Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/fyOoS0c_3vPNSfn5woAXRddseYc.roa
File: fyOoS0c_3vPNSfn5woAXRddseYc.roa (raw, json)
Hash identifier: VPtYGeDx8dL003Ng/LqvypnOZrboE2NKisq5c4X/QYE=
Subject key identifier: 7F:23:A8:4B:47:3F:DE:F3:CD:49:F9:F9:C2:80:17:45:D7:6C:79:87
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BC99F3A8AD84D96E6380D3A0CD12D4E0A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/fyOoS0c_3vPNSfn5woAXRddseYc.roa
Signing time: Mon 13 Nov 2023 16:58:57 +0000
ROA not before: Mon 13 Nov 2023 16:58:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.209.36.0/23 maxlen: 24
185.218.102.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.199.159.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
176.125.248.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 10:21:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:9f:3a:8a:d8:4d:96:e6:38:0d:3a:0c:d1:2d:4e:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 13 16:58:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f23a84b473fdef3cd49f9f9c2801745d76c7987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:23:a1:89:9f:98:aa:86:da:28:d8:58:51:7b:
9d:c3:89:4d:8d:c4:b2:63:d3:d3:52:f0:ea:17:f6:
67:3b:97:41:10:a3:b3:cd:8f:b8:35:b5:7b:e0:3c:
1e:28:22:2a:71:79:68:36:53:79:6d:6f:02:c3:fd:
2c:fc:cd:b0:9e:41:de:d6:24:59:8b:de:54:9a:d9:
2e:93:0a:4b:64:c6:00:b0:46:a3:11:ac:3e:87:37:
2a:3f:9a:cb:20:ec:f2:ae:26:9f:cf:73:e6:67:3e:
00:a7:de:6e:12:52:76:c0:a9:e3:93:b6:1d:17:68:
37:82:97:e2:16:be:85:19:9c:2f:94:d1:73:be:06:
71:3b:42:35:4c:d6:fd:e0:33:3e:79:74:da:21:71:
fb:9c:13:ec:fa:09:46:99:5c:01:e7:98:07:c7:6b:
64:f2:90:5f:60:e2:cb:72:71:1a:27:89:b4:a3:28:
a0:ea:1f:d9:e3:76:6b:6d:0e:c2:34:89:0f:54:3a:
1f:4e:21:b0:94:89:16:c4:f8:17:21:5b:a6:bb:64:
f7:de:ce:e9:bd:d9:5c:f8:2e:ab:5e:e2:2e:1e:eb:
73:13:05:6f:1e:44:55:d3:e6:86:ff:ba:98:95:a8:
d8:b8:27:b2:a1:ae:39:88:5f:15:8b:37:2d:14:58:
0b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:23:A8:4B:47:3F:DE:F3:CD:49:F9:F9:C2:80:17:45:D7:6C:79:87
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/fyOoS0c_3vPNSfn5woAXRddseYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.248.0/24
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.210.152.0/22
185.218.102.0/24
185.220.249.0/24
185.223.76.0/24
185.223.80.0/24
185.225.2.0/24
185.226.105.0/24
185.226.107.0/24
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.251.231.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:5d:cb:73:17:56:36:88:87:1a:58:cd:b9:55:b6:2e:88:5b:
5d:aa:a4:eb:44:48:c0:21:f3:21:8b:76:fc:4a:4a:0b:3c:a3:
7e:2c:69:62:28:34:07:81:a9:d8:29:5a:b0:7c:2b:f3:23:80:
23:c2:fc:cd:21:5a:31:87:43:80:57:b6:ed:81:b6:50:7a:fb:
3d:0a:71:33:f5:78:27:d6:10:89:c0:f5:aa:fe:71:9b:e5:09:
ed:05:84:ae:7f:74:05:c2:5c:2f:3d:28:6f:31:83:71:d1:58:
b4:1a:52:c9:dd:c8:46:36:9b:0f:23:93:9d:b0:80:91:6c:ab:
8e:40:ac:96:e2:06:88:b8:85:3e:27:b7:55:8b:82:72:cd:cf:
ad:7d:f7:a6:f9:12:f5:86:66:19:38:a9:ca:c2:12:fb:49:da:
97:73:0a:93:70:46:9c:72:b6:98:13:a4:0d:82:b0:5f:21:29:
e1:fe:c8:1f:10:b4:db:70:be:59:a4:e5:02:bb:3c:f0:cf:3b:
49:51:10:aa:1e:ea:af:ca:31:fe:af:02:b8:a4:11:f2:ba:a9:
76:2e:c6:ae:a2:6d:17:13:12:88:f1:22:0a:3c:1b:fa:4c:3a:
58:b3:4e:29:1a:6e:c3:0a:0a:2b:cf:53:75:4f:a6:da:a6:72:
ab:39:88:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org