Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tbNsLzn87MzbOSvzrTTcEoiew-o.roa
File: tbNsLzn87MzbOSvzrTTcEoiew-o.roa (raw, json)
Hash identifier: sq+T48zvg0jWOquP28I3u/kd6n0cpm9axwZCjRg1gT4=
Subject key identifier: B5:B3:6C:2F:39:FC:EC:CC:DB:39:2B:F3:AD:34:DC:12:88:9E:C3:EA
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B63C1550DA29AFF70D33FB5A1FDCC0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tbNsLzn87MzbOSvzrTTcEoiew-o.roa
Signing time: Mon 02 Jan 2023 09:00:46 +0000
ROA not before: Mon 02 Jan 2023 09:00:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201446
IP address blocks: 185.150.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:3c:15:50:da:29:af:f7:0d:33:fb:5a:1f:dc:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5b36c2f39fcecccdb392bf3ad34dc12889ec3ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ba:6b:54:cb:64:78:a5:b6:91:b8:29:ae:9b:
06:c5:6e:47:a0:e7:70:f8:47:e8:ad:4a:f0:d2:64:
4c:9f:fe:e7:e7:5f:d9:85:78:66:9a:9a:51:e7:63:
64:98:f7:48:c6:7d:3d:78:b2:f3:45:81:93:a1:f6:
0c:44:f6:c3:81:17:86:a4:f3:10:ed:1e:84:a4:6a:
21:0c:b2:3f:d8:90:ff:bf:30:c9:ac:b8:64:5e:43:
a9:f8:fc:48:3d:94:81:b8:56:dc:80:cc:6f:84:89:
39:ba:7b:d1:c7:3f:e9:82:31:fc:32:43:ef:aa:73:
84:df:cd:c9:93:a5:b2:9d:5e:db:40:7a:fc:17:39:
0d:e3:8c:dc:20:31:97:e4:0b:9b:cf:76:95:2c:1c:
fd:75:2f:56:c5:8e:f8:15:46:32:bd:dc:22:0c:c9:
8f:0a:84:44:c4:33:13:c6:03:71:d4:58:8a:00:34:
b0:71:f7:41:5f:57:39:56:0f:5a:cc:00:8c:39:e1:
a5:6f:7a:28:27:08:b6:fc:16:80:5d:9d:f6:48:84:
b9:d8:d6:00:64:6d:dd:8a:6b:b4:4e:46:8c:0d:40:
a0:86:bd:f2:5f:28:5d:fa:15:f5:be:f7:44:7c:d6:
21:04:4b:5e:ba:6a:cb:6c:e7:c3:78:01:d1:11:f3:
8b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B3:6C:2F:39:FC:EC:CC:DB:39:2B:F3:AD:34:DC:12:88:9E:C3:EA
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tbNsLzn87MzbOSvzrTTcEoiew-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.76.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f9:1a:f2:5b:c3:5b:10:04:f9:0c:87:1f:7c:a1:1f:06:a3:
ba:9c:47:4f:2e:06:61:48:07:22:78:cb:43:86:ae:63:7d:62:
ca:14:1e:85:89:71:da:51:4d:be:21:26:be:18:60:47:f9:b3:
70:6c:bd:97:4f:0a:75:b7:90:56:20:36:92:be:ed:61:19:57:
02:b2:a0:27:4b:1c:cc:53:fa:5a:d6:bd:5b:cf:f8:6e:df:78:
3a:96:74:87:af:27:a1:4e:e0:9f:97:f1:11:32:4c:0a:d9:ae:
1b:31:57:1f:fb:fd:df:0d:b7:51:cd:53:23:92:d3:b1:57:45:
7d:41:fd:f9:6e:a1:f2:92:16:b5:e7:19:47:ad:c1:8e:92:3e:
1b:37:1b:67:7d:2f:af:54:fc:ae:18:2e:11:7a:58:29:b9:68:
48:4c:4c:57:89:e1:d6:de:be:7c:73:53:2f:9f:8c:04:64:c4:
4b:b2:b1:22:b8:04:b7:21:23:48:81:ba:f2:d8:09:92:6c:9e:
70:53:30:cb:d3:9d:5b:c8:90:c3:77:9e:6c:54:9f:87:c9:cd:
75:5e:91:17:65:8f:6d:1d:71:ce:0e:05:7e:a7:aa:8c:b0:f1:
d7:f2:40:5c:9e:ea:e7:6e:42:cc:69:5e:79:94:d3:93:69:96:
b6:d2:f5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org