Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/djya-fTk9MSZo-rV2c_WTu_NFqM.roa
File: djya-fTk9MSZo-rV2c_WTu_NFqM.roa (raw, json)
Hash identifier: fwJ7v9hy3G07wIlVbcwOIypsI+vTeyunmHGoGy7BmCw=
Subject key identifier: 76:3C:9A:F9:F4:E4:F4:C4:99:A3:EA:D5:D9:CF:D6:4E:EF:CD:16:A3
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0186022B29F4D98820C3F248393CE9F1966B
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/djya-fTk9MSZo-rV2c_WTu_NFqM.roa
Signing time: Mon 30 Jan 2023 10:13:48 +0000
ROA not before: Mon 30 Jan 2023 10:13:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200181
IP address blocks: 185.225.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 May 2023 09:38:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:02:2b:29:f4:d9:88:20:c3:f2:48:39:3c:e9:f1:96:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 30 10:13:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=763c9af9f4e4f4c499a3ead5d9cfd64eefcd16a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:27:d2:f9:43:45:ec:b8:41:d4:76:03:c1:8c:
27:69:43:65:33:51:21:55:1c:00:8b:9e:91:54:a3:
bf:f9:d7:59:4e:c3:55:2a:cb:a4:93:03:dc:8b:9e:
ef:0c:9b:db:d7:78:c4:87:36:b8:5e:f1:a6:de:55:
ab:76:f1:87:f5:d1:69:fa:d8:42:f2:f4:69:86:b3:
6e:23:ab:70:0b:0e:4b:ea:4a:04:e7:5e:68:af:d8:
41:c8:14:a8:16:7a:cb:24:80:a5:50:bb:04:41:25:
d6:76:04:bc:95:87:3b:90:fe:8d:4e:6b:df:84:4b:
ab:42:8b:1a:88:1f:62:0f:80:44:16:b6:51:6c:70:
e9:ec:13:82:0d:1f:b1:50:a5:ec:7d:9a:24:7b:19:
6b:49:b8:b0:23:60:9b:29:dc:d9:35:2f:ad:ee:14:
8d:39:6c:0a:27:40:3b:9f:0e:cf:32:2c:89:02:6d:
7f:56:eb:06:b9:30:a4:e5:58:32:31:17:6b:e2:fa:
25:12:6d:66:9e:76:b7:27:2b:46:27:88:90:c1:39:
dc:73:c2:d0:e9:7c:9c:5c:4d:5e:7b:62:63:7c:23:
ec:89:c8:f5:f0:de:8c:95:d9:4d:99:1a:75:00:cb:
a3:9a:bf:9a:a5:29:06:18:61:c4:71:e9:55:7e:83:
27:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3C:9A:F9:F4:E4:F4:C4:99:A3:EA:D5:D9:CF:D6:4E:EF:CD:16:A3
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/djya-fTk9MSZo-rV2c_WTu_NFqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.0.0/24
Signature Algorithm: sha256WithRSAEncryption
66:7f:d5:8c:e2:a1:16:3e:87:af:fd:29:39:4e:4c:e9:1b:9a:
2f:fb:19:de:c8:46:33:03:f6:fa:d5:43:04:a6:49:55:07:e2:
01:1d:a0:94:fb:b1:f7:30:1f:fd:53:0a:2b:e2:64:b6:0f:79:
6c:99:ea:fe:58:1c:fc:24:50:90:a0:55:95:10:1b:b4:1f:26:
4a:49:4f:4a:66:77:c1:b9:5a:80:de:75:a4:ba:e7:9c:4b:ab:
fe:14:53:e6:f0:e4:b9:40:41:ae:9e:a2:80:dd:d5:96:03:ca:
c9:88:65:5c:90:b9:14:bb:5f:d0:84:4b:30:1b:49:34:19:e9:
6b:a1:da:9d:cd:f4:db:83:53:e7:fb:33:17:4d:d2:bf:14:7b:
19:1a:91:5a:63:73:e8:4b:23:73:09:df:ab:1a:9e:31:f3:e0:
9d:4d:41:1b:a8:80:a5:43:69:16:30:69:16:16:60:af:44:a6:
41:1c:07:af:cc:24:40:7e:c3:7a:d6:e0:e4:79:e6:b0:94:63:
89:ad:54:1b:6b:21:fb:57:4a:2f:1c:fe:4f:75:a0:e3:c6:ae:
b2:69:bb:5b:5d:71:68:a9:4a:41:2e:ee:03:5d:32:1c:5f:09:
91:6c:15:36:24:2a:4a:3d:b8:56:67:0f:6a:aa:9e:90:12:f9:
f0:2e:09:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org