Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cX3c_sL-KgklGBvUr5zIj5KRzoc.roa
File: cX3c_sL-KgklGBvUr5zIj5KRzoc.roa (raw, json)
Hash identifier: 6/iuOGX9m2AVGLZGvbtxVKF1fosKh63WvXIkmPlsiJo=
Subject key identifier: 71:7D:DC:FE:C2:FE:2A:09:25:18:1B:D4:AF:9C:C8:8F:92:91:CE:87
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B3CF31A05DF2C81C8B592B379988772DA
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cX3c_sL-KgklGBvUr5zIj5KRzoc.roa
Signing time: Tue 17 Oct 2023 09:24:06 +0000
ROA not before: Tue 17 Oct 2023 09:24:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216159
IP address blocks: 185.209.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3c:f3:1a:05:df:2c:81:c8:b5:92:b3:79:98:87:72:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 17 09:24:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=717ddcfec2fe2a0925181bd4af9cc88f9291ce87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:99:35:a2:4d:7f:99:a4:42:8f:51:6e:1c:68:
59:1f:ad:f2:31:50:03:f4:0c:33:15:9c:d3:8e:f3:
35:0c:9b:07:27:aa:45:7e:f5:95:66:05:d3:19:4c:
43:c4:9a:f1:80:e5:cc:02:da:69:59:cc:b4:04:fe:
38:26:28:ca:14:77:93:f7:1c:fa:62:d7:c5:58:2c:
ec:04:ef:0c:e3:47:92:16:92:3c:df:5c:59:0f:90:
62:8d:d0:d7:89:c5:2b:5b:ee:a2:ff:cc:f5:e4:b8:
ce:e3:df:86:21:db:1d:26:99:2d:3b:c1:b2:8e:29:
09:83:5d:1c:c2:56:1d:d4:cf:00:c1:de:d4:3a:f1:
a7:16:69:a9:15:38:d4:8b:70:b3:8d:1d:58:11:79:
b4:22:d6:33:e5:35:bd:52:5d:f5:3a:cc:18:44:45:
12:56:a3:bd:68:16:42:f9:74:7f:ea:1a:c2:b3:89:
fe:b0:f1:cf:36:97:8b:38:bd:2c:13:01:67:70:7e:
17:9b:a2:40:28:52:a7:69:5c:a5:12:16:52:ff:81:
e1:6a:01:b5:da:a7:44:7e:30:ac:3d:4f:ab:1c:2d:
4e:7d:6b:a5:79:61:fe:9e:a9:ac:e8:c4:59:ec:23:
68:a5:6a:f7:f7:ca:24:b1:bf:df:60:b7:e7:55:3f:
ee:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:7D:DC:FE:C2:FE:2A:09:25:18:1B:D4:AF:9C:C8:8F:92:91:CE:87
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cX3c_sL-KgklGBvUr5zIj5KRzoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.75.0/24
Signature Algorithm: sha256WithRSAEncryption
52:56:b8:0d:8e:82:65:0a:4f:ed:7b:ed:16:92:05:e1:01:34:
3e:de:72:59:eb:10:a2:a1:c3:98:a9:d5:f4:04:eb:a7:1b:d1:
b2:b3:29:a0:08:1e:7e:52:9e:32:72:a5:f6:07:dd:06:c1:6b:
f8:d8:04:2e:c6:57:06:fc:c2:14:94:02:e3:b3:43:80:31:d1:
ea:15:d1:32:e6:a0:9b:32:17:c2:f5:58:2e:c2:c0:eb:69:ad:
bd:c6:d0:37:b3:09:b2:df:f7:cb:69:94:98:52:25:01:da:ff:
73:42:66:f9:43:1b:31:86:c6:f0:09:6f:35:bf:37:6e:75:c0:
c4:4c:27:73:db:4d:c3:7d:02:ab:64:28:12:c2:12:d4:a6:07:
f5:f8:a0:80:86:6e:96:9e:b8:44:b6:78:96:81:49:94:48:f6:
af:63:00:7d:54:c5:87:0b:79:cc:14:85:5a:a5:53:ed:89:4e:
17:d8:99:c8:35:83:1a:76:d2:fc:3c:da:9a:7b:3b:95:de:c0:
e7:01:84:a1:72:4d:51:92:9b:d0:c4:03:fc:aa:c9:f7:4b:44:
15:f1:4c:e8:61:8e:80:20:2b:5e:8f:1a:4f:db:49:7c:72:89:
cc:f3:8b:9b:c6:6b:81:4a:34:d2:ed:b0:59:1f:f5:6b:c6:a8:
d2:7d:a8:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org