Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r8G3NdUlYn8DpdEMJQte5NWF1no.roa
File: r8G3NdUlYn8DpdEMJQte5NWF1no.roa (raw, json)
Hash identifier: n9c1+V8bsquF2M1WeoQMvx45nEnbFzNWrGya6mM/8Ug=
Subject key identifier: AF:C1:B7:35:D5:25:62:7F:03:A5:D1:0C:25:0B:5E:E4:D5:85:D6:7A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BA9318ABE855014D847B9CB6F64957211
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r8G3NdUlYn8DpdEMJQte5NWF1no.roa
Signing time: Tue 07 Nov 2023 09:51:18 +0000
ROA not before: Tue 07 Nov 2023 09:51:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216474
IP address blocks: 185.228.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:31:8a:be:85:50:14:d8:47:b9:cb:6f:64:95:72:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 7 09:51:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afc1b735d525627f03a5d10c250b5ee4d585d67a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:09:90:7f:2d:b3:73:9b:af:25:d7:dc:d9:eb:
91:4e:0f:dc:c0:4b:cf:df:b1:4c:b4:7e:d8:13:5f:
a5:fc:75:48:f0:57:11:15:9d:2f:f9:ee:38:bc:a1:
a7:be:40:25:96:cd:b1:21:81:b3:27:f2:d0:49:8c:
0a:99:f2:98:de:66:2c:2a:2a:15:87:a3:41:d4:fb:
02:99:6e:cf:53:2e:ed:9b:50:88:21:c0:bb:36:18:
46:ea:f9:df:b5:34:2c:06:00:07:29:27:21:6d:42:
6c:69:fb:ac:74:83:58:a5:01:23:68:5f:8e:4d:27:
3b:e2:e6:93:e6:64:e1:5b:0d:3b:ca:35:ed:78:9d:
18:7b:eb:2b:d0:52:73:9b:7e:13:f2:b1:6d:51:db:
17:5e:20:ea:1f:db:6c:c0:ab:f9:75:d4:e1:c3:d3:
a1:ef:ac:d7:b6:81:48:cb:ec:8a:80:7e:65:10:92:
6d:cc:9d:63:6d:ee:00:30:29:00:11:ca:33:23:97:
d3:c0:73:ca:63:31:c1:0b:d5:f2:d1:f8:03:a2:59:
88:ac:cd:14:a8:fe:be:17:02:f0:ba:ef:ad:2f:a1:
0e:2b:e6:41:b5:2c:b6:eb:17:b5:65:fa:fc:1c:41:
ea:da:02:fa:a8:61:1d:1d:08:28:66:1b:d5:ee:b9:
c9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C1:B7:35:D5:25:62:7F:03:A5:D1:0C:25:0B:5E:E4:D5:85:D6:7A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r8G3NdUlYn8DpdEMJQte5NWF1no.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.75.0/24
Signature Algorithm: sha256WithRSAEncryption
70:e5:f1:e0:02:43:f4:99:c1:3f:6e:48:c6:f0:7d:f2:8c:a9:
e9:10:78:a2:eb:5e:81:70:ea:35:37:a4:b5:82:f3:31:ce:c6:
54:c6:d4:19:99:17:fb:3d:b7:e3:bb:b5:91:b9:d6:17:0b:a3:
8c:55:57:94:44:0a:ea:69:cd:e7:38:51:6f:73:a3:2f:b4:0e:
84:d7:32:63:15:5d:28:a5:45:c1:34:09:52:a3:97:fc:25:63:
98:dd:12:ff:03:b2:56:94:cb:8b:51:8d:42:12:26:62:ef:9f:
ad:52:76:00:31:6d:9e:cd:be:4e:15:71:80:47:39:1d:06:97:
ef:44:33:8d:68:64:5a:07:46:89:a7:92:fc:09:fa:09:b4:01:
dc:a3:2e:b2:e2:b3:4b:20:a8:0e:0f:1b:e2:f1:10:82:6c:5e:
4a:37:98:2e:d7:2f:05:24:07:d2:bd:bf:b0:09:79:21:ac:0b:
3c:09:81:73:00:17:71:7e:b8:64:bb:c1:79:3a:33:67:f4:ee:
9a:ba:35:40:55:4d:77:a1:b0:22:95:ea:87:51:7c:cd:99:b1:
06:3c:34:cb:54:14:a5:47:45:54:4f:51:e4:a5:e1:13:ea:46:
74:e4:4d:98:08:66:a6:b5:1a:25:26:38:13:5b:91:f2:41:ef:
c7:f5:c0:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org