Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vFSOZipJb9TyN_c0eH2HeOM92xQ.roa
File: vFSOZipJb9TyN_c0eH2HeOM92xQ.roa (raw, json)
Hash identifier: +ENeVh0ryQKHqAEIUZeY/8eykU9LMb1dXQA2ZCgBYzM=
Subject key identifier: BC:54:8E:66:2A:49:6F:D4:F2:37:F7:34:78:7D:87:78:E3:3D:DB:14
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC80281C5EB2CE4BC897672AE1DFD64E8
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vFSOZipJb9TyN_c0eH2HeOM92xQ.roa
Signing time: Tue 02 Jan 2024 02:30:56 +0000
ROA not before: Tue 02 Jan 2024 02:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60721
IP address blocks: 185.226.105.0/24 maxlen: 24
185.194.28.0/24 maxlen: 24
185.225.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 10:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:81:c5:eb:2c:e4:bc:89:76:72:ae:1d:fd:64:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc548e662a496fd4f237f734787d8778e33ddb14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c9:85:c7:dd:7a:7f:6b:30:f0:69:2e:db:66:
5b:d9:c9:a9:09:f7:0e:b4:a3:ed:de:ca:37:96:c3:
a6:65:1f:60:c1:b4:40:25:59:98:d1:ad:01:68:04:
54:3f:33:17:19:81:e6:c0:b2:51:d6:9f:d3:5a:0c:
9e:57:c9:f1:64:c7:b2:c2:10:de:ab:45:1c:54:eb:
3d:b1:26:89:89:a7:bc:b6:20:3b:26:a8:08:eb:28:
82:fb:f8:ed:64:40:b3:02:a6:f6:75:f8:c5:d4:58:
68:be:43:33:cf:de:1b:4b:58:91:36:82:37:84:0c:
0c:72:9e:f3:a2:5f:16:c5:87:c3:de:04:b4:ce:d7:
f0:8e:61:11:ed:57:ff:d3:76:6a:06:ff:68:b8:39:
0d:97:a0:f8:80:53:85:52:96:78:b9:d7:2b:ee:28:
b3:25:04:4f:38:69:92:f5:70:b2:4c:cb:06:c1:c9:
66:1a:29:61:1e:34:b3:07:6e:4b:02:a8:b9:6b:1e:
00:33:24:bb:09:1c:a8:7e:90:1c:4b:ac:72:bb:d6:
2a:23:98:3b:d4:b2:67:17:cc:b6:5f:91:90:3f:be:
94:ff:3e:3b:5e:de:7c:1d:e7:1d:55:66:23:96:22:
15:24:1e:aa:48:06:02:84:47:cf:f4:90:77:bf:40:
5c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:54:8E:66:2A:49:6F:D4:F2:37:F7:34:78:7D:87:78:E3:3D:DB:14
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vFSOZipJb9TyN_c0eH2HeOM92xQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.28.0/24
185.225.3.0/24
185.226.105.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:61:d2:86:8f:fb:45:1f:90:c1:2d:27:b0:7e:d2:f8:92:4f:
0a:12:17:d8:7f:c3:25:11:4e:95:e3:c8:d1:8f:d4:47:57:47:
d2:a3:9a:71:ab:bb:51:06:97:97:74:1e:56:14:bc:41:e6:16:
81:5b:9a:be:96:36:9a:6e:da:ba:79:fe:b0:84:e7:d7:c1:4e:
ec:1c:00:8b:4e:f3:85:24:06:45:f0:bf:7f:27:32:b0:f9:22:
4a:7b:8e:1d:b0:fd:0b:3e:3d:9b:c1:af:04:84:4f:0c:8b:26:
30:5d:e3:fb:15:56:d6:2d:25:e0:79:38:58:20:c8:13:2e:77:
96:ed:dd:1f:8c:02:69:5b:bf:30:c9:b4:0d:d3:1f:52:13:bf:
10:5e:3b:36:b6:72:7c:1a:11:63:47:7b:6e:cc:e2:72:2d:25:
2a:7d:9c:01:5c:18:f2:94:7f:cf:67:f6:db:f6:10:f2:21:f3:
0c:c7:2a:97:d8:03:54:e7:f3:4d:65:0b:6c:67:e0:4c:8d:f5:
44:49:2b:11:22:08:0a:d0:fc:bf:8a:88:4c:1a:de:2c:59:34:
27:97:bd:f3:d0:ca:8f:3b:f8:a4:33:b0:6e:a1:ac:1b:f5:37:
f9:b3:f2:a7:73:74:9c:fd:cf:9a:52:80:04:82:73:bc:d0:0a:
74:b8:0a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org