Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/GAskjSYTSL82XZKfl5UBMhVJj4k.roa
File: GAskjSYTSL82XZKfl5UBMhVJj4k.roa (raw, json)
Hash identifier: T85LZRw1MdxrMw8YgYX0JPCygwmvxEPMqR8y1SyQklA=
Subject key identifier: 18:0B:24:8D:26:13:48:BF:36:5D:92:9F:97:95:01:32:15:49:8F:89
Certificate issuer: /CN=d87663c5e14f13746c80f60ba363493d9a4934cc
Certificate serial: 018B8EF189B81E03E145CF853C165D85B585
Authority key identifier: D8:76:63:C5:E1:4F:13:74:6C:80:F6:0B:A3:63:49:3D:9A:49:34:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/GAskjSYTSL82XZKfl5UBMhVJj4k.roa
Signing time: Thu 02 Nov 2023 07:31:15 +0000
ROA not before: Thu 02 Nov 2023 07:31:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50418
IP address blocks: 185.84.32.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8e:f1:89:b8:1e:03:e1:45:cf:85:3c:16:5d:85:b5:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87663c5e14f13746c80f60ba363493d9a4934cc
Validity
Not Before: Nov 2 07:31:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=180b248d261348bf365d929f9795013215498f89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:56:7e:16:cc:bf:aa:4b:62:bc:b7:03:8f:7e:
7c:87:32:79:c1:b5:6d:a0:d0:4b:6f:f9:1d:06:c0:
c2:8d:b3:78:e5:a7:7b:c3:fd:fd:c5:a0:9a:18:1e:
55:1d:37:2a:5c:ad:7b:19:1d:ae:6d:09:39:b9:42:
ba:a6:bf:a0:32:5d:b2:b8:e8:f1:50:04:19:d2:d0:
a5:6f:5e:86:fa:c7:2e:57:aa:b1:35:59:f6:17:68:
3e:72:42:c6:05:b3:f9:1d:a1:3f:78:e7:85:2e:67:
bf:fb:d1:12:64:e9:25:b7:52:8b:ce:ea:7a:ae:81:
46:e9:64:17:84:4d:eb:b9:7f:cf:87:31:51:98:b2:
79:ff:90:5d:88:46:61:74:18:2f:f7:ca:f2:2e:7a:
8e:ac:90:8d:a5:49:a8:22:9c:96:8d:38:01:1e:b7:
7d:c2:0d:95:5e:7f:83:bd:ce:19:f0:87:34:60:71:
ad:42:e2:e9:04:1b:de:00:6b:10:9c:10:c7:76:65:
97:a0:41:fb:63:3a:30:2a:32:19:58:5f:85:a7:af:
a9:b5:7c:72:85:95:7b:7f:bf:c7:06:7d:78:19:68:
fd:7b:d6:3c:71:16:fa:a8:aa:19:5d:44:d7:dd:2f:
a7:0d:63:07:ce:96:3f:23:6b:8f:e8:06:27:a0:4b:
45:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:0B:24:8D:26:13:48:BF:36:5D:92:9F:97:95:01:32:15:49:8F:89
X509v3 Authority Key Identifier:
keyid:D8:76:63:C5:E1:4F:13:74:6C:80:F6:0B:A3:63:49:3D:9A:49:34:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/GAskjSYTSL82XZKfl5UBMhVJj4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.32.0/22
Signature Algorithm: sha256WithRSAEncryption
02:53:c0:bf:c9:1c:9e:40:2b:d8:a6:89:84:4a:d1:6f:66:8c:
b0:91:44:ed:91:64:af:1b:05:d2:07:09:f2:f3:d4:3d:a6:00:
11:cd:ec:57:18:ca:b9:18:15:82:96:6c:64:e0:4c:cb:f2:5f:
73:16:2a:76:ec:69:db:c4:1b:ef:27:e3:07:23:c9:02:69:2b:
6b:e6:48:5d:fa:33:22:30:bd:76:5b:1a:ad:6f:3e:ef:d7:22:
1c:4c:1c:4f:e7:d4:62:e2:ef:01:3e:8d:0b:14:17:8a:4b:7d:
45:ac:e6:c3:d3:53:76:15:8a:87:2e:d1:66:6a:95:ed:6a:09:
a7:95:c2:b8:de:bc:aa:56:e6:b3:df:0f:f5:c0:e6:48:0f:1c:
41:9a:b8:d2:49:17:93:45:50:ea:83:1e:31:ff:a1:b9:56:9e:
69:55:fc:38:07:1e:5f:b9:73:d4:11:03:6e:89:a3:95:52:1c:
ce:ba:fb:af:f9:b1:e1:49:79:a4:f4:ef:5c:d6:6f:2d:bf:a4:
e0:42:c5:af:66:31:38:87:be:0d:42:98:d8:93:d9:82:d0:ff:
47:81:ff:38:49:9f:d2:96:be:ab:28:fa:70:c1:d7:74:d5:1c:
19:f7:79:67:be:7c:50:2b:b4:0b:d8:67:19:08:f1:f7:69:fd:
f8:37:09:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:54 2024 by rpki-client on console-fra.rpki-client.org