Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bPCOCp3Xs4aDcyBunT3QVgUx77U.roa
File: bPCOCp3Xs4aDcyBunT3QVgUx77U.roa (raw, json)
Hash identifier: Z7zY9H5ggmC8wXczJ8RE/mKYVDJ6YDBeV+mfW2zxbzk=
Subject key identifier: 6C:F0:8E:0A:9D:D7:B3:86:83:73:20:6E:9D:3D:D0:56:05:31:EF:B5
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018981F162413ECBA97B31D6BFA51007D605
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bPCOCp3Xs4aDcyBunT3QVgUx77U.roa
Signing time: Sun 23 Jul 2023 08:50:27 +0000
ROA not before: Sun 23 Jul 2023 08:50:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197842
IP address blocks: 185.223.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 15:35:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:81:f1:62:41:3e:cb:a9:7b:31:d6:bf:a5:10:07:d6:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 23 08:50:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cf08e0a9dd7b3868373206e9d3dd0560531efb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a4:88:44:6b:64:63:0a:18:eb:da:73:04:42:
ec:6e:bd:5c:a5:1c:b5:20:e0:f5:e2:0d:1a:7b:17:
bb:4b:cf:2e:14:f5:60:1e:75:ce:82:16:bb:6c:fa:
95:13:5c:c7:2f:70:bd:ad:c7:2d:89:78:56:61:b0:
14:60:a8:e8:23:b1:5e:0c:27:f0:f1:ce:fd:88:d0:
70:57:6d:06:10:d6:54:4f:14:19:2f:8b:ca:a1:a4:
8b:f1:72:69:74:14:ba:e0:03:ba:37:c4:aa:fe:6d:
92:ca:2c:42:00:29:a0:cc:6c:e0:46:23:3c:ff:0b:
89:73:45:e0:a5:32:d3:cf:a9:2d:63:3e:aa:23:b3:
73:b3:cf:d1:eb:9d:01:b2:6d:3b:2d:69:aa:28:e2:
41:d5:0b:21:21:3c:f0:cf:a8:c8:bb:69:bc:d2:3e:
16:5b:83:38:a6:30:41:0f:00:79:cc:2b:07:a1:0b:
b0:90:04:fa:b5:8d:c5:8b:a7:3a:73:f2:ff:f7:b4:
05:05:78:91:02:59:37:60:86:fe:6b:60:b9:1d:be:
97:9c:eb:93:42:1c:b3:68:84:ee:94:be:78:6c:b4:
d5:b9:82:57:71:30:05:c2:b4:49:18:e5:6a:09:1c:
98:18:f2:ca:08:c3:8f:e0:59:7f:4b:10:10:2a:09:
53:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F0:8E:0A:9D:D7:B3:86:83:73:20:6E:9D:3D:D0:56:05:31:EF:B5
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/bPCOCp3Xs4aDcyBunT3QVgUx77U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.78.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:66:7d:d3:48:eb:6c:a5:ee:de:32:01:2e:96:cf:b8:5f:3c:
5f:f0:4e:7e:7c:13:0c:88:dd:ba:78:04:35:e2:25:3e:7a:ca:
6d:2a:8e:19:a6:27:ef:3a:44:42:c2:76:f8:06:69:b4:8e:58:
e3:15:74:22:f0:4f:98:e9:06:f1:11:e7:90:7d:93:ed:a2:40:
4e:33:af:4d:c1:72:e2:c1:d6:f7:9e:df:2e:b2:3d:ed:51:71:
04:55:7a:25:ea:90:28:63:06:b1:e0:3a:4a:9e:5e:66:f7:7c:
58:e4:fb:b6:8e:2f:cd:c9:87:7e:17:5f:ad:a3:bc:c2:51:3d:
56:ee:16:19:12:ad:3c:05:f8:8c:9c:43:a3:d4:1b:5b:e1:19:
31:1e:8a:ec:c5:08:13:22:95:7e:74:86:2c:0e:cd:ac:58:c0:
a9:3c:a0:04:eb:c2:33:e1:18:f8:36:ea:64:3e:67:e0:aa:53:
ed:e2:ca:80:ec:a3:3f:9a:5e:c8:e4:00:c4:43:c4:5b:91:25:
03:d0:88:4c:f7:ca:e5:eb:7d:43:6b:91:9f:5b:6a:59:33:18:
76:98:ea:bb:9b:c2:d0:de:14:5e:9e:b0:93:1f:30:05:a6:86:
e5:34:b2:91:f3:9d:62:53:80:40:9d:9c:c4:d6:e4:b9:6e:a0:
68:b6:c9:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org