Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ozuu2RGvQmYGoiwBccaTLJhzA98.roa
File: ozuu2RGvQmYGoiwBccaTLJhzA98.roa (raw, json)
Hash identifier: +Hxzp0F8jhgg1vcIJRTb5SZrcM/7dggN119DrHVzuZQ=
Subject key identifier: A3:3B:AE:D9:11:AF:42:66:06:A2:2C:01:71:C6:93:2C:98:73:03:DF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018D2B8BB24C50504A5F34CB3C2DA03195A6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ozuu2RGvQmYGoiwBccaTLJhzA98.roa
Signing time: Sun 21 Jan 2024 10:23:11 +0000
ROA not before: Sun 21 Jan 2024 10:23:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211975
IP address blocks: 185.240.122.0/24 maxlen: 24
194.5.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Feb 2024 21:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2b:8b:b2:4c:50:50:4a:5f:34:cb:3c:2d:a0:31:95:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 21 10:23:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a33baed911af426606a22c0171c6932c987303df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a6:56:07:be:97:49:91:72:fe:19:0b:eb:0f:
16:47:d3:dc:65:11:22:7a:b8:3d:ba:91:a6:2c:a0:
68:15:26:e6:b4:0d:37:fa:f5:79:a3:89:e8:d0:52:
84:07:f2:38:84:10:b7:b2:23:f2:2f:ab:f4:7d:40:
9c:87:68:7e:13:39:32:d7:44:be:0e:40:81:b5:5a:
f4:84:6e:8b:26:ed:f3:1c:1d:bc:49:a5:e1:6b:18:
6b:95:52:d6:0b:36:6f:2c:06:3e:33:f1:1e:39:51:
fa:ec:27:55:82:da:bf:f6:6d:a0:7b:6a:b0:a7:a3:
0b:97:8b:a5:c2:25:20:50:89:6f:5a:61:7d:4a:d2:
c1:b2:09:3d:c3:66:0b:c1:39:28:fd:98:f4:39:a2:
fa:c5:f2:33:20:7c:28:05:2f:ae:31:3b:bc:35:f7:
49:4d:25:57:74:00:11:a4:f4:93:87:e1:3f:02:e6:
db:68:16:72:85:fd:1a:23:36:cc:b2:45:b6:f4:1c:
09:bd:57:5e:c9:08:e5:d2:f8:1f:f9:1e:11:88:b4:
eb:64:44:4f:65:54:25:05:0e:98:61:3a:b4:8d:22:
75:1b:33:5f:50:fd:0b:fb:fd:74:fa:5b:03:39:5e:
5a:4f:89:5f:70:78:ba:b6:06:52:84:09:0f:c5:9c:
ca:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3B:AE:D9:11:AF:42:66:06:A2:2C:01:71:C6:93:2C:98:73:03:DF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ozuu2RGvQmYGoiwBccaTLJhzA98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
194.5.64.0/24
Signature Algorithm: sha256WithRSAEncryption
39:2a:e7:02:8b:bb:d1:39:66:d7:0a:76:93:27:b3:12:41:7a:
b9:48:43:b3:6c:6a:7f:74:0f:05:f9:f2:7a:6a:98:82:5d:d0:
c1:20:21:fd:53:9d:db:fa:d0:7d:a4:19:2a:06:19:54:69:de:
80:f0:18:a7:f6:53:a1:e3:74:25:df:4d:57:0b:15:c6:5e:d5:
c9:b5:f0:39:d8:4b:76:74:94:d8:c1:63:1f:eb:dd:28:57:04:
58:0b:5a:89:46:0c:31:10:c5:e9:b4:f3:48:46:3e:f8:c8:92:
3c:05:c0:69:e5:99:e0:09:bb:b4:ce:6c:0e:48:4d:55:26:03:
a1:fa:d2:29:58:d7:53:ad:b5:28:87:ab:66:80:8a:26:f4:e2:
dd:51:24:fc:2c:11:72:d4:68:6f:99:24:8e:ac:c0:90:b9:6f:
fe:89:3a:22:8e:95:1d:91:ef:9b:6f:5f:e3:04:ea:b4:7e:74:
de:d9:84:fb:4d:d0:71:18:e3:50:32:0d:2f:34:7e:49:04:4e:
5f:ee:54:0b:33:bb:e1:6d:7d:5b:21:8e:49:5e:5f:f7:4c:a4:
71:51:e3:f4:cd:c6:bc:69:81:2d:21:ae:61:b5:c6:a4:14:cb:
23:4f:60:bb:c9:d4:96:a7:93:3c:07:3f:78:b7:db:e4:3c:74:
d2:09:05:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org