Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/lCYGoC_sccJkl6bwzjUz-oshi24.roa
File: lCYGoC_sccJkl6bwzjUz-oshi24.roa (raw, json)
Hash identifier: CGPDo48zCAV/EpVR/9lqUKAYYeUxYVLCrka/GFJ6KMQ=
Subject key identifier: 94:26:06:A0:2F:EC:71:C2:64:97:A6:F0:CE:35:33:FA:8B:21:8B:6E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189D476BBA0D5EFFE8343AFEE3AC8F196A5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/lCYGoC_sccJkl6bwzjUz-oshi24.roa
Signing time: Tue 08 Aug 2023 09:24:58 +0000
ROA not before: Tue 08 Aug 2023 09:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203511
IP address blocks: 185.210.233.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.210.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 11:03:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:76:bb:a0:d5:ef:fe:83:43:af:ee:3a:c8:f1:96:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 8 09:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=942606a02fec71c26497a6f0ce3533fa8b218b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:cd:f5:31:64:53:29:0c:b8:12:a4:4b:29:95:
74:2b:91:55:e1:be:81:d6:cf:c2:51:b0:a2:4a:1a:
ba:2c:d1:77:bb:e7:5d:58:65:73:4c:48:7c:3c:74:
08:af:f7:0b:4e:3f:56:38:fb:e0:75:98:c6:8b:d6:
67:0e:16:7f:02:8c:9d:9d:5e:22:2e:cd:29:85:99:
1d:0f:0a:d9:67:98:2f:08:2e:70:07:f5:ff:01:1b:
06:a0:a2:90:8e:08:e7:07:5a:71:2f:55:ef:9d:22:
8c:86:75:e1:dc:a4:28:42:7b:98:81:f8:38:bc:bd:
f8:30:85:8a:ca:55:7f:31:e9:32:10:eb:e8:8c:39:
19:21:cc:f3:45:09:b2:e9:a4:11:a5:2e:6f:d0:2e:
83:c6:d5:3d:d4:bd:96:fe:ff:f5:89:81:a6:fc:83:
18:53:83:75:e1:65:43:d8:ac:ae:c8:3d:20:3e:e4:
12:b8:10:ba:8e:ed:9b:24:4d:86:89:0f:85:f1:8a:
97:80:6f:01:af:4c:37:1b:b1:49:d6:e4:94:db:75:
2a:e7:aa:0c:e7:fd:ea:28:c7:4c:d9:ad:f7:0e:3b:
6c:9d:78:bf:f0:ac:e9:13:93:e0:bc:71:8f:f4:62:
c5:e3:33:5e:b3:93:0c:cd:11:c5:08:82:9d:ec:da:
5a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:26:06:A0:2F:EC:71:C2:64:97:A6:F0:CE:35:33:FA:8B:21:8B:6E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/lCYGoC_sccJkl6bwzjUz-oshi24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.232.0-185.210.234.255
Signature Algorithm: sha256WithRSAEncryption
65:a2:de:ba:bb:51:f2:33:ea:b4:dd:77:d5:bc:f3:40:9b:26:
43:0d:55:ec:63:1c:f2:fe:ec:2c:51:2e:5c:22:41:50:7d:79:
da:a6:71:ef:31:1e:4f:88:03:94:5b:9d:4d:33:14:7c:27:7b:
a0:70:52:a5:e7:b2:0f:53:f0:c7:e3:4f:d8:c6:55:30:f6:44:
49:f3:ce:39:f6:59:6f:08:89:b6:86:26:70:f1:d1:3e:f9:de:
59:a9:2c:a0:af:3a:ea:10:81:6d:63:7f:d5:a7:1a:a5:60:18:
81:c2:02:14:dd:19:99:bd:1f:42:b8:7e:af:5b:65:f4:2d:65:
a7:4a:54:78:28:69:c1:9a:d9:b5:d9:f3:a6:9d:69:a9:4d:3a:
5c:f7:0d:c7:ad:f7:05:c7:a0:b8:b3:62:62:0d:53:4f:bf:a9:
2b:a8:26:0e:57:55:63:38:f7:d1:96:03:f4:20:cd:f5:62:4b:
80:aa:bc:23:53:e4:c1:33:eb:99:fa:e6:5a:3f:99:98:31:c0:
6a:b6:d5:10:b9:f2:a8:7a:72:75:81:62:50:21:27:b9:5b:0b:
99:3e:6c:83:94:7d:fa:38:f2:65:62:3b:aa:75:e3:64:61:9a:
8f:5a:74:2d:49:f3:b0:c8:23:c3:a8:cf:e0:88:27:54:88:85:
f3:8a:c2:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org