Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vorU93KP0lP07U2hZ2U6jKI9KOw.roa
File: vorU93KP0lP07U2hZ2U6jKI9KOw.roa (raw, json)
Hash identifier: /1IjkA+g3fGcjrOSqynARsxEHyKcShxMzz9gue/YRK0=
Subject key identifier: BE:8A:D4:F7:72:8F:D2:53:F4:ED:4D:A1:67:65:3A:8C:A2:3D:28:EC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01891CC34C0E5A23C969046FF94D8A16B346
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vorU93KP0lP07U2hZ2U6jKI9KOw.roa
Signing time: Mon 03 Jul 2023 17:18:28 +0000
ROA not before: Mon 03 Jul 2023 17:18:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397563
IP address blocks: 185.225.20.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.21.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Aug 2023 18:04:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:c3:4c:0e:5a:23:c9:69:04:6f:f9:4d:8a:16:b3:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 3 17:18:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be8ad4f7728fd253f4ed4da167653a8ca23d28ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:46:4c:9a:99:66:19:32:27:d7:30:e4:68:00:
a7:90:d4:b6:23:99:9c:0b:88:66:5f:2b:f1:fd:7b:
0d:48:b1:54:e9:8c:e5:2f:ed:c8:9a:22:bf:a6:b1:
c8:ce:a2:7c:5a:75:bf:a3:d5:06:2a:9e:f9:dc:c0:
e6:bb:9d:21:8c:9a:a0:64:08:e5:2b:16:1c:24:d2:
b0:6d:de:f2:f7:b8:46:7e:09:91:d3:ae:94:11:da:
c2:fb:c3:f8:d7:38:cf:47:2d:9c:b2:a7:17:af:87:
8f:37:15:36:60:15:d6:36:cf:0f:fe:1d:3d:c6:58:
3e:9b:2f:ea:3c:92:f8:67:96:0e:6a:96:31:5f:d9:
9c:03:5b:61:20:e4:c1:15:ac:de:55:bc:e9:61:f4:
08:e0:29:db:cb:03:43:59:54:3d:ef:b5:d2:9f:9f:
15:5c:31:8a:c1:16:31:cd:98:6c:e4:3d:00:df:d0:
45:14:0d:86:2e:b8:49:cb:b9:58:d9:9a:06:d0:a0:
d6:b8:3b:39:e6:96:0a:7d:72:2b:d5:81:6b:5e:0b:
49:55:20:57:b4:e0:3c:81:94:b6:2c:c0:c6:b3:9e:
43:2a:41:2b:3e:e3:bc:78:4f:81:e7:cd:17:d3:cd:
45:3d:1f:99:39:4c:8f:11:8c:2f:d0:46:6b:c4:f3:
2e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8A:D4:F7:72:8F:D2:53:F4:ED:4D:A1:67:65:3A:8C:A2:3D:28:EC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vorU93KP0lP07U2hZ2U6jKI9KOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.250.0/23
185.221.20.0/23
185.223.83.0/24
185.225.20.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:83:9a:ef:34:44:3a:ee:f3:dc:9e:69:44:5a:62:ce:d5:87:
25:53:6f:97:f4:63:50:e4:21:b8:6d:a4:be:33:40:23:98:ce:
29:1f:3c:a1:e1:99:cb:d5:d5:7d:49:a7:c8:8f:d1:7c:b4:72:
1f:36:e6:e8:f5:ac:3c:f8:44:ae:50:33:29:80:84:05:2c:ef:
7d:22:ca:a7:8c:0b:57:05:05:d3:14:ea:97:45:01:bf:0f:aa:
d3:a1:ef:6b:a6:a8:0d:3b:2b:7e:c9:c8:53:fa:29:d7:03:91:
07:b4:ef:6e:14:3e:ca:6a:f3:84:cc:5e:78:40:70:60:ed:61:
81:e8:53:2f:40:1e:a5:6e:c8:f2:98:4f:29:53:eb:c0:58:ee:
e8:65:10:56:bb:a5:24:50:a4:f2:b7:a3:98:e6:71:dd:05:56:
df:eb:4c:db:32:14:e6:7d:dd:1e:3b:7a:32:90:56:1f:38:ec:
f0:1a:00:68:6a:d8:eb:94:38:ca:21:9f:9e:ca:3c:d2:20:5a:
02:ed:2f:fc:a3:b1:fc:87:ba:86:b6:db:56:06:4a:39:d6:4b:
4d:37:b8:71:d1:8a:2f:f6:99:5c:73:e7:21:d5:4d:96:92:bd:
03:84:2e:31:f1:8b:26:4b:4d:fd:11:c7:1c:26:d2:63:e8:f5:
42:4f:62:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:30 2024 by rpki-client on console-ams.rpki-client.org