Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/GKElwvX54jOHB4ng85vAcyrA8hc.roa
File: GKElwvX54jOHB4ng85vAcyrA8hc.roa (raw, json)
Hash identifier: jn/b7+UEPWAODVAqcWktoMAoehQoA+R3b6v23Zn+DJQ=
Subject key identifier: 18:A1:25:C2:F5:F9:E2:33:87:07:89:E0:F3:9B:C0:73:2A:C0:F2:17
Certificate issuer: /CN=3b637ccf393f52e0b56fb58ee35af54411daf644
Certificate serial: 01856CF87AF55F3A2223DD25638DD3D85C20
Authority key identifier: 3B:63:7C:CF:39:3F:52:E0:B5:6F:B5:8E:E3:5A:F5:44:11:DA:F6:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2N8zzk_UuC1b7WO41r1RBHa9kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/GKElwvX54jOHB4ng85vAcyrA8hc.roa
Signing time: Sun 01 Jan 2023 10:55:01 +0000
ROA not before: Sun 01 Jan 2023 10:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201821
IP address blocks: 185.63.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Mar 2023 13:09:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:7a:f5:5f:3a:22:23:dd:25:63:8d:d3:d8:5c:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b637ccf393f52e0b56fb58ee35af54411daf644
Validity
Not Before: Jan 1 10:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18a125c2f5f9e233870789e0f39bc0732ac0f217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b0:3e:4f:66:57:93:49:21:78:5b:3a:a3:f6:
8d:cc:38:0b:88:5d:67:60:da:a1:b7:c4:b8:fa:a3:
2d:c3:79:ce:79:32:c5:25:a2:fb:ff:9b:52:4f:a5:
32:f4:6a:72:c2:81:5e:23:8b:88:9f:c2:a1:0e:98:
67:7f:50:e9:7a:bb:a0:3d:c8:20:a1:ae:63:e7:98:
ad:7b:17:ea:d5:8c:bb:bd:f4:52:3b:54:40:5c:c0:
f0:f9:33:34:84:1d:14:cc:c5:c4:d1:d8:7b:72:24:
22:c3:55:8d:a4:b1:d9:91:4b:2e:21:9c:dd:8c:c0:
b0:20:6e:18:f7:e9:d8:d0:aa:07:b6:d7:f9:b2:ba:
7e:6a:fc:09:4d:28:6b:c5:0c:db:d9:24:9c:da:18:
01:c0:12:0d:96:b3:2e:30:f8:73:3d:00:91:28:d2:
7b:91:59:e3:ff:2f:17:0c:95:12:7b:a6:8d:ad:f4:
91:4b:d1:96:b6:26:fe:1b:2f:51:47:db:10:84:80:
5a:c2:4d:0a:58:70:a0:94:77:6c:7a:9c:8f:54:ea:
8b:72:24:79:a6:a2:f4:7b:df:e3:44:58:43:d1:6f:
28:94:23:13:fd:0d:54:fe:cb:44:5d:a5:6a:38:85:
4a:e6:38:b0:0e:bf:59:df:36:d1:1a:cf:f3:a6:4a:
d4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A1:25:C2:F5:F9:E2:33:87:07:89:E0:F3:9B:C0:73:2A:C0:F2:17
X509v3 Authority Key Identifier:
keyid:3B:63:7C:CF:39:3F:52:E0:B5:6F:B5:8E:E3:5A:F5:44:11:DA:F6:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2N8zzk_UuC1b7WO41r1RBHa9kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/GKElwvX54jOHB4ng85vAcyrA8hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/O2N8zzk_UuC1b7WO41r1RBHa9kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.75.0/24
Signature Algorithm: sha256WithRSAEncryption
24:76:30:cb:2a:e5:e4:c2:1a:24:40:8f:fc:1d:bd:b1:c8:c8:
20:8a:23:5e:c2:dc:73:98:73:f4:6c:76:a1:e0:e4:55:9d:b1:
08:4f:cd:74:b0:2b:40:5f:bb:a1:50:ad:44:fb:da:fc:39:b7:
93:b5:92:a3:11:3c:80:8f:f9:73:bf:8a:73:a5:50:2a:89:03:
2b:47:53:a3:8c:04:81:de:93:33:76:b5:9b:84:15:c0:f0:92:
0b:b3:eb:0d:e6:a9:81:24:00:19:24:36:21:7a:4b:c5:29:4c:
63:24:bd:0d:60:33:c1:f6:3c:eb:4b:8f:fa:67:c5:d6:a8:34:
8e:99:ef:fb:72:92:22:b8:ee:6c:35:4d:9e:b2:30:11:f1:dd:
46:66:9c:8e:60:0c:51:01:36:31:8e:d0:d4:c0:5f:7e:6a:a6:
cc:83:9a:6d:4f:56:a0:cd:29:05:c1:cf:14:bd:ed:3e:ea:c8:
bd:21:b8:20:a7:10:e6:87:1e:fe:d6:ae:d5:97:3f:12:d1:8e:
92:5d:70:6f:70:29:f7:fc:1e:af:3b:49:16:8d:b7:71:a3:31:
93:af:b6:60:00:7c:14:0e:a0:5a:06:66:11:3b:93:06:99:e6:
36:53:e2:ae:da:3e:ed:b6:6d:71:20:86:e2:68:b9:ff:4b:13:
c1:29:44:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:33 2024 by rpki-client on console-ams.rpki-client.org