Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nZOU-RwHYOTu6NixhNFVM9hIT3c.roa
File: nZOU-RwHYOTu6NixhNFVM9hIT3c.roa (raw, json)
Hash identifier: GRt7Hq94bAdb7URMK9UTlpWdf0ETexW3S+80VjiYBmY=
Subject key identifier: 9D:93:94:F9:1C:07:60:E4:EE:E8:D8:B1:84:D1:55:33:D8:48:4F:77
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018894FA4E67A485A7A6764D5C0FEF3DE0D8
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nZOU-RwHYOTu6NixhNFVM9hIT3c.roa
Signing time: Wed 07 Jun 2023 08:30:12 +0000
ROA not before: Wed 07 Jun 2023 08:30:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 185.210.233.0/24 maxlen: 24
185.209.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jul 2023 16:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:fa:4e:67:a4:85:a7:a6:76:4d:5c:0f:ef:3d:e0:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 7 08:30:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d9394f91c0760e4eee8d8b184d15533d8484f77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0b:da:87:59:a3:8c:b7:43:d9:42:ea:33:e2:
6b:8b:69:45:d6:c9:47:de:6d:08:92:5d:35:4a:74:
d0:a6:20:85:8f:b8:9d:1f:71:da:7e:e1:ce:87:0c:
be:47:f7:e7:7b:61:85:c0:53:c5:fe:f5:16:cb:ba:
ad:88:55:d6:c9:ca:1e:5a:a5:d8:1d:56:df:28:92:
d6:2b:34:4e:41:38:22:59:82:fa:4d:13:e3:22:10:
cc:e1:78:2c:63:06:29:94:1e:a9:d7:fb:1c:bb:74:
93:e7:46:fb:75:ec:f9:dc:ac:68:f7:2e:c0:f8:40:
21:78:7d:3c:94:63:45:1f:8a:c6:f0:2c:cd:1e:1a:
da:4b:2e:e5:5f:e1:ed:6a:c1:96:1b:67:db:62:e0:
92:98:61:63:7f:02:b2:90:3d:7f:1e:cb:9f:54:05:
b4:b3:a3:fd:2d:02:48:14:55:a5:ad:b5:fe:f8:3d:
b3:7b:8d:3f:1d:82:ff:e6:9f:ca:42:34:e2:ec:1e:
ad:74:d1:49:4d:cd:a3:3a:54:d9:9f:96:2e:9b:ac:
cb:3d:6a:f6:e0:98:ac:fa:f3:45:9e:21:c3:fa:45:
e3:23:e0:40:1b:d8:ea:8b:9b:05:8b:38:00:a8:03:
d2:a0:71:dd:53:f8:1c:fb:9b:04:c9:b4:c2:ab:5d:
2b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:93:94:F9:1C:07:60:E4:EE:E8:D8:B1:84:D1:55:33:D8:48:4F:77
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nZOU-RwHYOTu6NixhNFVM9hIT3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.74.0/24
185.210.233.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:f1:34:ef:26:f0:d8:92:10:91:c6:8a:3f:07:b2:3a:35:cf:
75:65:d0:b2:84:5c:97:98:7d:ed:6f:be:b2:62:b3:d8:b3:26:
6e:0f:9b:ab:12:c0:46:14:71:ca:d7:82:85:c6:71:61:00:65:
25:d7:56:97:f8:08:ac:8a:99:cd:de:b4:95:04:e4:fd:33:48:
ab:35:b8:70:23:25:2c:56:15:b7:89:86:a0:3d:a6:7d:38:89:
0f:35:c0:05:e1:ea:73:d7:51:5d:7f:26:a0:8b:65:d2:79:af:
d3:b1:e8:ea:a2:d5:7a:25:79:64:bf:1b:61:44:c8:41:a3:b3:
fb:57:24:69:65:c2:98:82:05:3c:e8:e0:ad:b8:ac:ab:29:dc:
c7:bd:67:7c:10:69:1a:3f:d4:69:e0:f1:27:9c:2f:27:d0:43:
cd:6f:4a:a2:3d:e3:67:ae:79:91:b4:5e:ca:7b:a5:b4:08:cc:
ca:94:cd:7d:03:35:68:0a:75:cc:6f:01:2e:10:7d:d7:14:b7:
8d:8e:a0:ac:d6:e3:da:31:9f:59:93:77:19:dc:e9:1b:8a:3d:
84:af:f4:1c:21:3c:c3:a9:9b:f5:44:d8:dd:25:3b:53:1a:57:
1f:d5:80:28:c5:19:de:ea:6d:15:2b:7f:12:05:28:c0:47:da:
00:4b:21:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org