Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f90d83-02be-4e5f-bd0f-929f106630f1/1/g2TQ4m3CVNQyzkf-rvXD9SZy0y8.roa
File: g2TQ4m3CVNQyzkf-rvXD9SZy0y8.roa (raw, json)
Hash identifier: dtyuKZgA96NtyPZKF6MTYGPTIjGZIvrffA1HIAauADo=
Subject key identifier: 83:64:D0:E2:6D:C2:54:D4:32:CE:47:FE:AE:F5:C3:F5:26:72:D3:2F
Certificate issuer: /CN=2f3136ed10998580a517d9598abca33d9ba66599
Certificate serial: 018C1757D658F42031E1210DE4B9ED696A07
Authority key identifier: 2F:31:36:ED:10:99:85:80:A5:17:D9:59:8A:BC:A3:3D:9B:A6:65:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzE27RCZhYClF9lZiryjPZumZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f90d83-02be-4e5f-bd0f-929f106630f1/1/g2TQ4m3CVNQyzkf-rvXD9SZy0y8.roa
Signing time: Tue 28 Nov 2023 19:11:21 +0000
ROA not before: Tue 28 Nov 2023 19:11:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 145.224.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Dec 2023 16:11:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:17:57:d6:58:f4:20:31:e1:21:0d:e4:b9:ed:69:6a:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f3136ed10998580a517d9598abca33d9ba66599
Validity
Not Before: Nov 28 19:11:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8364d0e26dc254d432ce47feaef5c3f52672d32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:04:12:2e:a3:c3:43:ee:03:d3:e6:e1:7d:75:
6e:1c:70:1c:0b:24:f4:66:7a:d6:02:98:41:9f:e2:
39:25:18:6a:9d:d3:ee:e0:96:af:db:50:37:00:dd:
04:6a:55:56:05:c0:32:06:d5:11:da:31:82:fa:fd:
dd:e8:f9:9b:bf:83:72:52:77:4e:7f:0a:e8:2e:c0:
6c:94:86:19:2b:b1:29:30:11:08:79:a4:4c:76:b1:
86:a3:b4:23:39:a5:40:52:de:62:8e:06:2a:9f:9f:
1b:50:c8:8c:19:e7:a0:16:3c:dc:56:b3:12:17:e8:
e7:7d:14:f7:49:72:ac:a4:c7:ed:97:3a:79:ba:a2:
ac:73:d9:c9:db:78:a5:e8:3f:6e:2e:d3:da:db:bd:
77:af:74:6f:9d:db:7a:81:a6:8d:21:64:2c:25:9a:
64:24:e5:af:ff:f6:7a:3a:9e:6b:6f:9e:85:ec:e3:
20:a2:8a:cf:1b:a3:6a:a1:3b:64:77:60:94:8c:69:
2a:c5:f2:10:3f:c7:13:3f:5b:7d:d8:7a:22:d3:de:
bb:97:3d:8b:3f:ce:84:6a:81:f5:d1:79:dd:32:20:
a9:99:0c:75:ea:97:e7:c7:c9:8d:0a:ad:4a:ed:10:
51:1d:47:83:e2:88:6e:bd:09:a5:f8:76:89:e6:60:
06:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:64:D0:E2:6D:C2:54:D4:32:CE:47:FE:AE:F5:C3:F5:26:72:D3:2F
X509v3 Authority Key Identifier:
keyid:2F:31:36:ED:10:99:85:80:A5:17:D9:59:8A:BC:A3:3D:9B:A6:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzE27RCZhYClF9lZiryjPZumZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f90d83-02be-4e5f-bd0f-929f106630f1/1/g2TQ4m3CVNQyzkf-rvXD9SZy0y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f90d83-02be-4e5f-bd0f-929f106630f1/1/LzE27RCZhYClF9lZiryjPZumZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.224.192.0/24
Signature Algorithm: sha256WithRSAEncryption
41:d2:80:71:52:60:1d:66:a5:02:c2:75:2d:ec:7c:04:13:af:
2d:37:f1:65:fe:8a:8c:28:76:7f:dd:09:4b:a7:ac:2b:be:cc:
2e:4a:82:78:09:e8:2b:ad:70:c9:b4:24:d5:b3:7e:cf:eb:7a:
0f:96:aa:36:fb:15:fe:8e:f4:55:23:d3:cf:37:f1:7e:ae:b5:
96:1d:61:88:9d:7f:b6:28:99:05:6c:65:1f:3e:2d:e1:7e:38:
30:2d:68:0d:c4:74:cc:17:7f:89:c1:76:bd:23:99:97:d6:0b:
94:62:e4:a2:fc:cd:eb:31:d1:bd:e5:35:cc:78:ed:39:62:ba:
7a:2a:25:c3:4a:72:f4:3f:93:b4:92:66:7b:fe:bf:46:11:2c:
d7:9e:69:3f:c7:32:f6:82:8c:7a:67:b4:81:7e:35:8b:5a:2e:
51:97:e5:40:42:2f:fa:99:1d:a1:26:7b:28:39:69:af:99:12:
2f:8d:f5:b8:09:f3:1c:70:cd:84:1b:a5:85:97:65:e2:37:ee:
9b:3a:6e:99:2c:83:b9:0f:47:e8:76:cd:b3:8f:c7:a4:59:d5:
9a:b1:db:91:e4:4c:32:28:4a:98:32:7b:7e:1a:c7:74:34:75:
32:9d:57:68:b4:67:e6:39:50:9b:9b:b2:e7:a8:95:62:61:59:
e2:57:80:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org