Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cFe6LvoaM4mYHxWhKE9S-VdWdmk.roa
File: cFe6LvoaM4mYHxWhKE9S-VdWdmk.roa (raw, json)
Hash identifier: fJul5Va4whlsi6UwEzgJ92uk6DDZzalNSyNxDrcadpo=
Subject key identifier: 70:57:BA:2E:FA:1A:33:89:98:1F:15:A1:28:4F:52:F9:57:56:76:69
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018810974762030790CBED145D03533051A7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cFe6LvoaM4mYHxWhKE9S-VdWdmk.roa
Signing time: Fri 12 May 2023 15:32:09 +0000
ROA not before: Fri 12 May 2023 15:32:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60458
IP address blocks: 185.248.200.0/22 maxlen: 22
45.90.238.0/24 maxlen: 24
185.199.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:10:97:47:62:03:07:90:cb:ed:14:5d:03:53:30:51:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 12 15:32:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7057ba2efa1a3389981f15a1284f52f957567669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0c:08:d2:b0:68:e1:80:be:63:ee:d6:a8:28:
89:ba:5f:f5:d9:1e:40:df:14:15:f8:3b:4a:c0:f1:
ac:1d:28:40:2a:dd:c0:39:44:44:7a:aa:0a:69:10:
97:70:4b:77:9a:d4:4f:9d:e2:8b:9c:ac:36:cc:8c:
25:13:bc:46:c7:fc:50:b8:45:2e:6d:3e:22:82:fe:
b1:a3:5e:f3:84:10:5b:bb:b2:97:7d:12:9f:d4:d0:
71:bb:dc:0c:0b:8b:97:2d:9b:13:42:27:95:ba:4c:
83:4d:45:bd:9a:77:b4:b3:93:78:b7:95:88:fc:3d:
23:3f:76:e8:a9:00:a0:1a:52:cc:c4:82:e6:d2:6f:
d1:b6:94:37:dd:10:0c:27:cb:44:22:14:cd:bb:73:
ec:62:e3:6d:28:4d:a5:6c:77:29:e6:92:f3:05:48:
66:9b:c3:77:14:f6:36:7f:ae:f7:f0:12:15:a2:f4:
8b:50:4d:9a:de:a6:b4:25:b2:96:3e:dc:de:7f:7e:
93:03:1c:fa:38:c2:79:4b:d6:c3:e7:51:80:b0:c8:
18:be:83:06:ba:7b:a5:f8:22:b8:cb:df:23:e8:75:
e8:ff:02:b8:a9:40:13:e1:d8:93:75:09:51:18:2d:
dd:65:ee:6c:d6:3e:d1:0f:a6:ae:f7:b5:81:42:24:
f0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:57:BA:2E:FA:1A:33:89:98:1F:15:A1:28:4F:52:F9:57:56:76:69
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cFe6LvoaM4mYHxWhKE9S-VdWdmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.238.0/24
185.199.55.0/24
185.248.200.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:a0:5c:b0:f0:cb:4c:f5:c5:81:3d:45:eb:ef:03:7e:7c:d4:
50:52:fd:f9:b3:4c:64:dd:91:6b:4a:71:72:d3:f5:1c:83:19:
7f:8b:a6:a6:b0:75:0f:29:a1:dc:b9:a3:40:b3:7b:56:b2:0a:
34:a3:c7:f9:b1:14:6a:29:b5:c1:28:58:b5:fc:23:15:dd:97:
19:b1:35:4f:59:8f:6b:7d:8c:3d:c8:62:05:e6:c9:e3:7b:1c:
f9:95:97:1f:f7:fc:8f:9b:89:39:98:78:0c:51:af:b3:a3:d2:
5f:88:e0:2b:9a:a7:f1:b0:81:b9:1c:c7:f5:c9:2e:1c:01:f2:
01:92:f1:84:d3:7c:ec:9c:30:47:4a:15:0d:22:22:29:42:47:
70:74:19:47:62:b2:e6:86:ab:ad:b0:d4:ba:c9:b6:c3:f1:98:
44:3c:fe:d6:3c:ec:b4:b8:cd:1a:a2:13:0a:41:ae:ab:0d:1e:
b4:9d:a1:22:e6:e1:f1:42:b6:4d:74:cf:ac:2e:aa:5d:74:da:
8b:68:92:ee:59:6f:b7:70:1b:5f:4b:cf:1e:d3:bc:ba:10:1c:
41:6c:e6:aa:7c:18:19:bd:10:b0:fa:d6:fb:59:64:4f:f8:50:
4a:a7:d1:49:bc:38:e9:a7:4e:93:21:ba:6f:83:99:f8:0d:49:
91:9a:80:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org