Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cdS5VENRURPTJXkcMlYoS21vrR0.roa
File: cdS5VENRURPTJXkcMlYoS21vrR0.roa (raw, json)
Hash identifier: XkCDbcB6C7mlqm7zdRkNLftTOK2GBx7NjntOYT1e3jU=
Subject key identifier: 71:D4:B9:54:43:51:51:13:D3:25:79:1C:32:56:28:4B:6D:6F:AD:1D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B6423DC1D8082A42A036D1B3DAED6F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cdS5VENRURPTJXkcMlYoS21vrR0.roa
Signing time: Mon 02 Jan 2023 09:00:48 +0000
ROA not before: Mon 02 Jan 2023 09:00:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 185.194.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:42:3d:c1:d8:08:2a:42:a0:36:d1:b3:da:ed:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71d4b95443515113d325791c3256284b6d6fad1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:95:8d:ed:14:5b:49:ab:75:33:65:6d:12:47:
aa:a6:d0:19:87:1e:1f:2d:2b:ef:e3:66:31:6a:ca:
3e:51:90:08:eb:cd:d2:6c:f2:42:9d:a3:db:c6:8f:
9b:c6:4c:99:c8:ad:f1:57:69:41:34:2f:7d:5f:f1:
e4:60:a0:73:f2:29:6d:fe:76:31:86:e9:e0:94:ca:
e3:bb:ea:1e:91:bc:da:c1:0c:67:83:a5:cd:79:c8:
69:47:e7:12:65:f4:5f:f4:c3:2e:8d:b2:cc:b3:b1:
42:9c:f7:a3:8d:e0:0b:e7:04:94:b2:17:a5:3b:f5:
02:a7:9e:b5:cc:c9:7b:fb:1d:30:63:ef:88:b4:f6:
b6:e7:a7:6a:42:9d:fe:ca:8d:a5:17:d4:f5:3e:4c:
bd:14:0f:63:9f:ab:94:e8:3c:41:fd:f1:b9:e4:e4:
c3:f5:e8:32:2f:c9:c6:ce:4b:8a:90:7b:62:35:2f:
bf:17:e2:95:7d:eb:d8:21:e9:65:f1:13:65:3d:ed:
5a:e4:59:bf:01:15:3f:cc:c2:40:04:c3:1a:fd:8e:
bc:ea:dc:bc:99:ea:04:b4:16:f1:1a:b0:38:8c:c6:
76:52:be:14:9c:ef:d5:cb:1b:80:99:32:e9:2e:f6:
af:49:cc:52:fa:8d:40:47:87:80:e3:89:11:c1:cd:
c7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D4:B9:54:43:51:51:13:D3:25:79:1C:32:56:28:4B:6D:6F:AD:1D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cdS5VENRURPTJXkcMlYoS21vrR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.30.0/24
Signature Algorithm: sha256WithRSAEncryption
87:47:fd:9b:2a:62:f5:3f:a6:87:34:1a:75:f4:d2:3d:84:20:
76:29:50:db:9d:06:8f:a6:fd:46:8e:19:ee:e9:f3:1c:87:48:
10:62:30:2f:71:d9:32:1b:15:7d:0c:be:e8:12:15:9e:89:1f:
da:30:06:3a:00:41:8b:47:7b:62:bd:8a:73:ad:e0:21:76:45:
e3:86:33:ed:26:4e:58:de:43:b5:72:6f:c5:92:a4:67:b8:07:
4c:18:21:e0:ae:61:cd:65:b2:ee:3f:f4:77:0f:07:c1:b6:9f:
6d:e4:b8:e5:0c:28:73:66:0e:2a:f5:28:bd:a4:e5:f7:31:bd:
7e:49:2e:1c:10:93:0f:26:4b:e0:07:3a:b7:1b:ae:86:7e:d1:
6d:d9:0e:73:d1:5a:a9:07:20:88:b1:78:c9:f3:16:60:85:d3:
20:8c:56:58:2e:b2:0a:ac:72:0e:c5:ef:8a:2c:61:fb:a7:dc:
02:0e:c5:e4:f1:7f:4c:0e:3e:19:2d:f0:93:00:13:fb:a4:07:
28:14:41:4c:50:2f:81:cf:2b:74:ee:79:11:72:24:42:62:77:
43:10:b1:fc:71:80:95:28:60:04:f4:3e:06:3e:52:85:4b:7d:
43:bf:f9:29:b0:82:22:f1:17:fd:13:ec:ad:4a:29:f3:2c:75:
30:b5:bd:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org