Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rm4gyWKS9x2kl3hXKiBANTM4w8c.roa
File: rm4gyWKS9x2kl3hXKiBANTM4w8c.roa (raw, json)
Hash identifier: 31E6yvFkXydSE965eEo/hEeTI4PGqu5cqjCATTb8zEI=
Subject key identifier: AE:6E:20:C9:62:92:F7:1D:A4:97:78:57:2A:20:40:35:33:38:C3:C7
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A5FDD2B88DE5ABD491AD4C1D6D5EA14F8
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rm4gyWKS9x2kl3hXKiBANTM4w8c.roa
Signing time: Mon 04 Sep 2023 11:04:04 +0000
ROA not before: Mon 04 Sep 2023 11:04:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.209.36.0/23 maxlen: 24
185.199.159.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
185.238.228.0/22 maxlen: 24
185.36.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 19:49:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:dd:2b:88:de:5a:bd:49:1a:d4:c1:d6:d5:ea:14:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 4 11:04:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae6e20c96292f71da49778572a2040353338c3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7e:f0:59:cd:5f:b1:87:70:25:65:27:d8:47:
6d:6d:50:73:70:07:2e:9e:cc:a1:1e:e4:b0:80:22:
eb:8a:54:1f:7d:59:0d:56:ac:02:91:d3:38:15:ee:
6e:46:b6:05:5e:27:a3:88:0f:66:8f:23:4e:b3:25:
c9:39:6c:fd:ae:57:3a:78:63:d3:ee:5a:4c:0a:a3:
22:f1:cb:00:0d:20:a1:8b:93:a3:9e:6e:8d:8f:8c:
60:57:e2:1d:62:7b:4f:44:23:9b:7b:73:92:58:98:
db:b2:02:fc:53:de:fa:a9:7f:68:98:c3:ec:07:9b:
c3:e9:7d:9e:1e:36:5b:df:19:5c:18:5d:47:4d:e3:
39:77:37:5a:0d:90:70:8f:a6:7b:4f:cc:79:9c:74:
94:e0:e2:65:0e:57:11:50:03:f5:43:f9:48:a0:ad:
95:97:f9:30:b8:7f:d2:6b:78:be:f4:1e:f5:9a:22:
3b:06:b1:f1:de:f4:b9:0d:a3:62:ea:d3:4d:e0:01:
85:d4:d5:ef:15:99:cd:4c:47:69:4e:b1:8d:65:43:
e5:6a:04:b8:6b:45:76:7d:30:22:99:27:d9:96:8b:
e5:99:a0:37:33:ff:69:8f:63:a0:7a:35:0c:7b:4a:
d9:ce:94:29:7b:9d:8e:a1:33:9d:b1:58:5c:f5:8c:
e1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:6E:20:C9:62:92:F7:1D:A4:97:78:57:2A:20:40:35:33:38:C3:C7
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rm4gyWKS9x2kl3hXKiBANTM4w8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.204.0/24
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.210.152.0/22
185.223.76.0/24
185.225.2.0/24
185.226.105.0/24
185.226.107.0/24
185.228.74.0/24
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:70:48:2d:ac:ac:57:39:0f:48:a8:c0:f4:3a:3f:e0:09:b0:
50:be:29:72:69:c3:57:14:4b:b9:da:9d:bf:53:92:74:78:85:
e2:4d:d8:be:8a:a6:b3:20:69:f0:8a:7b:97:82:34:b7:06:67:
18:eb:9b:b4:23:93:74:54:b3:b1:16:7c:d7:aa:7f:91:ae:9c:
9c:41:e7:98:92:dc:90:3c:ae:47:95:b3:84:7e:54:15:fd:a3:
4b:a1:a7:24:ac:76:dd:c7:4f:4b:62:b0:ad:21:cd:bc:b3:48:
c0:eb:61:71:8c:8e:ec:27:3e:c8:27:ad:bb:da:77:73:60:3e:
fb:b8:09:80:49:df:cd:9d:68:fb:95:2e:93:e6:5a:71:c0:4b:
24:9c:b1:b4:e6:cf:5f:04:60:6b:45:5a:eb:86:70:bb:26:c6:
93:82:30:4f:99:85:df:ad:b6:de:ae:87:7c:df:ed:87:66:6a:
d6:5a:4a:48:5b:c4:62:18:77:33:0a:3c:19:75:6c:bb:fb:4f:
ed:de:29:42:ad:ba:63:59:64:3e:6e:ec:31:07:b0:8c:f8:14:
c2:be:a5:51:bf:fd:d1:c2:e6:88:7c:2e:c1:e8:d6:10:7b:45:
21:98:b2:81:37:2b:a8:5f:9e:7c:65:55:ad:1d:52:a6:7f:de:
72:72:92:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org