Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oP2HtDJsGVnlwXucsDcRvWeJ9Ag.roa
File: oP2HtDJsGVnlwXucsDcRvWeJ9Ag.roa (raw, json)
Hash identifier: 08hcal4haLQ0F8KxuYHmRsR2avHLQJ6yQDYsOJWwKgg=
Subject key identifier: A0:FD:87:B4:32:6C:19:59:E5:C1:7B:9C:B0:37:11:BD:67:89:F4:08
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0188AF2F3DD856F42DA84ECEBC54D8CF1316
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oP2HtDJsGVnlwXucsDcRvWeJ9Ag.roa
Signing time: Mon 12 Jun 2023 10:38:08 +0000
ROA not before: Mon 12 Jun 2023 10:38:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397563
IP address blocks: 185.210.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 20:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:2f:3d:d8:56:f4:2d:a8:4e:ce:bc:54:d8:cf:13:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 12 10:38:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0fd87b4326c1959e5c17b9cb03711bd6789f408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:84:fb:2e:2d:1f:04:ca:ce:47:a6:30:f5:e7:
5f:e1:3c:2b:a7:67:b1:15:b7:67:6a:f6:4f:fd:26:
96:7e:da:e9:46:6c:20:bb:ce:c7:cc:d9:40:ab:02:
70:ac:0b:ab:4a:7a:2b:be:f6:bb:94:d3:b3:e3:da:
7e:be:c9:f2:07:8e:2f:30:a0:22:6b:25:48:51:c9:
a2:82:68:8b:16:dd:6d:aa:8d:4d:62:84:3f:8a:3b:
25:df:9d:11:a2:22:cc:b5:fd:78:13:f4:94:44:05:
9f:c3:8e:94:e8:3c:b3:1f:8c:68:78:aa:53:e9:bd:
30:1f:51:b9:7c:1a:e8:d8:e7:4e:96:c5:e1:12:62:
12:62:a2:6d:6d:23:9e:cc:85:1b:35:43:e2:88:a7:
14:5e:c6:57:1c:7d:44:e9:8c:65:7f:44:73:8c:91:
9f:6a:0f:7e:ba:db:a4:1a:fc:4a:2f:21:f9:15:ef:
ee:af:36:16:df:87:7f:71:21:10:e6:37:b2:ce:4e:
f9:ac:8d:91:2a:d2:6f:3a:c8:63:d5:00:36:64:ab:
0b:1d:1e:72:07:95:7e:d8:ed:4f:36:9d:ad:ec:29:
a2:30:de:d6:32:64:b9:21:b8:b1:e6:a4:73:81:f3:
89:b0:5f:9f:c3:75:2d:5b:79:11:46:06:ae:3b:e8:
66:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FD:87:B4:32:6C:19:59:E5:C1:7B:9C:B0:37:11:BD:67:89:F4:08
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oP2HtDJsGVnlwXucsDcRvWeJ9Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.235.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:cd:e0:8a:ad:fb:3a:97:94:65:09:ad:42:1a:ad:5e:be:e3:
4b:25:6c:16:8f:1a:91:17:0b:df:f7:8d:20:ad:0c:e3:3a:46:
4e:1f:4f:91:3f:fe:6a:ac:6c:29:fc:49:5d:2a:6f:15:a3:57:
9c:96:08:06:de:04:8c:76:83:f1:6a:5d:c9:14:5f:bd:bf:44:
75:30:8e:de:4b:9e:61:dc:91:1c:ab:5c:c3:b4:86:54:c5:1b:
ff:1a:a0:88:98:16:8e:f8:b3:0c:7b:d7:5e:08:38:04:3a:81:
d3:9b:97:8a:d7:1b:15:ef:80:16:b2:ce:42:16:07:b0:14:af:
a5:26:d0:01:d2:bc:74:4c:a3:ad:1a:bb:27:f5:f1:15:26:b7:
eb:18:ad:72:74:d2:58:e8:ff:f9:db:47:e8:d7:2e:44:71:f2:
81:05:a7:ce:08:9a:8a:bc:71:6d:80:6f:fe:a7:87:1b:90:5f:
6a:01:37:17:f6:97:df:ec:37:f1:50:0b:94:e7:fc:d4:59:99:
9d:46:15:c8:45:e5:3c:bc:14:0f:47:72:d5:2f:32:09:d7:e4:
c2:e4:61:56:35:ae:e3:25:f6:91:98:da:28:74:86:cf:e4:1d:
fd:65:76:50:47:3c:75:6d:5e:a9:b6:62:4a:d7:0a:cd:c6:e7:
5e:b6:49:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org