Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/16b7f4-fa15-47a6-9fc5-254bcbcec037/1/ggVTwzQp-XI2fJORXtTp2cdiHfY.roa
File: ggVTwzQp-XI2fJORXtTp2cdiHfY.roa (raw, json)
Hash identifier: BXW7tq3Q/iX2hTQsfuqCgeuioTVXlJxH8BF3ofefCbE=
Subject key identifier: 82:05:53:C3:34:29:F9:72:36:7C:93:91:5E:D4:E9:D9:C7:62:1D:F6
Certificate issuer: /CN=759d6afb8ddf8f8c0dd660790edcba1f3b370c63
Certificate serial: 018570CBF7A24D916CCCCDAC52E2F2518E54
Authority key identifier: 75:9D:6A:FB:8D:DF:8F:8C:0D:D6:60:79:0E:DC:BA:1F:3B:37:0C:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZ1q-43fj4wN1mB5Dty6Hzs3DGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/16b7f4-fa15-47a6-9fc5-254bcbcec037/1/ggVTwzQp-XI2fJORXtTp2cdiHfY.roa
Signing time: Mon 02 Jan 2023 04:44:53 +0000
ROA not before: Mon 02 Jan 2023 04:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202269
IP address blocks: 185.8.172.0/24 maxlen: 24
185.8.173.0/24 maxlen: 24
185.8.175.0/24 maxlen: 24
185.8.174.0/24 maxlen: 24
130.185.73.0/24 maxlen: 24
130.185.72.0/24 maxlen: 24
130.185.77.0/24 maxlen: 24
130.185.76.0/24 maxlen: 24
130.185.75.0/24 maxlen: 24
130.185.74.0/24 maxlen: 24
130.185.78.0/23 maxlen: 23
130.185.78.0/24 maxlen: 24
130.185.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Dec 2023 10:56:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:f7:a2:4d:91:6c:cc:cd:ac:52:e2:f2:51:8e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759d6afb8ddf8f8c0dd660790edcba1f3b370c63
Validity
Not Before: Jan 2 04:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=820553c33429f972367c93915ed4e9d9c7621df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:48:5c:c4:0d:d6:54:c5:53:74:3b:6d:a9:09:
4f:67:93:bf:73:89:f2:e9:0f:b3:b1:91:1c:40:69:
0c:52:cd:fe:60:fe:d0:8a:e6:61:4f:1c:a9:33:a9:
f7:ee:ef:1d:f3:6f:c8:01:ae:e6:55:d8:1e:24:37:
03:5c:c5:b6:0e:30:f9:a5:b7:09:6f:49:a4:08:26:
ab:11:00:e6:c9:bd:87:b4:be:ae:2f:2c:9c:27:76:
4c:4b:9b:15:44:bb:1d:9a:d9:65:f4:cb:30:39:d1:
20:a0:30:40:0c:7f:63:82:23:bd:1b:f6:23:d6:b5:
fb:31:27:7b:03:60:09:28:a8:56:5c:d1:13:e1:4b:
37:c6:2d:04:0a:24:26:27:f3:ff:12:db:ac:34:15:
9d:45:20:b8:92:c5:92:f3:92:9a:45:9b:a9:3e:39:
59:cd:9c:4f:bf:b7:8e:27:b6:94:46:0d:bd:94:a2:
ad:bd:26:23:8f:c0:ad:57:ae:67:40:cc:3e:93:bc:
78:ff:ce:97:61:0a:74:39:c1:88:c3:12:13:f0:ea:
35:ac:cb:a3:d4:0d:a1:ed:d9:e7:56:15:7c:7d:03:
fa:6a:53:64:3c:43:fd:3f:17:fc:30:c1:78:9e:68:
3d:1d:00:e3:56:b5:2b:1b:b3:a1:87:09:4e:47:47:
f4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:05:53:C3:34:29:F9:72:36:7C:93:91:5E:D4:E9:D9:C7:62:1D:F6
X509v3 Authority Key Identifier:
keyid:75:9D:6A:FB:8D:DF:8F:8C:0D:D6:60:79:0E:DC:BA:1F:3B:37:0C:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZ1q-43fj4wN1mB5Dty6Hzs3DGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/16b7f4-fa15-47a6-9fc5-254bcbcec037/1/ggVTwzQp-XI2fJORXtTp2cdiHfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/16b7f4-fa15-47a6-9fc5-254bcbcec037/1/dZ1q-43fj4wN1mB5Dty6Hzs3DGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.72.0/21
185.8.172.0/22
Signature Algorithm: sha256WithRSAEncryption
04:79:cf:63:cb:8b:ba:83:6f:80:d7:38:84:f3:8a:42:d9:03:
b9:3d:5c:42:bc:ce:7e:c6:56:ae:2f:a1:55:33:a9:2a:96:f4:
f7:81:3c:0b:94:38:c8:44:78:f0:1d:66:21:d7:e6:02:5b:6e:
3a:aa:42:23:5d:6b:20:16:85:f3:42:32:66:e5:a1:ec:43:66:
23:7d:00:53:27:78:57:b1:53:5e:50:d4:7c:46:b1:e6:ec:21:
1a:5b:a0:b5:99:62:56:71:59:ce:8d:af:21:57:60:b5:8d:82:
b6:6f:85:aa:bf:24:4d:8d:55:d1:7a:01:db:6d:16:66:72:2a:
1a:fe:bf:ca:ab:6b:d3:7b:29:81:d5:28:c7:76:cf:76:2f:38:
41:47:8d:26:c7:09:b4:3c:e4:4b:5d:67:d2:2f:7a:b7:0d:2e:
26:1e:61:74:30:cc:17:d1:17:7d:8c:0d:15:ed:61:4e:88:d5:
de:c7:43:fb:0b:e9:4c:cf:6e:e6:51:ca:d9:62:1e:49:4a:c1:
0f:5e:93:b8:10:9d:99:67:5d:c4:e0:a2:69:2d:df:3e:83:27:
a8:f7:e8:dc:01:c4:67:b8:56:0a:1e:d7:7e:f6:6f:d0:65:96:
a3:4b:47:44:0e:2d:81:1f:06:d7:3d:8b:68:23:61:5e:4a:a3:
1d:4d:a4:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org