Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xS8v3_F-LiCsDzRuS2qITkZvMl4.roa
File: xS8v3_F-LiCsDzRuS2qITkZvMl4.roa (raw, json)
Hash identifier: a4OeBxjCF8irs41rHmUS2o1zteOVLSyP+LvlW7Hi7AE=
Subject key identifier: C5:2F:2F:DF:F1:7E:2E:20:AC:0F:34:6E:4B:6A:88:4E:46:6F:32:5E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0187BC9173F374548FB2708BD1504C27CD56
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xS8v3_F-LiCsDzRuS2qITkZvMl4.roa
Signing time: Wed 26 Apr 2023 07:57:41 +0000
ROA not before: Wed 26 Apr 2023 07:57:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16628
IP address blocks: 185.218.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Apr 2023 08:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bc:91:73:f3:74:54:8f:b2:70:8b:d1:50:4c:27:cd:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 26 07:57:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c52f2fdff17e2e20ac0f346e4b6a884e466f325e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f1:7f:f6:bd:47:e5:8d:38:a5:0b:bb:c6:cf:
16:d1:bc:5e:d8:02:b3:a8:81:53:eb:0a:91:9f:4b:
93:65:06:9b:1d:aa:1c:72:01:4b:f1:b1:80:2f:2e:
d2:9a:cc:c9:c2:41:4b:2e:6e:c1:57:b5:ca:41:ab:
ab:93:69:ea:3f:3a:3f:eb:aa:90:53:95:16:54:59:
08:da:ab:87:cb:65:bc:57:ef:7e:ba:e1:e9:8b:2d:
ed:49:90:cc:0c:98:ca:89:87:b2:8e:93:f3:c9:41:
98:ff:81:97:c4:58:db:4c:98:2b:6d:88:dc:61:f0:
63:dc:47:9b:c6:22:86:f2:54:ca:3c:33:34:5c:d0:
d1:64:9c:e7:34:92:b4:0f:dd:6a:e1:d8:43:5d:cf:
29:e5:3f:40:4e:6c:e1:9d:97:d0:12:e1:b2:47:bd:
31:3f:ee:4f:df:92:77:65:c8:8b:38:6c:ca:3f:02:
1d:61:83:a0:63:f5:15:08:22:15:9a:3e:1b:a9:43:
41:7a:ed:f7:29:66:60:62:64:42:18:b1:ca:0d:eb:
b0:a4:76:36:60:64:16:26:81:c4:4e:44:b3:71:79:
c0:f5:bf:9f:18:55:3d:dc:7c:16:d9:e2:c1:7b:12:
32:a1:88:bb:99:98:32:37:42:17:63:35:62:aa:c5:
3a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:2F:2F:DF:F1:7E:2E:20:AC:0F:34:6E:4B:6A:88:4E:46:6F:32:5E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xS8v3_F-LiCsDzRuS2qITkZvMl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.20.0/24
Signature Algorithm: sha256WithRSAEncryption
13:fb:af:99:83:97:ee:5b:51:c5:ff:9a:19:8e:39:05:ab:ed:
a2:b5:09:4a:dc:c9:4f:ac:06:2e:02:01:85:0a:39:b9:71:ca:
ba:14:1e:6c:8e:e6:aa:39:fe:c7:2a:fa:38:83:21:db:93:ca:
ff:2a:ee:fe:66:41:48:e1:06:04:fb:0c:d4:f8:f5:5a:ac:91:
04:00:9f:14:dd:d0:f5:47:8b:8c:ee:eb:05:ab:f3:8e:9e:5f:
b9:b5:31:55:19:b3:ee:02:f8:6e:dd:fe:a6:20:9b:16:be:69:
48:f3:e3:ab:d7:0c:4e:e2:ef:d5:08:47:cb:b7:82:bd:b2:4e:
37:14:23:67:f4:3e:7d:d2:34:e0:b7:1e:2d:6c:40:4b:e5:e7:
e5:a6:9e:04:68:be:8e:f7:80:46:92:d0:5d:94:ce:a0:7a:99:
d0:2e:f9:a6:2f:96:74:7c:5b:96:1a:8f:34:3b:64:f0:cf:8c:
af:b6:54:88:3a:5d:0d:6b:e5:4b:91:60:fa:61:7f:af:67:72:
3a:45:5f:4d:d9:fb:d1:dd:7a:4b:92:f3:60:40:0f:2c:c5:b7:
ec:33:6d:25:99:1c:52:c3:f1:8a:00:56:ad:f7:5f:54:3e:12:
7b:22:c9:b6:03:14:01:76:13:ac:6c:6b:28:77:3c:d6:84:ee:
5e:14:57:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:44 2024 by rpki-client on console-fra.rpki-client.org