Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qtokStkgmpOFYtBRyDWMfL_Maw4.roa
File: qtokStkgmpOFYtBRyDWMfL_Maw4.roa (raw, json)
Hash identifier: G8eK8gg62rl4fgH13dCxwGuTbYMiKcoly5BiK5iUSsw=
Subject key identifier: AA:DA:24:4A:D9:20:9A:93:85:62:D0:51:C8:35:8C:7C:BF:CC:6B:0E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B63A1D5CE0C5DBF5F57F1F11CE773C
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qtokStkgmpOFYtBRyDWMfL_Maw4.roa
Signing time: Mon 02 Jan 2023 09:00:45 +0000
ROA not before: Mon 02 Jan 2023 09:00:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150158
IP address blocks: 185.223.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:3a:1d:5c:e0:c5:db:f5:f5:7f:1f:11:ce:77:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aada244ad9209a938562d051c8358c7cbfcc6b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:14:74:1f:78:49:ae:71:56:20:23:f3:d9:bc:
b1:6c:a0:69:73:cd:cf:f5:c5:fe:26:5a:1a:53:1f:
51:55:cb:da:f0:0b:ec:4e:b0:2a:3b:33:b8:80:1d:
90:22:b0:a3:4e:5e:5b:5e:2c:a5:32:7d:f3:25:4d:
da:c5:f9:6c:c2:00:7e:36:de:49:80:96:67:20:22:
e1:74:ac:12:f2:9f:c2:3e:b2:2b:82:52:80:bc:d3:
23:01:2a:84:6f:d3:9a:60:3a:2e:c0:17:df:0b:08:
53:c9:8b:2f:30:60:55:1b:35:f7:4e:9f:5d:5b:b8:
ab:c8:bd:82:8b:23:33:6c:f9:5a:7b:b6:03:67:87:
7d:9c:31:cf:67:e0:37:c5:e2:9c:f3:7a:64:a3:1e:
b1:f8:2f:5d:ee:c8:1a:89:a7:84:58:6b:d9:98:54:
eb:cc:55:ef:fc:e1:e7:42:63:f3:8a:7c:db:a7:de:
7e:79:55:c5:e6:a6:c2:68:65:5a:cb:50:73:c6:e8:
ce:49:ce:59:3c:39:38:24:18:2f:52:78:26:a2:16:
a5:28:fc:b7:e1:80:11:bc:84:b0:43:98:f5:59:b6:
5b:9e:6a:e5:aa:12:e3:93:06:91:b1:2f:8c:88:59:
b8:06:a8:6f:38:cf:7e:29:be:19:15:66:cc:5a:3c:
4e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DA:24:4A:D9:20:9A:93:85:62:D0:51:C8:35:8C:7C:BF:CC:6B:0E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qtokStkgmpOFYtBRyDWMfL_Maw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.154.0/24
Signature Algorithm: sha256WithRSAEncryption
21:60:ce:2c:71:c9:d3:7d:df:1e:54:79:c0:d2:ea:84:16:14:
f1:df:7d:91:82:2b:1d:65:dc:4b:b4:96:41:96:ff:0a:e4:fa:
14:85:7b:ac:6a:54:42:d0:5d:d7:f1:7c:12:6d:84:3f:61:51:
f3:0d:eb:ef:d4:be:f6:3b:71:36:27:77:d1:e4:2a:7b:25:b2:
49:40:f1:d5:2f:3f:82:02:18:3a:b4:c6:7f:07:a3:f6:8e:91:
f6:e6:9b:88:6b:42:d1:72:c3:4d:41:05:8c:dd:0c:ad:24:35:
6b:25:a4:93:24:2b:b6:49:ad:40:2f:63:a2:d7:39:47:30:11:
bf:8a:81:e0:d8:6a:0d:a0:fa:62:55:71:2a:74:70:43:53:1e:
94:bf:63:8f:df:18:91:57:4b:a9:4d:b0:c7:3d:47:1e:79:12:
14:0c:10:01:a0:15:b5:ea:94:eb:a4:7e:3a:90:96:3c:ea:70:
0f:66:07:b7:ee:f4:23:c8:c5:16:b4:0a:9c:a1:b2:ec:0e:46:
52:37:56:b9:0f:02:02:23:a6:cd:0f:df:34:57:28:02:ff:22:
67:91:a7:ee:cc:cc:a2:ca:cd:e5:39:70:2c:5a:ac:b2:90:46:
94:cd:e3:b3:6e:01:42:a4:2a:dc:d6:ac:1b:c8:e5:f4:a2:64:
38:1c:2f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org