Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/gtoeIaPNuFHiR_F-B2rp3hQFj1k.roa
File: gtoeIaPNuFHiR_F-B2rp3hQFj1k.roa (raw, json)
Hash identifier: hpt2BBcdySW66R23cHiJA0kgg6HDRueUBtW0/aoLekc=
Subject key identifier: 82:DA:1E:21:A3:CD:B8:51:E2:47:F1:7E:07:6A:E9:DE:14:05:8F:59
Certificate issuer: /CN=c2746ccb7e73a9cc30ef04edd7cf16cc1d946894
Certificate serial: 018CC72716C564E87BEB61BD172501D34D24
Authority key identifier: C2:74:6C:CB:7E:73:A9:CC:30:EF:04:ED:D7:CF:16:CC:1D:94:68:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnRsy35zqcww7wTt188WzB2UaJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/gtoeIaPNuFHiR_F-B2rp3hQFj1k.roa
Signing time: Mon 01 Jan 2024 22:31:16 +0000
ROA not before: Mon 01 Jan 2024 22:31:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25145
IP address blocks: 185.203.67.0/24 maxlen: 24
2a11:940::/29 maxlen: 29
2a10:7cc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 27 Jan 2024 20:25:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:16:c5:64:e8:7b:eb:61:bd:17:25:01:d3:4d:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2746ccb7e73a9cc30ef04edd7cf16cc1d946894
Validity
Not Before: Jan 1 22:31:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82da1e21a3cdb851e247f17e076ae9de14058f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5f:23:a9:69:e9:c8:7a:09:ed:3f:29:ff:22:
37:24:20:5c:54:57:ec:e0:73:e5:a3:31:20:63:87:
ed:db:96:b6:99:d7:fd:da:24:1f:8a:9c:c4:f0:25:
a4:11:56:f2:50:50:94:80:86:4f:d0:ae:bc:c1:ca:
34:05:a4:06:e3:37:6d:83:d3:02:7f:bf:10:d8:96:
07:f0:92:a5:dc:e9:a7:9c:ee:8a:03:63:b3:bd:30:
35:44:27:39:99:74:6e:5d:d1:01:d4:de:bf:81:2c:
d7:8b:37:98:4a:9e:59:44:ca:7d:c4:45:43:e3:97:
49:25:b4:6f:c4:c0:1d:8c:f6:fb:89:c8:47:97:7f:
15:32:c6:49:fa:f2:da:3d:81:54:c2:6b:4a:a2:6e:
ad:bb:b7:20:01:29:d4:6d:71:57:11:0d:76:09:5f:
f4:89:d6:d0:65:55:aa:61:5e:87:b7:03:31:ca:57:
24:eb:40:06:18:64:b2:de:bf:ff:5f:f2:f9:80:21:
12:22:42:fa:24:02:db:e9:72:64:5b:9f:5d:68:3b:
15:e7:c4:51:c4:c5:54:5f:7a:ac:15:21:09:37:3c:
66:62:4a:4a:61:0b:b7:89:d2:09:04:0e:4d:4e:e6:
7b:84:c3:aa:03:1f:23:72:8c:8b:40:3f:79:a7:c6:
26:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:DA:1E:21:A3:CD:B8:51:E2:47:F1:7E:07:6A:E9:DE:14:05:8F:59
X509v3 Authority Key Identifier:
keyid:C2:74:6C:CB:7E:73:A9:CC:30:EF:04:ED:D7:CF:16:CC:1D:94:68:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnRsy35zqcww7wTt188WzB2UaJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/gtoeIaPNuFHiR_F-B2rp3hQFj1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/wnRsy35zqcww7wTt188WzB2UaJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.67.0/24
IPv6:
2a10:7cc0::/29
2a11:940::/29
Signature Algorithm: sha256WithRSAEncryption
a4:29:d7:85:41:bc:8e:d4:04:d1:63:33:0d:db:44:8b:8e:16:
7a:f2:d1:13:d6:0c:5a:dd:77:91:17:98:51:fa:73:68:00:80:
60:a9:6d:04:21:a6:dc:f0:75:34:db:1d:92:ac:90:b0:ae:55:
bd:41:d1:9f:99:56:96:16:8e:8a:6e:65:46:17:51:a4:e1:52:
44:33:c3:02:a0:b8:a4:6a:05:b8:ca:2d:5b:d9:2b:0b:51:34:
27:e1:44:78:f6:2f:a5:35:5b:60:3d:7d:7e:1c:da:0c:e9:f2:
ed:e8:29:c2:bd:95:42:bd:81:7b:c7:64:d4:ac:04:eb:e1:b7:
9b:47:3e:4e:4c:78:f8:f9:a9:ea:03:fd:a6:4c:ca:19:5f:d5:
42:15:6e:c9:74:ff:a6:12:fe:5d:7a:b0:aa:31:c4:3d:f0:a3:
6b:78:92:bd:c0:6c:19:9f:41:28:8f:38:0e:1e:3c:01:d8:e8:
ed:08:08:23:5d:99:ea:ba:5a:50:43:79:a1:17:f2:63:f4:30:
17:de:fa:d7:52:79:24:6d:32:3a:45:30:72:b7:20:83:4b:91:
7e:cf:07:c0:cd:8d:46:03:ca:97:53:97:30:c0:9c:f0:a5:cf:
87:86:e1:ba:fd:07:6c:48:ac:8a:75:03:d2:7d:72:a6:ea:9d:
75:69:41:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:28 2024 by rpki-client on console-fra.rpki-client.org