Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ygmsNdOqhOngwt_gLH8ir6hauBo.roa
File: ygmsNdOqhOngwt_gLH8ir6hauBo.roa (raw, json)
Hash identifier: u/PRtCylHJ13ET/+OUJ/cl1LdvjiQBUv62SuTVR11pI=
Subject key identifier: CA:09:AC:35:D3:AA:84:E9:E0:C2:DF:E0:2C:7F:22:AF:A8:5A:B8:1A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B1E1F169412EC5855F6970F2058E75462
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ygmsNdOqhOngwt_gLH8ir6hauBo.roa
Signing time: Wed 11 Oct 2023 09:43:55 +0000
ROA not before: Wed 11 Oct 2023 09:43:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 185.226.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 18:23:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:1f:16:94:12:ec:58:55:f6:97:0f:20:58:e7:54:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 11 09:43:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca09ac35d3aa84e9e0c2dfe02c7f22afa85ab81a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a8:58:73:9e:56:56:ef:5b:4c:15:1e:66:16:
a1:e7:ac:fd:52:16:85:6c:4a:c3:25:3d:3b:cb:18:
5b:4d:ad:e3:fb:c7:36:f6:da:1f:a5:b7:5d:1e:e5:
e9:eb:97:eb:37:12:9a:69:ee:aa:31:e0:ca:0a:5b:
9e:b5:96:8b:40:13:97:f6:cc:35:41:24:0a:e1:e0:
07:21:4d:30:49:cc:49:74:1a:5d:ab:78:d2:01:54:
08:15:68:62:21:b5:a9:00:29:ef:69:ce:2a:1f:b1:
3b:5a:bf:0e:92:35:58:07:55:fa:18:6a:70:27:3f:
62:40:33:65:46:ae:f1:11:f6:17:68:64:5d:d2:3f:
7d:b5:32:d2:fb:b1:06:1c:d0:31:eb:11:3f:10:f2:
71:b8:11:c3:0c:38:3b:96:c0:35:ab:8a:a9:3c:37:
87:23:47:3c:e9:d3:c7:9c:02:04:4c:ca:23:dc:e7:
7c:7a:0b:5e:ad:00:24:1c:ce:e9:c2:0a:1d:2e:c6:
51:a2:1f:06:0f:8e:64:4e:6f:e9:65:29:ae:57:1f:
5d:a8:0b:7e:2d:05:db:a2:07:22:a7:7e:e3:3f:50:
bb:78:95:e3:99:88:9b:3b:14:46:83:0b:60:81:c5:
cc:6f:07:cf:4e:61:ab:c7:db:bb:4a:0f:cf:79:43:
c6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:09:AC:35:D3:AA:84:E9:E0:C2:DF:E0:2C:7F:22:AF:A8:5A:B8:1A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ygmsNdOqhOngwt_gLH8ir6hauBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.107.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:18:13:72:e1:03:b6:b3:ed:aa:e6:47:f9:8d:30:cd:34:de:
dd:42:eb:a5:f1:74:6f:81:cc:c8:76:48:78:c0:4b:81:79:1c:
86:73:e2:c9:03:65:27:21:7d:82:69:04:03:f4:f6:6c:bc:f0:
c2:26:6d:79:fa:59:43:6a:7f:53:c7:ed:44:26:87:e0:67:b6:
e6:57:92:1f:e5:4a:13:2e:c5:5e:cb:65:29:16:06:18:7f:fc:
31:e4:93:22:58:41:28:9c:44:1e:8a:27:55:55:c5:8b:29:2b:
51:b4:24:d7:3f:a1:bf:98:cb:76:41:d8:62:f4:0e:19:5d:c1:
5a:37:80:2e:69:ab:a6:8d:f9:f7:2f:b3:c4:1f:fe:2b:ed:1a:
0a:36:14:7e:7e:a8:c1:96:9e:7a:73:e3:aa:b5:34:36:14:a5:
58:3d:46:f5:b9:4d:00:82:58:55:40:96:fb:50:51:fb:2f:5d:
16:6f:da:f6:21:8f:a7:57:99:e1:c9:7d:82:5f:cb:01:e1:3d:
36:1d:be:64:a2:37:ad:e2:93:8e:1b:1a:2a:ab:30:2f:1c:bd:
72:7e:8d:77:44:80:57:33:17:ed:a6:ec:ca:6d:65:c6:67:03:
2d:e4:55:f6:31:60:87:dc:0a:c8:0c:d6:f7:e6:38:2a:5c:2d:
3c:f1:da:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:44 2024 by rpki-client on console-fra.rpki-client.org