Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ck_QEdpFOZCd1GRj2kQ-Z4v7XC4.roa
File: ck_QEdpFOZCd1GRj2kQ-Z4v7XC4.roa (raw, json)
Hash identifier: WuJ/NnDE7s460/D1ReB6aN3PSKOR2EE/RjEEvDHCrXM=
Subject key identifier: 72:4F:D0:11:DA:45:39:90:9D:D4:64:63:DA:44:3E:67:8B:FB:5C:2E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018D6951D779C9BDA3552553420E04C00352
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ck_QEdpFOZCd1GRj2kQ-Z4v7XC4.roa
Signing time: Fri 02 Feb 2024 10:16:27 +0000
ROA not before: Fri 02 Feb 2024 10:16:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 185.121.12.0/22 maxlen: 24
185.199.159.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.209.36.0/23 maxlen: 24
185.209.74.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.218.102.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.225.22.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
185.240.120.0/23 maxlen: 24
185.251.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 12:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:69:51:d7:79:c9:bd:a3:55:25:53:42:0e:04:c0:03:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 2 10:16:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=724fd011da4539909dd46463da443e678bfb5c2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b5:9e:b6:10:74:42:68:7b:fe:66:e3:4a:c6:
dd:14:bc:5f:7e:af:c7:8e:54:1e:d5:e5:0d:e1:b6:
14:c1:f8:bc:55:c2:26:22:59:dc:d0:b4:7f:8f:ea:
e6:40:07:e1:72:3b:bc:7a:c6:01:f5:2f:cc:82:c4:
7b:df:51:00:7a:b7:1d:c6:3f:e0:0a:81:8d:91:d9:
87:fa:df:48:95:2a:b8:99:85:7e:5e:a4:2d:88:9c:
79:65:c3:75:10:4a:1b:48:8d:55:12:4b:b2:eb:0d:
8a:c2:e5:13:4f:e9:ff:d4:82:7c:8b:0b:ca:5b:56:
f3:62:70:a3:81:21:aa:9f:0c:81:2d:e0:04:b2:8f:
e4:09:50:f5:3d:90:b8:d0:eb:c2:30:de:a8:ab:26:
93:f9:5a:e7:f8:09:35:21:d5:55:93:3e:32:b4:af:
0e:68:d4:26:28:8a:a4:7a:40:b0:9e:7e:75:df:d1:
9a:4e:53:c7:f5:86:3a:71:b9:44:92:32:b3:6c:f2:
6f:c0:2e:c5:a8:79:70:b4:75:06:ff:08:4d:69:9a:
ea:20:31:8c:c4:b4:30:bc:2a:72:df:0c:2f:af:2a:
9f:e0:08:65:c3:81:18:91:5b:e4:ed:54:8c:33:b7:
eb:a9:f6:61:ab:17:e5:6d:90:43:cd:27:5f:b6:6d:
a8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4F:D0:11:DA:45:39:90:9D:D4:64:63:DA:44:3E:67:8B:FB:5C:2E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ck_QEdpFOZCd1GRj2kQ-Z4v7XC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.209.74.0/24
185.210.152.0/22
185.210.235.0/24
185.218.102.0/24
185.223.76.0/24
185.223.80.0/24
185.225.2.0/24
185.225.22.0/24
185.226.105.0/24
185.226.107.0/24
185.227.145.0/24
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.251.231.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:89:d5:72:b6:c6:5a:8b:05:79:ff:42:db:db:0c:2b:0c:47:
81:b1:63:00:01:93:19:89:a5:0b:21:0a:65:0c:75:30:b0:42:
d6:38:1e:4d:80:95:e4:8b:d8:ad:f8:46:14:79:87:5d:a3:41:
ee:2a:97:71:b8:0d:96:85:cd:57:3a:07:3e:2e:2b:4d:96:c6:
16:af:6d:65:5c:a4:4f:8c:c7:f9:d0:d3:ba:da:f8:d5:3e:db:
33:6f:8b:66:6a:f8:47:af:df:98:e7:22:d1:ff:ec:86:f5:d6:
50:53:5b:54:32:3f:20:80:03:d3:33:36:22:e8:e3:32:5d:ea:
6a:cd:0f:fb:ad:82:5e:61:8d:a9:59:0a:15:d8:a8:49:c3:72:
32:cf:d1:5d:d0:2e:d9:bb:be:ee:a6:16:08:a7:0c:b4:09:a7:
89:ef:12:3d:dd:d9:01:06:59:39:58:af:a0:61:60:d4:00:68:
4e:53:85:b5:d0:6c:eb:19:88:1e:9e:ff:9e:89:de:d3:44:d3:
e0:26:d6:6b:26:be:57:3b:15:94:07:72:61:dc:af:c4:2e:33:
5e:df:84:a6:04:10:2d:18:5d:15:d0:6d:37:4a:d6:6b:4d:20:
02:e7:30:41:8d:1e:1f:f3:8a:ad:1f:50:84:53:75:88:c0:28:
46:73:f7:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org