Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b8eadf-8037-4fae-8d2c-e0a3cbd04796/1/Y4wLVCn4QhZlzQyxMrhKuMj1vM4.roa
File: Y4wLVCn4QhZlzQyxMrhKuMj1vM4.roa (raw, json)
Hash identifier: w9k/UmamKUxKqtXSpDxKnTtuze7UdKauVI+I62vGlBo=
Subject key identifier: 63:8C:0B:54:29:F8:42:16:65:CD:0C:B1:32:B8:4A:B8:C8:F5:BC:CE
Certificate issuer: /CN=492a8e482a81d90c45c4d90ac668a3f2245c0d6d
Certificate serial: 018C5CC02835671287963A25399D454E1F23
Authority key identifier: 49:2A:8E:48:2A:81:D9:0C:45:C4:D9:0A:C6:68:A3:F2:24:5C:0D:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSqOSCqB2QxFxNkKxmij8iRcDW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b8eadf-8037-4fae-8d2c-e0a3cbd04796/1/Y4wLVCn4QhZlzQyxMrhKuMj1vM4.roa
Signing time: Tue 12 Dec 2023 06:39:06 +0000
ROA not before: Tue 12 Dec 2023 06:39:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201259
IP address blocks: 185.60.35.0/24 maxlen: 24
185.60.32.0/24 maxlen: 24
185.60.32.0/22 maxlen: 22
185.60.32.0/23 maxlen: 23
185.60.33.0/24 maxlen: 24
185.60.34.0/24 maxlen: 24
185.60.34.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5c:c0:28:35:67:12:87:96:3a:25:39:9d:45:4e:1f:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=492a8e482a81d90c45c4d90ac668a3f2245c0d6d
Validity
Not Before: Dec 12 06:39:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=638c0b5429f8421665cd0cb132b84ab8c8f5bcce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:89:32:b9:96:44:03:99:10:44:32:dc:06:48:
12:14:bd:07:33:61:55:06:cd:39:18:27:9a:59:2c:
a9:9c:12:fd:19:c2:9e:c9:8a:01:34:7d:25:c6:73:
7e:29:7e:64:1a:8b:c1:9b:2a:32:08:97:ac:ec:be:
27:84:2d:aa:b8:c8:30:7c:2f:3c:cc:19:2a:2b:1f:
6c:ab:3b:8c:8b:4a:62:24:84:75:0f:28:67:27:08:
55:f2:71:84:a1:66:15:5a:c8:46:16:ac:cd:d0:52:
9f:ae:60:ac:6d:cb:a1:5a:fa:6b:e6:5c:2e:4c:42:
84:9d:cf:b3:33:e1:cf:a3:c5:55:51:f8:9a:de:59:
b7:94:8f:80:9d:fc:3f:97:74:9e:c3:88:dc:22:2f:
c6:82:64:7c:78:79:22:95:d8:9e:08:39:4a:e2:a8:
ea:3b:34:a1:9f:66:29:26:77:dd:17:82:d7:2a:3e:
2a:3b:2e:27:54:43:8d:6f:f9:89:ef:1a:25:cd:9a:
ea:8a:fb:1f:f4:93:7c:91:6a:86:4d:09:c9:e9:9c:
65:61:cc:05:d1:d0:fd:f1:7f:55:db:ea:2e:30:4e:
7d:77:d1:f9:78:87:e5:06:2d:86:19:78:ae:80:10:
9d:42:25:3e:38:f5:e9:0e:e9:99:10:ac:be:97:12:
1e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8C:0B:54:29:F8:42:16:65:CD:0C:B1:32:B8:4A:B8:C8:F5:BC:CE
X509v3 Authority Key Identifier:
keyid:49:2A:8E:48:2A:81:D9:0C:45:C4:D9:0A:C6:68:A3:F2:24:5C:0D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSqOSCqB2QxFxNkKxmij8iRcDW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b8eadf-8037-4fae-8d2c-e0a3cbd04796/1/Y4wLVCn4QhZlzQyxMrhKuMj1vM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b8eadf-8037-4fae-8d2c-e0a3cbd04796/1/SSqOSCqB2QxFxNkKxmij8iRcDW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.32.0/22
Signature Algorithm: sha256WithRSAEncryption
32:05:15:1e:26:1b:8d:ff:74:31:bd:03:34:21:43:47:a9:ec:
54:05:64:52:99:27:a0:56:ef:50:c8:a6:05:16:27:e6:b2:7c:
c9:50:5b:76:b6:48:fb:3b:43:2d:93:70:54:a2:16:25:ed:f2:
2b:c7:c5:73:a4:9f:7d:56:c0:10:00:5e:0a:46:bd:97:98:cc:
d7:fe:39:e2:f0:26:3b:7d:cc:a2:66:47:e9:f7:03:8c:93:70:
2c:5a:2b:e4:2f:4c:81:a5:94:21:6f:1d:0a:f5:46:be:40:9f:
86:27:d2:19:62:4a:9b:44:3c:57:5d:7e:6a:2c:de:a7:8b:d1:
03:5f:41:fb:86:7a:7a:79:92:1d:9f:0b:d1:88:58:45:86:73:
2e:bc:de:d7:26:52:ee:9a:84:51:4f:30:36:64:e1:cf:50:c2:
81:47:09:0c:e9:0e:b3:04:7e:6f:fb:66:fa:d7:c0:9d:93:62:
6d:6d:1f:f6:47:8e:fa:7b:ca:30:da:0e:0a:ed:eb:2e:2f:b0:
35:41:e6:5c:3b:d8:e5:66:53:06:59:bc:0f:07:ec:ff:fe:a6:
5a:88:64:91:1c:a7:aa:a7:26:da:08:dc:b3:52:0f:d8:2e:9e:
c8:a9:bf:4c:0f:33:5a:53:f1:5d:4d:b6:e1:e3:2d:b0:92:05:
ab:d6:b9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:14:59 2024 by rpki-client on console.sobornost.net