Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/wkaE4Hol8UMd6voqOy8W3frsCok.roa
File: wkaE4Hol8UMd6voqOy8W3frsCok.roa (raw, json)
Hash identifier: IHsTiT4mXTGxDNNrONmybXNTqyATUVrabZvzTgFq5RY=
Subject key identifier: C2:46:84:E0:7A:25:F1:43:1D:EA:FA:2A:3B:2F:16:DD:FA:EC:0A:89
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC80294045BBA97DE66129D72F6C3D792
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/wkaE4Hol8UMd6voqOy8W3frsCok.roa
Signing time: Tue 02 Jan 2024 02:31:01 +0000
ROA not before: Tue 02 Jan 2024 02:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211440
IP address blocks: 185.240.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 14:57:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:94:04:5b:ba:97:de:66:12:9d:72:f6:c3:d7:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c24684e07a25f1431deafa2a3b2f16ddfaec0a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5a:f6:6e:6d:e0:bd:c9:38:1a:fc:8c:c4:2b:
d6:38:ee:a4:b1:8d:4c:1e:bb:9e:95:17:eb:eb:e4:
f6:ed:f1:57:d9:b5:e5:f9:d9:2d:3f:ea:29:84:e0:
a7:92:db:6b:3f:cc:bf:ad:eb:e7:24:4c:8d:f0:95:
b8:18:00:db:e6:cf:f6:3f:2f:b3:c2:32:9d:86:ee:
4e:a7:0c:c1:30:94:81:6d:ca:78:d6:a2:5f:65:84:
fd:d5:e2:2f:62:3b:e6:9e:c1:03:27:43:84:cc:b3:
cf:6d:21:82:00:99:aa:b8:7a:a3:a3:1f:0a:2c:be:
b6:ae:d8:14:6d:92:95:33:55:28:d2:63:cd:da:bc:
db:6a:93:c5:f7:b4:32:aa:f9:8d:47:ec:c7:59:16:
65:5b:b9:34:aa:ad:74:44:e3:e7:04:fd:f9:7c:f8:
a0:f8:6b:5f:f2:63:b2:df:c4:0a:6f:5a:48:55:5a:
37:6a:8f:50:6c:02:9f:66:a3:ce:22:23:58:53:db:
c3:4a:7e:f0:ad:86:9e:61:d9:d0:22:dd:ed:05:b9:
18:5b:9e:7a:19:e7:fd:44:a5:fb:e1:6d:8e:08:50:
1d:7c:1e:d6:25:70:81:ed:5d:fb:83:ed:d5:97:a6:
f4:99:2e:03:4e:cd:27:3e:f4:f5:5e:67:69:61:bf:
c1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:46:84:E0:7A:25:F1:43:1D:EA:FA:2A:3B:2F:16:DD:FA:EC:0A:89
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/wkaE4Hol8UMd6voqOy8W3frsCok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.123.0/24
Signature Algorithm: sha256WithRSAEncryption
91:2c:a1:73:42:3a:d6:2b:2d:f9:8a:2f:c0:b7:0f:4c:4f:64:
c3:ef:0a:a5:88:30:8d:1f:74:3f:fe:bf:23:2f:eb:9c:a9:ad:
c8:4f:88:a7:cf:ae:cc:38:53:98:e3:c9:2e:3f:c8:85:18:e5:
ed:21:f6:1c:2d:60:aa:d2:8e:79:e5:76:fb:93:77:bf:25:57:
93:d3:be:e4:ca:41:7d:35:87:dd:9e:ae:d9:c4:52:51:15:ef:
53:ce:c4:69:53:e4:c1:c4:ff:f0:c7:00:ab:d5:2a:d4:27:b6:
bd:01:84:c7:5d:09:f5:fa:a8:23:d9:5d:76:6f:f8:81:c8:b7:
d1:11:5b:40:a2:e1:1b:83:69:a7:e4:c8:0b:30:2d:d6:18:b0:
3b:61:a8:96:89:0a:0d:98:bd:03:c7:f1:c0:82:4f:f2:c8:32:
12:0e:68:00:92:1d:81:a5:80:5f:84:12:0c:07:0b:58:42:9f:
c1:b7:b9:e5:50:79:c4:e8:36:a9:31:2c:5e:d4:6f:6a:64:3f:
5d:ba:a6:43:91:4a:83:2a:35:06:50:66:3b:1e:ad:4e:21:ec:
36:46:bc:47:a8:5b:73:ef:e9:e8:64:ec:d5:09:3e:92:d7:96:
8b:0e:5e:fa:17:09:8f:03:0a:fb:47:74:38:31:50:af:e3:cb:
05:03:a2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:30 2024 by rpki-client on console-ams.rpki-client.org