Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mSTWX4tVfESHW22Un_IZXPKXHMs.roa
File: mSTWX4tVfESHW22Un_IZXPKXHMs.roa (raw, json)
Hash identifier: y9Hh4Qa1eJJ5v3IlPCFAHTjtkzlhtNkdGthJ/Y7LCyY=
Subject key identifier: 99:24:D6:5F:8B:55:7C:44:87:5B:6D:94:9F:F2:19:5C:F2:97:1C:CB
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A276EFE4B53829D458911540B7AE0C9A1
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mSTWX4tVfESHW22Un_IZXPKXHMs.roa
Signing time: Thu 24 Aug 2023 12:05:00 +0000
ROA not before: Thu 24 Aug 2023 12:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.210.235.0/24 maxlen: 24
185.240.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 09:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:6e:fe:4b:53:82:9d:45:89:11:54:0b:7a:e0:c9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 24 12:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9924d65f8b557c44875b6d949ff2195cf2971ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0c:9e:45:be:13:c5:31:0c:d7:72:ed:c9:dc:
20:9a:64:bb:75:29:ef:e5:8f:e2:d9:82:2f:5d:ec:
a5:fe:83:84:19:9e:ca:2d:70:c7:0e:68:34:dc:46:
f9:52:1b:35:63:88:47:f0:60:f0:3c:03:3c:11:f8:
48:6d:1c:82:8c:62:39:91:8e:85:d1:94:d0:ec:b2:
aa:e1:9d:bf:f0:50:3c:97:05:2d:27:39:26:e4:16:
1c:02:81:6b:40:ec:c4:84:7a:9c:29:39:94:b8:fc:
81:2a:45:ce:c4:c9:4c:97:82:58:24:87:35:6c:c5:
6b:f8:a0:ac:fa:cf:f4:56:23:e4:9d:ba:75:e1:19:
77:af:6e:36:09:b6:34:18:80:6d:4b:f9:57:3a:af:
bb:2d:17:d0:47:8c:5c:d5:0e:25:93:78:d9:67:b4:
da:e3:fd:4c:6f:73:39:c2:7e:3c:6b:c4:36:68:01:
6f:ef:f9:76:66:85:76:4d:1d:29:3b:9e:f6:73:20:
b7:70:f2:49:96:3e:f1:1a:95:9d:04:1c:ee:38:50:
59:4a:6b:66:af:96:da:6b:db:94:d8:03:1b:a5:20:
39:6c:02:f1:b1:c9:a0:eb:a7:c8:50:76:b4:75:7d:
7e:b6:b2:68:3d:81:80:92:a0:b8:e6:b5:04:89:bd:
e7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:24:D6:5F:8B:55:7C:44:87:5B:6D:94:9F:F2:19:5C:F2:97:1C:CB
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mSTWX4tVfESHW22Un_IZXPKXHMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.235.0/24
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
50:86:e7:cf:ba:62:24:91:43:49:8b:af:54:52:21:41:fc:d7:
d9:15:dc:e9:46:5c:f9:9b:a1:d3:62:e4:98:54:9f:15:f7:4a:
2f:14:02:33:16:65:72:80:0a:2a:df:02:02:c8:79:23:94:79:
8e:cf:09:fc:4c:33:bb:46:fb:11:51:a5:dc:e7:4a:c3:6c:d8:
14:64:89:07:b0:ea:ec:db:62:e0:ab:e0:1b:38:f3:64:1c:e2:
b3:e1:7f:bb:37:b9:da:a7:ea:2e:70:6a:70:5d:37:56:4a:f3:
5a:e0:4b:7e:c9:24:2f:ba:ce:92:b1:7c:76:bd:76:3b:98:97:
a6:34:ea:1a:5c:cf:f0:cb:bb:47:fe:4d:13:f3:b8:9d:d9:76:
67:7b:39:c6:d5:07:5d:99:9b:b8:3a:59:90:81:8a:7e:92:78:
a6:66:b9:74:25:28:74:fe:36:d7:ce:a7:a9:40:31:5c:85:fd:
fe:4f:48:bc:7e:f7:20:1b:87:63:36:8d:51:81:7b:21:17:07:
de:55:18:af:36:89:c0:b9:59:78:28:9c:7a:79:38:49:e1:ab:
f4:2c:1d:e2:3f:fc:57:c0:13:cd:26:be:c4:78:d3:93:4a:e8:
93:d5:4c:01:a3:bb:5f:bc:8e:a5:af:5c:d6:64:33:c6:34:80:
4d:ec:b8:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org