Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ciQZP1TX93lSXd_hklDdqQhu11Y.roa
File: ciQZP1TX93lSXd_hklDdqQhu11Y.roa (raw, json)
Hash identifier: eCah6jFHGX9AY2pba3Ie9RQLYtNldv4hk5YbJNIl/v0=
Subject key identifier: 72:24:19:3F:54:D7:F7:79:52:5D:DF:E1:92:50:DD:A9:08:6E:D7:56
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B6454894FE8909D1C0DEB0606CEC69
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ciQZP1TX93lSXd_hklDdqQhu11Y.roa
Signing time: Mon 02 Jan 2023 09:00:48 +0000
ROA not before: Mon 02 Jan 2023 09:00:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210122
IP address blocks: 185.226.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:45:48:94:fe:89:09:d1:c0:de:b0:60:6c:ec:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7224193f54d7f779525ddfe19250dda9086ed756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:66:64:0c:84:e7:72:92:e1:cc:c8:6f:95:b7:
f8:4f:ac:26:71:67:80:da:fe:d2:a6:e0:e4:87:da:
05:e0:26:30:80:f6:ea:e8:8c:17:85:4c:fc:d2:f1:
44:f5:19:c4:2b:bb:6e:5d:ab:fc:7e:95:e5:6c:a7:
f9:f0:8d:85:fe:18:01:aa:25:7f:b6:68:d4:3b:71:
9c:c3:14:ed:66:87:3b:26:fe:26:3d:eb:df:f4:4e:
8f:00:3d:d1:26:56:05:1c:40:b7:15:33:e8:41:75:
bb:ac:3d:83:e7:46:0c:1f:aa:5b:aa:c1:c6:d8:ed:
35:8d:32:2c:b2:31:02:8d:47:07:37:02:1a:7a:0e:
b8:b1:81:33:2f:ba:f0:ef:00:11:f6:a5:1f:0e:c2:
ea:b0:f1:fc:38:46:0a:c6:9f:0c:15:9e:ee:66:bd:
60:f5:76:6a:fa:89:76:c6:83:8d:d5:d4:a9:ee:0d:
93:08:15:f3:90:92:94:80:2d:e2:b9:b2:3e:48:98:
48:cf:53:67:cd:11:39:15:31:91:0e:a6:55:24:a7:
9d:69:87:7b:20:ed:0d:ce:17:e9:b6:4f:d0:80:7b:
43:ef:08:e6:cb:f9:13:3d:a7:96:af:cd:c6:a5:ac:
e4:76:1d:24:28:dc:a0:6c:93:e2:4f:9a:23:3b:55:
a0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:24:19:3F:54:D7:F7:79:52:5D:DF:E1:92:50:DD:A9:08:6E:D7:56
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ciQZP1TX93lSXd_hklDdqQhu11Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.104.0/24
Signature Algorithm: sha256WithRSAEncryption
be:9f:2b:d6:81:b9:62:cd:91:83:9f:ed:77:45:3d:28:4b:d1:
66:e4:da:eb:fc:68:c3:8f:6a:a4:ef:2e:2f:47:a8:6e:a5:ac:
13:a1:fa:87:12:13:a9:e6:db:5c:44:c2:7d:5e:57:60:7c:4c:
53:2c:84:e3:ab:e4:98:27:bd:c4:43:66:91:fa:82:41:2b:6f:
f5:07:81:5f:5b:a7:f6:51:72:d2:05:30:9c:5e:58:11:af:af:
a4:07:d6:9c:fe:46:9f:64:b5:c0:4d:a8:0d:79:fb:f5:d7:2f:
33:b0:b6:6f:60:39:ff:f6:fe:ed:0e:f1:a8:19:d0:db:0d:03:
52:1a:be:f9:57:18:7b:92:61:41:2a:08:96:d5:3f:73:9d:89:
c5:50:6d:22:32:3e:1c:e5:f9:95:ae:ad:1b:36:ed:48:8d:c9:
fd:27:8d:7e:c8:ea:9b:08:2c:4e:3f:e1:a7:ea:12:cb:cc:f3:
ef:cb:26:16:89:62:02:78:ed:31:c9:c2:28:a5:29:74:f1:84:
53:9b:b9:c0:f1:f7:71:88:b2:23:f6:27:47:60:de:e3:68:e9:
00:1c:28:3d:74:ae:db:34:fa:77:e2:3a:f9:b6:e4:86:64:ea:
ac:7d:83:fc:8a:af:14:a1:e1:bc:81:84:de:fe:c3:dd:1e:5c:
e7:16:47:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org