-Ws.roa (raw, json)
Hash identifier: qz7TyscVBIutG6m+DDfNBNsN0sJM6rDwFHOWNSB558Q=
Subject key identifier: 6A:97:22:96:37:02:CA:6D:86:F1:B1:92:7D:A5:58:D0:93:C4:F9:6B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018722F94E0E8F4FAE21D0F6725677C4FD9A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/apciljcCym2G8bGSfaVY0JPE-Ws.roa
Signing time: Mon 27 Mar 2023 12:09:36 +0000
ROA not before: Mon 27 Mar 2023 12:09:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 09:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:22:f9:4e:0e:8f:4f:ae:21:d0:f6:72:56:77:c4:fd:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 27 12:09:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a9722963702ca6d86f1b1927da558d093c4f96b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:38:42:cb:51:23:32:cd:12:da:16:21:8e:99:
76:a6:78:d5:0e:8a:94:f9:bc:b6:d4:e2:bb:89:0d:
d1:0f:ab:a0:cf:1d:9e:b9:94:d4:e8:c6:b3:0f:76:
27:be:ea:92:85:87:35:a5:4d:8c:7c:dc:b2:50:f9:
4b:14:5e:64:cd:e1:d7:21:a8:e4:b9:36:e5:c1:74:
a6:3f:ff:1e:bf:85:f4:ef:af:4a:1a:e3:d4:7e:46:
9d:4c:1d:d7:3e:a0:0b:95:70:cb:33:99:74:a5:4e:
0c:b2:09:29:35:66:bc:b4:8c:f3:d8:d7:79:fd:8a:
b9:99:e8:5b:d5:bb:d3:85:94:39:69:3b:16:65:63:
49:a2:0a:e3:b1:e3:23:68:72:33:66:ad:86:0c:13:
b8:49:aa:fe:ec:6b:9c:c2:05:13:8e:22:50:af:62:
8f:43:aa:1b:50:61:4a:3f:59:20:60:98:17:fe:78:
99:76:4b:5c:f5:bc:1d:07:6b:12:2c:0b:50:3c:61:
d3:61:fe:4c:ee:d0:47:0c:d1:4e:bd:a8:9e:95:90:
f2:4e:17:f7:99:df:67:12:a8:5e:10:91:c4:27:8c:
84:26:60:61:b7:1f:fd:0e:25:6a:d9:7f:74:16:ff:
60:fe:98:93:8f:f5:b8:b6:ab:dc:81:e7:5e:a7:f3:
9e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:97:22:96:37:02:CA:6D:86:F1:B1:92:7D:A5:58:D0:93:C4:F9:6B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/apciljcCym2G8bGSfaVY0JPE-Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
95:ba:62:cb:a7:9e:0c:6b:e0:e5:ef:57:23:63:b9:ef:f4:78:
7d:1b:59:3c:12:07:b8:63:04:1e:91:92:1c:3e:8a:2d:e5:28:
19:21:fa:cc:81:ab:c8:66:13:3f:0f:fe:69:e7:3a:55:d9:94:
f4:5e:8f:00:6d:2f:0a:ef:e9:3f:96:86:54:f9:98:5e:f4:e4:
46:8c:77:35:fb:56:e3:83:35:2d:ac:f6:10:56:e3:2c:ab:a2:
23:09:62:26:dd:3e:05:55:2d:bb:75:13:f8:9e:06:23:87:69:
ee:1c:b4:d0:fc:c9:6a:e4:a2:b7:ee:49:75:59:a0:08:f4:88:
7c:73:da:34:fb:2a:ae:19:ae:e6:64:13:6f:69:c4:18:7b:30:
09:ca:94:5f:48:bc:07:82:3a:bf:25:d0:8b:86:c3:05:b7:17:
9a:24:19:02:d6:51:0a:e4:f3:2d:8d:ee:f7:40:11:0a:ee:92:
80:16:85:f3:27:93:9a:69:02:e9:73:f8:d5:1e:ba:02:9d:f4:
1b:3e:8e:c9:5a:e2:85:39:da:ea:2b:05:73:04:98:c4:a2:90:
35:9c:eb:3f:86:ef:09:0b:86:3a:8b:5d:66:8f:95:df:6d:96:
e3:e3:a0:97:41:d9:3b:84:7b:d5:03:ba:ea:34:36:59:4b:7c:
e3:f5:bf:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org