Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nm7IaJ15AcUwTUAUlPYjPtrPD2c.roa
File: nm7IaJ15AcUwTUAUlPYjPtrPD2c.roa (raw, json)
Hash identifier: Lo+S1t3a4paLprtkeXVloAD3azSf99tYsBYpP1Hnl+0=
Subject key identifier: 9E:6E:C8:68:9D:79:01:C5:30:4D:40:14:94:F6:23:3E:DA:CF:0F:67
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B9C63019B05B9DF333FAE35F5B13A0615
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nm7IaJ15AcUwTUAUlPYjPtrPD2c.roa
Signing time: Sat 04 Nov 2023 22:10:16 +0000
ROA not before: Sat 04 Nov 2023 22:10:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50338
IP address blocks: 185.226.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9c:63:01:9b:05:b9:df:33:3f:ae:35:f5:b1:3a:06:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 4 22:10:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e6ec8689d7901c5304d401494f6233edacf0f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1a:7e:34:38:d7:84:98:db:56:6b:2e:b8:3e:
74:dc:96:87:ff:02:58:72:27:53:74:eb:60:e6:72:
23:c3:e5:4c:79:6d:d6:67:4e:96:12:42:73:f9:2b:
70:10:1a:9d:5e:be:9e:8f:6b:32:af:43:ce:27:92:
bc:20:8a:bb:db:8f:29:52:b1:97:3a:15:3c:98:73:
f9:20:21:a3:2d:5e:50:0c:30:a0:c6:d1:1a:9b:cf:
36:8e:54:d4:ca:58:85:6e:a5:18:5b:3b:ff:61:fb:
68:ab:18:e6:ba:f4:95:47:57:84:12:00:a2:19:ee:
eb:66:2c:a9:ed:ba:b4:c8:78:09:54:36:53:fd:bb:
5c:5e:33:c9:20:32:09:88:c2:cd:50:84:8b:a7:e9:
fb:bc:77:a6:3e:32:05:36:53:c9:ef:44:4c:1c:56:
a3:fd:6e:0a:e4:e3:96:d6:9a:2a:71:9a:5c:94:86:
f9:55:fa:4d:a4:5f:ae:20:3b:0a:0c:b0:87:45:cf:
78:c6:c2:2a:08:07:43:63:ba:12:60:b0:49:bf:c3:
cf:75:59:78:46:7e:be:40:14:0e:9f:a7:21:df:92:
41:38:45:80:4d:34:bf:f4:c6:39:0a:0e:ea:28:77:
55:1f:c4:a2:5f:d1:dd:29:0d:37:71:86:2c:6e:29:
51:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:6E:C8:68:9D:79:01:C5:30:4D:40:14:94:F6:23:3E:DA:CF:0F:67
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nm7IaJ15AcUwTUAUlPYjPtrPD2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.107.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:48:0e:d3:7b:81:1e:72:32:f2:46:b0:c3:07:20:4c:51:ad:
0c:6f:39:1a:d4:14:b0:2d:c2:e3:e5:85:a7:b7:47:73:5c:e9:
65:0d:ba:00:7f:34:ea:a9:37:70:12:33:17:b6:a9:6c:14:de:
19:cd:b8:7e:00:b8:c2:96:03:5a:f5:2f:ce:c5:53:f7:33:2a:
ad:07:ed:08:c5:ab:12:2b:9d:22:16:cc:e1:9b:fb:7d:95:e4:
51:c5:ba:4b:c8:b0:de:5e:7f:fc:b8:5d:0b:b5:4c:7e:d0:ce:
1d:0f:82:38:1c:91:76:e1:51:30:d5:9e:2a:b5:4e:12:22:cc:
26:e8:79:1d:a7:49:17:21:93:2d:d4:41:4c:cb:76:79:44:50:
9a:0d:7e:9c:66:f4:6b:89:56:f3:34:e7:98:2f:ce:66:e7:da:
da:3f:61:c7:f9:44:70:e4:ca:3c:8b:c8:b5:41:7d:d8:f3:81:
e8:af:f0:c8:36:8f:d3:f6:da:ab:82:48:1a:53:10:78:13:1b:
e8:ec:79:94:cc:47:d6:2d:d9:23:be:ee:ad:2e:62:47:97:4e:
eb:31:07:fa:1e:eb:d8:52:2d:23:4a:cf:c1:bb:e3:36:40:55:
95:30:0b:00:2c:3e:50:cd:98:d3:fc:95:1a:60:9c:82:66:ee:
b7:7f:d0:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org