Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ucFd9iCq5X9okaJt8lfhayJ0HyQ.roa
File: ucFd9iCq5X9okaJt8lfhayJ0HyQ.roa (raw, json)
Hash identifier: jkZAHVJRSkeWHhTBhOVAemfqG/FJjhTfQi5guHgN4l8=
Subject key identifier: B9:C1:5D:F6:20:AA:E5:7F:68:91:A2:6D:F2:57:E1:6B:22:74:1F:24
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018793F110CC224F1FAE30BF9984B5B6FB81
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ucFd9iCq5X9okaJt8lfhayJ0HyQ.roa
Signing time: Tue 18 Apr 2023 10:37:41 +0000
ROA not before: Tue 18 Apr 2023 10:37:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 185.108.204.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 19 Apr 2023 08:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:93:f1:10:cc:22:4f:1f:ae:30:bf:99:84:b5:b6:fb:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 18 10:37:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9c15df620aae57f6891a26df257e16b22741f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:45:06:f8:41:b1:ba:23:50:ba:0c:a7:9e:5e:
c3:ee:4d:8d:8f:ee:4c:65:19:b9:87:20:6e:73:c6:
33:aa:8a:d1:7a:22:10:73:88:e3:11:bd:43:e6:62:
39:80:e6:e0:cb:74:29:2f:95:f5:91:cd:32:88:ee:
a7:65:89:cf:78:3d:40:b1:4c:6a:b2:01:36:97:99:
9b:48:6b:ab:95:91:8f:b6:29:9a:c8:95:e1:f8:a6:
cd:35:15:5e:ef:ba:79:f0:51:79:7f:3b:7e:2e:f1:
98:5d:4e:65:66:3b:7e:12:dc:c5:32:5e:d7:e0:2f:
83:e3:b5:b8:11:7d:57:14:8e:1e:94:b2:8f:d7:a0:
89:de:5e:10:c8:ca:bb:d2:65:38:f1:44:8e:67:70:
3c:22:58:0b:e7:f8:54:f8:80:04:25:f7:da:21:dc:
a9:b5:97:6a:be:fc:4c:3f:47:52:81:c4:8b:fd:ec:
df:a7:0a:78:21:df:78:0a:76:65:5a:5b:0f:0c:6b:
09:da:ea:67:62:6b:a3:05:25:ce:53:5f:10:47:18:
e0:f6:d0:0d:7d:ad:27:60:b0:d3:ae:90:14:0b:72:
2a:12:1e:65:34:30:c2:09:4f:38:78:2b:e0:c0:11:
71:92:11:f7:e4:e6:80:c0:ae:17:08:4b:88:e7:91:
92:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C1:5D:F6:20:AA:E5:7F:68:91:A2:6D:F2:57:E1:6B:22:74:1F:24
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ucFd9iCq5X9okaJt8lfhayJ0HyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.204.0/23
Signature Algorithm: sha256WithRSAEncryption
53:80:0c:89:b3:c4:86:84:c9:32:98:ab:7d:6c:d8:dc:4b:fd:
ca:63:df:99:50:db:53:2e:01:97:51:9f:0a:2a:56:c6:6b:fc:
ec:6b:44:1a:27:3a:36:11:3d:bf:cc:71:78:f3:41:fd:36:20:
40:08:58:85:ec:42:cf:7b:75:45:64:48:e1:a1:ad:47:16:3c:
91:90:6c:33:1f:ba:ed:8c:e1:43:8a:b5:c2:b2:df:47:30:a2:
17:d7:14:60:14:8d:d9:ec:60:8d:d1:06:0d:e0:31:87:c5:c3:
e3:2b:5f:ce:d8:43:ac:f7:e4:5b:07:40:a7:c9:73:cb:35:b1:
52:53:e9:a3:bc:c2:4a:3a:fc:b1:32:46:19:de:8b:5f:a9:0d:
1f:d6:25:31:07:e2:59:4b:14:d0:ac:97:d4:19:c2:8a:11:b9:
60:d1:1b:54:4b:f3:3d:64:dc:cd:51:85:b9:48:c3:c2:17:f9:
3e:5d:9e:21:a2:d4:12:3e:04:6e:fd:5d:2f:cc:71:5b:d0:10:
6d:0c:49:3b:79:26:53:fe:f9:ab:ef:d2:23:5e:a0:43:47:3b:
68:60:c7:4e:13:eb:83:63:70:0b:2e:a5:11:b8:f1:21:57:36:
83:ca:24:ff:b3:2e:5f:0e:c6:10:2c:3c:46:d1:5a:b3:69:1d:
02:a2:1a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org