Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/q941phPAzjPyFb5xDwFsuCvTMc8.roa
File: q941phPAzjPyFb5xDwFsuCvTMc8.roa (raw, json)
Hash identifier: syPzI4Pxyc9DAJGy4TrMaGAKb/03ti68ljTt3PAYBO0=
Subject key identifier: AB:DE:35:A6:13:C0:CE:33:F2:15:BE:71:0F:01:6C:B8:2B:D3:31:CF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC802955517DAA1E6777BDBEC06B2568E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/q941phPAzjPyFb5xDwFsuCvTMc8.roa
Signing time: Tue 02 Jan 2024 02:31:01 +0000
ROA not before: Tue 02 Jan 2024 02:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211975
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jan 2024 10:23:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:95:55:17:da:a1:e6:77:7b:db:ec:06:b2:56:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abde35a613c0ce33f215be710f016cb82bd331cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c7:a1:ea:75:65:a2:37:e0:4b:51:ed:3b:97:
08:f1:fe:7d:df:f1:1a:6a:35:5f:88:6b:33:91:78:
ef:8b:6e:e8:0f:b4:1e:76:07:d9:21:78:19:6d:51:
06:83:33:05:76:05:05:d4:ab:9f:8c:06:35:8a:38:
d7:35:f4:ab:10:67:03:4b:8c:ce:aa:ed:fe:a1:13:
10:f1:be:50:10:ef:72:7f:3e:4d:e1:a8:88:ca:e9:
54:d9:75:3d:e7:07:a3:20:58:b8:e2:87:e2:0b:17:
58:10:a3:41:78:2c:8b:52:7c:b2:db:26:8d:d7:03:
48:a8:53:02:d8:3d:5b:75:de:6a:ee:3b:7c:49:a4:
61:1a:1b:6f:dd:a1:e8:29:35:92:5a:41:b5:cf:e7:
6a:fc:05:b3:6c:02:d6:59:22:95:61:0a:2d:8a:5d:
5b:40:e6:bb:bd:7d:08:76:fa:56:a0:f3:f8:b7:87:
bf:b6:3b:8f:97:25:df:9f:93:bb:86:83:ae:6e:5c:
c3:38:f9:15:e2:11:a0:65:10:87:9e:ca:68:e1:65:
32:af:7c:7c:05:b0:31:89:0d:9e:58:3e:b0:43:3a:
2a:5d:ca:47:e4:8c:b7:b5:f3:8e:d9:ae:d0:64:8a:
8a:7a:69:22:8f:b0:88:0f:6e:59:a4:4f:75:52:06:
04:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DE:35:A6:13:C0:CE:33:F2:15:BE:71:0F:01:6C:B8:2B:D3:31:CF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/q941phPAzjPyFb5xDwFsuCvTMc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:97:38:09:39:22:9f:b5:ce:2e:4a:a1:97:c2:86:5c:14:d0:
28:24:65:99:42:56:22:36:61:41:27:d3:9b:2a:9a:0c:91:7a:
5b:b1:ab:e7:7e:a7:41:0f:63:27:43:2f:c1:cf:6a:0b:6c:c1:
44:ff:dd:a0:23:f9:bb:cc:6f:5e:d8:75:fc:51:ce:29:47:cd:
83:42:1f:58:e4:c6:3a:c7:e7:92:d2:7c:b9:30:6e:78:fa:16:
54:d4:66:34:f9:49:46:3e:68:42:a8:86:96:cc:b5:cd:14:ea:
be:bc:1a:d8:02:c8:76:19:01:ba:2f:66:f3:ec:b0:c6:0e:10:
07:f2:3b:1e:24:7f:c9:24:06:eb:82:62:71:dd:02:83:d9:e5:
09:6f:53:33:78:fe:e2:a5:c4:27:76:af:21:11:fa:65:df:a2:
ff:3b:95:4e:2d:fa:75:c7:e0:8d:9c:09:d7:75:64:6f:e2:77:
81:21:a7:41:55:42:ea:64:2c:7c:3a:5c:44:cb:1a:d8:e7:1f:
ce:d0:32:9e:94:1c:ef:c1:1c:3f:80:a8:95:e4:34:a5:b9:15:
c2:b7:e4:66:a1:9b:c7:6c:a6:b6:94:5e:3d:22:3e:d6:b1:04:
23:95:c0:fd:a3:8c:94:96:f4:98:81:92:fd:af:ac:6a:90:10:
c9:e6:9a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org