Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kvX8bwkzNY0L7MmM_PJCiZQAGBo.roa
File: kvX8bwkzNY0L7MmM_PJCiZQAGBo.roa (raw, json)
Hash identifier: 2yRzRw0Kh4rGQIm5zQoFo8Rt1fJ9Xelw7yjORUYhtas=
Subject key identifier: 92:F5:FC:6F:09:33:35:8D:0B:EC:C9:8C:FC:F2:42:89:94:00:18:1A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B6153155182055E343227CD0A8B7F956F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kvX8bwkzNY0L7MmM_PJCiZQAGBo.roa
Signing time: Tue 24 Oct 2023 10:55:16 +0000
ROA not before: Tue 24 Oct 2023 10:55:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212830
IP address blocks: 185.128.52.0/22 maxlen: 24
185.175.152.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
194.124.68.0/23 maxlen: 24
194.124.70.0/23 maxlen: 24
194.124.68.0/24 maxlen: 24
185.223.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Oct 2023 15:10:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:61:53:15:51:82:05:5e:34:32:27:cd:0a:8b:7f:95:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 24 10:55:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92f5fc6f0933358d0becc98cfcf242899400181a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:0b:d2:43:99:3e:15:ea:a8:2f:2e:9b:13:
3b:22:7c:5e:25:04:4b:a2:0c:1e:43:bf:63:63:f7:
27:e2:93:f9:dd:87:c8:97:0e:81:72:df:e8:47:0a:
e9:a5:91:6f:71:87:f6:50:ef:48:c7:c4:d3:48:63:
31:a5:75:2a:65:6e:5d:67:89:2a:48:76:60:17:c8:
9f:b1:e5:01:23:52:c6:f5:73:e4:28:73:3e:63:97:
7b:a8:bf:ec:ba:ff:e0:bd:11:36:51:7d:19:88:cd:
9e:fa:ca:7c:cb:b6:90:d8:37:d3:0c:35:2e:76:74:
67:82:c0:98:47:ce:23:0b:21:21:f7:cf:27:e9:31:
da:a0:44:bd:8f:80:c8:64:30:70:71:cb:d7:f5:a2:
b7:e0:f4:b9:1f:1b:08:c3:32:55:21:13:3f:e3:a5:
f3:ca:c8:25:28:2d:dc:83:00:c3:d7:cc:44:79:27:
cc:3e:83:93:08:93:0e:cc:e1:27:ce:7a:2f:88:d7:
f8:a7:e0:73:db:1e:27:ef:8f:4c:27:a5:5f:56:21:
3a:5a:d5:73:bb:b5:df:51:d6:71:cd:36:2c:cd:52:
1b:7a:fe:ae:3a:ad:f3:d6:35:9b:4a:79:0c:b4:9f:
55:18:3e:bc:51:eb:c5:ac:e9:81:bb:ee:93:b3:b5:
5b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F5:FC:6F:09:33:35:8D:0B:EC:C9:8C:FC:F2:42:89:94:00:18:1A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kvX8bwkzNY0L7MmM_PJCiZQAGBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.52.0/22
185.175.152.0/22
185.199.44.0/22
185.223.60.0/22
194.124.68.0/22
Signature Algorithm: sha256WithRSAEncryption
93:1d:f7:06:bb:aa:a4:0e:9e:8a:bf:7c:cc:2c:27:3a:06:d8:
68:04:15:ff:ea:8a:fe:8d:87:78:39:ca:c7:73:e5:c9:44:a4:
8f:85:f4:8a:60:8a:6f:4f:bc:58:2b:d2:53:8f:17:83:b9:c7:
68:31:1e:5d:08:cc:2d:5c:ca:3e:9b:10:b7:38:14:67:2d:8d:
8c:95:4a:8f:b8:1c:53:a6:e4:ab:83:ef:cc:79:22:83:55:a2:
41:cf:77:a9:59:b6:fb:ee:7e:7c:1d:c1:f9:c3:ca:e3:c5:b5:
f0:cf:ba:4e:b8:3f:f4:ec:26:34:83:7e:72:96:a9:8f:2c:51:
32:67:30:4b:80:01:14:20:3c:40:26:eb:b4:17:46:65:92:d3:
39:45:45:39:72:fc:09:dd:8d:dd:1d:0d:80:f0:06:31:5d:1d:
1e:fa:61:50:7d:82:b3:bb:bd:29:9a:d3:d6:95:fb:3b:fa:b6:
dd:cf:56:c8:92:25:07:e3:eb:5c:f3:c7:44:21:df:fe:64:45:
5c:0d:b5:e9:20:2f:73:8d:30:e6:79:22:fb:78:a3:5f:bc:48:
40:7f:f6:a8:1d:50:43:85:2e:86:46:f1:0d:dc:0e:b4:e0:80:
56:09:10:5b:8a:0a:40:f6:ad:26:97:d4:26:01:3f:df:f4:e8:
b1:5b:07:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org