Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bN41ird-pflgeyZL4u4mcNcgVLc.roa
File: bN41ird-pflgeyZL4u4mcNcgVLc.roa (raw, json)
Hash identifier: ju44JHKYQOhWRKjqzYbnNLOrcgXwgq6GWAVg3P5m3DI=
Subject key identifier: 6C:DE:35:8A:B7:7E:A5:F9:60:7B:26:4B:E2:EE:26:70:D7:20:54:B7
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018ABC66066CAA86238716AE58F3C2F063AE
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bN41ird-pflgeyZL4u4mcNcgVLc.roa
Signing time: Fri 22 Sep 2023 10:18:37 +0000
ROA not before: Fri 22 Sep 2023 10:18:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135073
IP address blocks: 185.210.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bc:66:06:6c:aa:86:23:87:16:ae:58:f3:c2:f0:63:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 22 10:18:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cde358ab77ea5f9607b264be2ee2670d72054b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9d:8a:c6:31:6c:ec:5b:b1:32:a3:f5:e5:03:
d5:0e:e4:ac:91:bb:9a:e3:55:74:7f:39:ed:68:24:
65:60:59:08:d4:a9:25:cf:bc:3f:0b:7c:6a:6a:14:
f0:00:90:59:48:2b:4c:e3:c3:e6:d6:83:1b:48:c7:
6d:60:8d:19:e9:4d:6c:b1:4c:50:35:5f:0f:7f:82:
70:3a:fb:8e:58:58:0f:fd:a3:8f:9d:65:e3:a7:8c:
7d:65:72:c6:1b:bb:66:c6:32:bd:03:4b:7c:33:f4:
6e:f0:71:fb:44:77:33:42:1f:de:06:b1:31:45:21:
cd:c4:3a:2a:5f:31:9a:dd:9f:b2:6a:ef:6f:e1:81:
57:cc:af:a1:bf:f2:fe:62:55:00:71:42:5a:0a:29:
68:d1:ad:cd:29:ca:39:5e:4f:39:fc:3a:12:0d:d0:
51:91:df:5d:0d:62:1e:83:c4:04:c9:6c:06:2f:11:
6b:fe:9d:be:70:1d:9e:22:33:54:3d:b4:de:f2:d2:
5f:55:89:6f:80:b9:13:a9:3a:76:e0:d3:6e:c5:e2:
4f:2f:e1:87:fc:69:31:37:c9:67:bf:4d:44:34:42:
0f:8d:3d:8d:3a:b5:6d:fe:7c:13:5e:6f:d0:15:5f:
13:6c:95:66:36:23:28:49:b4:02:f7:92:26:64:96:
6f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DE:35:8A:B7:7E:A5:F9:60:7B:26:4B:E2:EE:26:70:D7:20:54:B7
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bN41ird-pflgeyZL4u4mcNcgVLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.233.0/24
Signature Algorithm: sha256WithRSAEncryption
95:b6:17:16:3d:d4:b1:0f:80:52:ed:ac:40:dc:b2:43:2e:67:
fc:5b:9e:26:6b:ae:67:15:1b:19:78:f4:85:a3:81:59:77:11:
eb:72:31:da:7d:60:a2:a9:59:b9:30:63:da:b0:a3:d0:bd:46:
e6:a7:2c:39:db:cd:b8:27:b1:3b:01:fb:9e:15:57:77:71:44:
3d:0b:4d:7c:53:e3:53:71:65:43:73:21:51:2b:a5:a8:d4:0d:
4e:19:d0:fe:1d:c7:4f:b7:01:64:b2:0e:f7:5c:6f:56:86:90:
54:38:18:b6:24:89:c1:6f:7a:88:37:4d:9c:5d:48:25:33:61:
f3:16:a4:01:25:14:67:6d:c2:68:d5:df:ab:03:71:83:58:fc:
80:7a:27:30:a5:8c:ad:19:0b:51:78:ba:05:8a:79:78:d3:5b:
d9:11:f0:89:e1:d2:96:3c:3d:2a:fa:e5:a2:f1:84:93:5c:f8:
c7:ab:dd:5b:6a:05:58:5f:0b:8d:fc:91:1d:d8:51:f4:20:8f:
f4:fc:83:2c:c0:f0:d8:ff:18:6d:f3:cd:31:8e:7d:56:91:84:
f7:e6:f2:72:7b:75:5b:65:44:52:4a:a0:dc:64:80:ee:d9:5b:
4a:6d:80:0f:8f:ba:be:7a:de:ed:de:9e:e2:95:13:6f:df:9d:
a7:88:db:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org