Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tPtqCw8zAlviynlnFgAfLMsNCw0.roa
File: tPtqCw8zAlviynlnFgAfLMsNCw0.roa (raw, json)
Hash identifier: mz6vv5pLCdqBj5x22PDKulf8C1nNJ6axMBhe5LuwzNM=
Subject key identifier: B4:FB:6A:0B:0F:33:02:5B:E2:CA:79:67:16:00:1F:2C:CB:0D:0B:0D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01867E854115A0CB1A28EA749EFD380556CF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tPtqCw8zAlviynlnFgAfLMsNCw0.roa
Signing time: Thu 23 Feb 2023 13:45:07 +0000
ROA not before: Thu 23 Feb 2023 13:45:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16628
IP address blocks: 185.218.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Apr 2023 10:09:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:85:41:15:a0:cb:1a:28:ea:74:9e:fd:38:05:56:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 23 13:45:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4fb6a0b0f33025be2ca796716001f2ccb0d0b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:05:11:88:15:bf:d3:54:62:dd:e8:19:19:9b:
de:2f:a8:21:66:7f:ba:8f:14:60:ea:42:e2:31:e8:
f9:96:f6:cd:97:be:b4:24:e0:86:a7:59:c2:a0:e3:
f7:69:80:6e:33:2f:a0:6e:f3:61:fc:b1:14:d7:ae:
58:7b:f8:02:1b:d9:6d:85:e8:37:0a:68:b8:5d:99:
2b:b2:fe:9b:66:0a:be:75:d1:a6:a8:8e:8a:1f:00:
f2:cd:0c:3d:12:01:ca:31:55:ef:2d:55:e7:9f:a0:
46:74:5c:27:b8:a5:92:e8:c5:05:43:26:a5:04:7a:
fc:18:21:61:72:89:d4:5c:18:be:a9:a6:0b:5e:75:
c3:cb:84:5f:da:fa:db:4d:1c:17:16:64:c3:0d:b3:
b6:15:97:66:b3:3d:00:ed:cd:a6:db:3e:bc:72:41:
d5:2a:26:54:ee:d4:d0:5f:f3:15:7a:30:c6:99:6d:
fe:f5:19:37:6d:1f:0f:01:ac:05:c1:25:6c:73:d4:
34:1e:e9:c0:ce:ce:32:f0:e8:5b:07:b6:ae:1c:00:
e5:be:f8:e7:d9:ee:ee:0b:02:de:c2:0b:35:bd:52:
09:1b:39:6b:70:a7:9f:48:8f:d3:b7:8e:69:b2:0e:
2e:68:06:d8:18:47:8d:64:90:ef:86:e1:78:df:96:
ea:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:FB:6A:0B:0F:33:02:5B:E2:CA:79:67:16:00:1F:2C:CB:0D:0B:0D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tPtqCw8zAlviynlnFgAfLMsNCw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.20.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:77:58:b9:0e:b4:22:6c:cb:28:dd:3b:5c:09:eb:b1:09:5f:
b6:24:94:87:81:64:58:d4:31:f0:55:5e:86:e7:32:3c:36:8a:
41:63:79:73:44:3d:7f:62:5e:db:47:f6:50:6b:12:6d:cc:0a:
73:d9:8c:2c:5a:41:62:76:f0:24:dd:d7:75:25:d7:9f:a9:d9:
e1:b3:39:aa:b0:79:91:3a:38:4a:46:4e:6d:59:84:cf:85:ea:
36:2e:18:9b:a8:16:0b:f1:3d:33:3c:6a:b3:7f:48:5a:f0:f9:
26:4f:cf:d9:12:3b:f8:1f:ba:05:3f:bd:93:cf:32:4e:47:48:
18:4d:3b:37:6f:d8:d9:ce:e5:54:b7:75:0c:bf:f6:7d:67:63:
aa:43:bf:0e:37:57:56:cc:05:0b:5c:5b:1d:46:07:da:0b:3f:
d7:4d:32:da:3d:a2:c3:b8:72:ca:50:c0:79:ce:14:52:a2:8f:
dd:96:5d:e1:c2:23:e1:14:5d:42:73:ad:6c:60:3d:04:92:1f:
fe:2a:e1:cb:42:dc:7f:b2:b6:d6:2d:e0:03:40:7a:8d:35:34:
f2:fe:6a:f8:f3:3f:0c:9d:3b:b0:1c:37:f0:64:6d:69:6a:fa:
e0:be:73:c4:d5:be:1b:54:fd:f7:0f:73:77:16:08:71:1b:6c:
cc:ae:ec:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org