Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rhNQtdeu5esi5f9vAZQnBN0CRHc.roa
File: rhNQtdeu5esi5f9vAZQnBN0CRHc.roa (raw, json)
Hash identifier: yIm6AlC3LnA/mszMT9kWQFQFXpyHWSJlkdElhmEvRbo=
Subject key identifier: AE:13:50:B5:D7:AE:E5:EB:22:E5:FF:6F:01:94:27:04:DD:02:44:77
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AF0EC98ED826FF2D0415D5A88CA815958
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rhNQtdeu5esi5f9vAZQnBN0CRHc.roa
Signing time: Mon 02 Oct 2023 15:05:52 +0000
ROA not before: Mon 02 Oct 2023 15:05:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205733
IP address blocks: 185.220.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Dec 2023 22:18:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:ec:98:ed:82:6f:f2:d0:41:5d:5a:88:ca:81:59:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 2 15:05:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae1350b5d7aee5eb22e5ff6f01942704dd024477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:5b:81:ff:9e:a7:fe:cb:7d:e1:74:be:04:c5:
07:5c:81:06:a3:9d:e0:73:7a:1a:3f:38:9c:a7:cf:
65:4e:2a:37:60:56:50:40:9f:df:73:72:da:6b:d9:
0d:b5:83:47:3a:bc:da:e1:d3:29:44:aa:ed:33:52:
5b:21:ad:2d:2e:a4:c0:41:03:81:58:95:c3:01:4c:
d7:da:19:1d:d2:d1:46:50:c6:4b:ec:58:61:be:bd:
59:e9:a2:3e:f8:96:81:cb:27:78:88:d4:47:b4:92:
4a:f6:e4:5a:62:79:eb:a9:bc:2e:4e:0f:9f:c8:77:
8e:68:07:e4:2b:2b:95:f3:7b:a8:bf:da:65:cf:f8:
de:47:fa:ba:3b:14:58:d9:e9:e9:45:d9:1e:ea:ac:
f4:e6:06:29:24:71:16:ba:7f:ea:38:07:81:6d:f2:
22:8d:ba:30:03:05:1b:31:14:a0:14:48:71:db:94:
4d:91:2a:1c:85:94:9f:bf:93:c9:65:ce:55:be:69:
b3:ad:12:19:49:75:68:1a:9a:d3:41:b1:2b:ec:b5:
5a:75:14:de:88:f5:61:d1:62:f2:30:67:b8:a9:2f:
a2:8c:9f:f2:91:57:69:74:6a:e4:60:ec:31:2d:0a:
bf:1e:f3:d1:ed:81:8f:4e:5c:33:93:7e:d5:5d:07:
55:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:13:50:B5:D7:AE:E5:EB:22:E5:FF:6F:01:94:27:04:DD:02:44:77
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rhNQtdeu5esi5f9vAZQnBN0CRHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.251.0/24
Signature Algorithm: sha256WithRSAEncryption
15:69:93:bc:72:4a:c5:42:e7:3b:0a:be:c9:04:56:a3:1a:41:
cc:38:28:01:74:61:55:40:39:2d:fe:e7:83:8e:1a:46:5a:8d:
bd:77:63:50:1e:d1:28:fb:39:c4:dd:6a:41:ed:70:05:12:ec:
49:f2:b6:cf:12:35:71:3c:03:25:76:bc:42:2d:72:a6:65:cc:
63:8d:19:85:a7:5a:83:d6:e6:c4:f0:74:93:5a:6a:98:27:10:
69:ea:08:46:86:8e:b6:ea:92:99:ff:44:0e:57:92:f6:22:76:
d3:74:4d:28:52:c5:7f:31:6e:94:bc:93:42:5c:0c:c7:cd:0d:
e2:82:6f:98:cd:6d:c5:f1:46:ca:ca:51:4f:d6:5a:50:05:b6:
a6:f1:b2:a3:f4:45:75:fb:d1:2b:64:17:59:cd:0b:ed:54:0c:
aa:d9:4e:58:16:75:8d:16:ff:bd:8e:ff:b7:b4:c6:d9:2a:89:
2d:b5:28:6f:c8:20:b4:1a:54:c7:a2:4b:ee:ee:e6:6a:6b:86:
13:93:27:58:23:43:87:23:7a:3d:a9:11:0e:53:93:06:af:6f:
50:3d:54:88:65:bf:f5:8b:f5:09:fe:d1:37:2d:50:8d:b2:02:
93:3b:57:a0:23:47:90:a7:7c:5c:e8:bd:13:15:c9:c9:a1:85:
4d:78:92:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org