Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/irsQGW1tNse8rncV_76QCfCFf-Y.roa
File: irsQGW1tNse8rncV_76QCfCFf-Y.roa (raw, json)
Hash identifier: E0gpcZMazm1Sx+/3QSbK3EGn0rHb7ez2eP+F5P2MXhU=
Subject key identifier: 8A:BB:10:19:6D:6D:36:C7:BC:AE:77:15:FF:BE:90:09:F0:85:7F:E6
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B6500A86D1EC6F3551CA856EFE2B4A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/irsQGW1tNse8rncV_76QCfCFf-Y.roa
Signing time: Mon 02 Jan 2023 09:00:51 +0000
ROA not before: Mon 02 Jan 2023 09:00:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 185.223.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Apr 2023 09:19:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:50:0a:86:d1:ec:6f:35:51:ca:85:6e:fe:2b:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8abb10196d6d36c7bcae7715ffbe9009f0857fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:dc:0f:c8:5a:91:24:82:ad:bc:85:12:a2:b3:
2e:c5:eb:86:b2:da:53:bb:06:a7:1a:a4:c8:c3:be:
51:e9:d3:ab:6c:1d:89:95:57:71:5a:67:19:37:f8:
69:fc:8d:36:fe:04:3d:36:3b:54:c8:a2:17:8b:4c:
03:1e:8d:13:cd:ab:46:01:38:be:af:c3:00:bf:f8:
bb:a7:56:ec:66:ba:d0:af:67:e4:38:c7:c0:1f:59:
b8:9d:b8:6f:c7:b0:1f:89:5a:df:ab:99:ac:b5:21:
e4:10:e9:ad:1b:4b:53:a4:ff:45:a3:ce:53:7a:cd:
43:0f:c3:6e:3a:95:4f:dc:fe:80:36:cd:e5:68:57:
fb:80:b1:c1:81:e1:48:8b:79:65:d9:6b:f5:6b:34:
d6:4c:d8:35:5a:a7:c2:fe:89:ef:26:5b:78:2f:01:
f6:6d:5d:b3:aa:5d:e9:30:6c:a5:93:09:ec:8c:71:
c9:97:eb:1d:e2:3a:9a:3a:ab:03:66:42:de:01:10:
3b:bf:e4:7b:32:c9:58:12:a1:6c:66:fc:a1:34:11:
3c:cf:5d:a8:69:3d:27:dd:67:35:c1:69:ed:5a:db:
7d:b0:70:8f:d2:1d:ff:3f:fb:e3:fa:af:a5:2d:e9:
96:c1:d7:bc:07:ad:12:70:85:36:f9:5d:d7:ff:aa:
5d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BB:10:19:6D:6D:36:C7:BC:AE:77:15:FF:BE:90:09:F0:85:7F:E6
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/irsQGW1tNse8rncV_76QCfCFf-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.152.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b7:73:3a:3a:74:8a:a6:07:99:df:26:29:3e:af:7a:50:50:
ff:a7:e9:6c:7d:f6:3e:23:91:d2:1b:58:ce:5b:88:bd:be:24:
02:87:64:7a:bb:91:b3:f3:65:e3:e2:af:19:f4:3f:1b:90:bc:
55:45:6d:33:b2:16:97:66:88:ea:ea:89:db:b2:d3:62:1b:2c:
e4:d4:2e:b2:46:2d:2b:6f:9b:c4:90:d2:03:3b:63:d1:5b:ba:
e6:c2:cf:1c:4f:5c:df:20:f0:3c:18:62:29:a1:19:10:95:7c:
58:fe:4e:26:ec:b3:d1:63:44:c4:3c:ba:f8:dc:80:cd:a1:40:
4e:7a:ed:fa:f7:c4:20:a6:e8:d7:39:00:47:94:e1:8d:ed:ee:
8a:f5:9e:c9:a1:a9:25:ae:32:12:c2:b3:43:37:61:23:7f:90:
a7:c5:71:a2:61:7e:55:0a:dc:70:9c:93:c5:29:1e:fe:39:5e:
7a:14:fc:a6:05:6f:33:6d:ba:df:5e:72:b6:d3:f1:51:05:0f:
2a:b3:f1:d7:05:bb:aa:14:a8:15:5b:8d:b9:1f:63:0b:9a:93:
c2:43:1d:52:fc:db:a8:40:da:dc:74:47:57:29:60:66:c2:12:
e6:da:ec:f8:42:ad:c0:71:f9:53:4d:b6:42:73:8f:57:80:c3:
7c:e5:68:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org