Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/gIwNgJaiwGaw9FlvzanYrec9LPg.roa
File: gIwNgJaiwGaw9FlvzanYrec9LPg.roa (raw, json)
Hash identifier: 8s1iVHQQSdglN+0t7BKeQi42Txdy/FgFW0RKPuvkY5Y=
Subject key identifier: 80:8C:0D:80:96:A2:C0:66:B0:F4:59:6F:CD:A9:D8:AD:E7:3D:2C:F8
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 018CC86FC571B9E09AC93E4253FDBCD6B358
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/gIwNgJaiwGaw9FlvzanYrec9LPg.roa
Signing time: Tue 02 Jan 2024 04:30:17 +0000
ROA not before: Tue 02 Jan 2024 04:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 85.235.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 19:55:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:c5:71:b9:e0:9a:c9:3e:42:53:fd:bc:d6:b3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 2 04:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=808c0d8096a2c066b0f4596fcda9d8ade73d2cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1a:fe:8f:e9:ad:76:d9:1f:d9:97:78:34:97:
dc:d9:5a:dd:33:45:3a:ed:dd:7d:41:98:fb:87:3d:
fa:74:70:c4:be:a6:97:3b:9d:21:c8:45:ec:fb:d9:
51:27:21:f7:56:bd:cf:d9:17:0d:ad:9e:f2:58:12:
d4:60:c8:24:bf:61:d0:c5:c7:d7:cc:26:dc:72:1d:
bc:fb:9c:25:bf:6e:17:bf:4d:f9:5b:50:70:b2:ec:
1b:93:12:71:2b:39:d3:ce:56:2b:7f:49:ed:5a:40:
ea:60:16:81:e7:80:fa:ec:ce:50:27:aa:e6:0a:f9:
2f:e3:8b:54:ef:70:83:4c:29:ce:2a:3f:be:44:f7:
c5:6c:e2:5f:59:79:d4:a6:69:7c:cc:1e:79:66:b1:
8b:df:08:31:96:86:2d:3c:aa:95:ae:9f:d6:c1:1f:
d2:c3:cf:97:b1:f2:13:6a:4c:79:cb:ea:ce:37:30:
c9:12:4e:52:70:9f:2c:bb:7f:7d:be:cb:c6:cf:bd:
ef:72:e1:4d:5d:f3:00:01:5e:da:36:29:2f:2c:b4:
a1:67:42:d0:e7:e2:52:08:4c:9b:4f:4b:9f:c9:30:
61:81:3d:10:83:fb:aa:9c:d7:71:ae:15:5d:30:9a:
e8:15:57:06:f9:2c:b6:68:33:fa:2d:09:83:be:6e:
84:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8C:0D:80:96:A2:C0:66:B0:F4:59:6F:CD:A9:D8:AD:E7:3D:2C:F8
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/gIwNgJaiwGaw9FlvzanYrec9LPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.235.81.0/24
Signature Algorithm: sha256WithRSAEncryption
67:35:8d:18:fc:09:a2:63:6f:26:f7:d2:bf:e4:0a:7c:d9:98:
85:87:e3:31:07:ce:16:3a:f7:53:44:1d:bb:ce:ee:ca:5c:a5:
f2:86:46:91:a9:cd:d2:14:5d:0b:90:d1:06:bc:d6:ad:3e:19:
09:8a:21:30:72:45:2d:72:b9:bf:dd:67:d8:40:de:6d:a9:b6:
9d:59:71:53:cc:ed:c7:50:f6:61:c7:ed:c3:3b:a9:2a:a2:3e:
18:72:d0:6d:b9:b7:75:df:48:6c:09:f2:50:9e:d0:12:34:27:
88:48:32:bb:d4:ee:b2:50:c3:47:1d:36:29:e0:01:1f:3e:8d:
e8:5f:3d:93:5d:59:cf:c9:49:f6:f8:f3:6c:99:09:cc:e6:e0:
f3:8a:fa:6f:ce:17:72:21:b3:71:5f:19:eb:04:34:ff:81:a3:
bd:75:87:ab:d1:96:37:c4:29:5b:0d:94:ce:1a:76:3f:89:28:
b8:ac:3a:17:40:b7:3b:78:6e:92:63:d2:42:23:c6:2a:76:ab:
f0:4e:c6:fe:03:e0:6a:fb:3b:5a:82:59:63:93:22:ad:03:92:
7a:4b:3f:58:15:c7:73:ff:40:26:ec:f2:80:17:c8:75:36:e3:
ab:59:76:0f:a9:c5:cf:4d:ab:32:c5:b9:60:12:a9:1f:48:fc:
26:46:3d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org