Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pR8PWDGtQ0s0GKrviaeZWTh9YJA.roa
File: pR8PWDGtQ0s0GKrviaeZWTh9YJA.roa (raw, json)
Hash identifier: +TgKFXQBf3DStCzun1PR76YIhlF2L6HWZxjLArKwhNQ=
Subject key identifier: A5:1F:0F:58:31:AD:43:4B:34:18:AA:EF:89:A7:99:59:38:7D:60:90
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018750FAEC02A635F7A43CDE99CF8C1E66F2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pR8PWDGtQ0s0GKrviaeZWTh9YJA.roa
Signing time: Wed 05 Apr 2023 10:33:54 +0000
ROA not before: Wed 05 Apr 2023 10:33:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.218.20.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 05 Apr 2023 13:03:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:fa:ec:02:a6:35:f7:a4:3c:de:99:cf:8c:1e:66:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 5 10:33:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a51f0f5831ad434b3418aaef89a79959387d6090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:eb:4e:16:bd:ff:cb:20:ea:2d:77:78:66:0d:
a8:ff:fa:6f:f5:4a:7e:fa:78:80:49:f1:52:a9:20:
b3:07:d9:4e:a7:02:bd:d4:1c:87:ae:29:0e:91:45:
10:0f:38:9c:4f:fb:1d:3e:09:2f:c3:77:11:5a:95:
7e:ef:48:70:4f:eb:8e:ea:5d:d4:54:f3:7f:da:6e:
8e:13:77:fd:f1:82:2e:8b:3a:62:bd:16:2b:65:c6:
c9:f8:63:91:04:87:d6:8d:96:e2:b7:35:42:86:2e:
f8:fa:15:c5:8f:81:4b:02:75:3a:6b:08:21:53:f0:
b5:88:d8:17:cb:ed:1e:fa:0f:3e:15:82:71:59:4c:
bc:85:a1:e0:90:d0:75:c0:81:6d:39:1d:83:75:6a:
14:f1:73:fe:9f:64:90:e2:3e:55:0f:d1:bf:87:ad:
c0:5b:b1:66:c6:77:c2:83:29:48:2d:61:a0:a2:fb:
96:30:0c:9c:79:8f:67:e9:37:63:69:44:fe:13:49:
d4:6c:c5:3e:bf:60:7d:76:b7:17:01:58:0e:94:48:
ad:46:c8:81:7c:dd:56:aa:f0:bc:d9:2f:e9:cc:4b:
c4:70:62:e1:fa:c4:0e:95:e4:3c:b0:08:e9:6e:f8:
34:39:bc:68:cb:52:33:6d:d0:bc:fb:d3:94:13:e6:
eb:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1F:0F:58:31:AD:43:4B:34:18:AA:EF:89:A7:99:59:38:7D:60:90
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pR8PWDGtQ0s0GKrviaeZWTh9YJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.224.0/24
185.218.20.0/24
185.225.0.0/23
Signature Algorithm: sha256WithRSAEncryption
c2:5c:d9:dd:8b:ad:9e:98:1f:36:60:04:64:43:95:ce:ca:0f:
99:a9:1c:fd:2a:4a:33:10:be:08:62:c6:28:42:bd:5c:d5:da:
1c:f2:12:ad:76:27:8a:a2:a8:0a:60:a6:8d:f1:92:f6:4b:33:
a3:94:ce:a6:50:b9:f5:e0:15:78:71:71:d8:c4:b7:a0:65:52:
e1:6f:31:57:4d:50:7b:a7:5d:05:c2:82:98:6a:c8:d1:30:54:
ed:84:5a:ff:e4:98:ce:c7:69:2b:dd:39:eb:ae:b1:0d:5a:1a:
3a:d7:f9:87:4c:56:ae:ae:29:95:ea:df:21:e0:97:8a:13:80:
66:72:d5:80:29:94:59:a9:79:e9:18:2d:c5:6e:32:fe:65:ef:
8f:0e:ab:47:8c:92:61:5f:8e:5c:80:d2:ef:c3:da:2d:49:fe:
47:4f:b1:1a:4a:d2:e7:9f:15:ab:2a:df:a3:5e:1b:23:6c:bf:
fd:94:e3:99:7b:45:d7:3b:ef:e9:ea:5b:a3:2f:20:4e:1e:fe:
01:55:bb:85:55:ef:b7:6f:7e:f9:76:0c:ff:b6:cf:79:89:31:
8c:41:12:65:40:e6:76:c2:b3:df:cf:92:04:7a:40:ec:96:48:
1a:1e:59:2d:96:d2:9f:4c:c8:80:ab:72:9d:4d:a8:ba:f4:55:
b4:a0:9b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org