Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/gF1xip6fA8VwJTCMWxVe00yFhv8.roa
File: gF1xip6fA8VwJTCMWxVe00yFhv8.roa (raw, json)
Hash identifier: 5PZsRFKC8qkm65iLH/hIOX3xfURz9lCgRfeUepz5HlA=
Subject key identifier: 80:5D:71:8A:9E:9F:03:C5:70:25:30:8C:5B:15:5E:D3:4C:85:86:FF
Certificate issuer: /CN=3812c97dbd32195b6afa91140b5520b5e0c2c5be
Certificate serial: 01856DDD64754E42C33F703A57F4107AAC2F
Authority key identifier: 38:12:C9:7D:BD:32:19:5B:6A:FA:91:14:0B:55:20:B5:E0:C2:C5:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBLJfb0yGVtq-pEUC1UgteDCxb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/gF1xip6fA8VwJTCMWxVe00yFhv8.roa
Signing time: Sun 01 Jan 2023 15:05:03 +0000
ROA not before: Sun 01 Jan 2023 15:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44322
IP address blocks: 185.83.240.0/22 maxlen: 24
2a05:a000::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:64:75:4e:42:c3:3f:70:3a:57:f4:10:7a:ac:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3812c97dbd32195b6afa91140b5520b5e0c2c5be
Validity
Not Before: Jan 1 15:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=805d718a9e9f03c57025308c5b155ed34c8586ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:60:f3:3f:a7:5a:e8:4c:ca:30:1b:99:54:7d:
ab:e3:eb:96:f6:6a:16:9c:d6:fa:72:af:c9:38:e3:
58:fe:73:8c:4e:ab:ec:14:fa:da:8b:be:c2:b4:3a:
66:91:ef:06:8d:60:d0:e7:b5:0a:f3:ea:4a:3e:0d:
25:b7:38:25:e2:b6:9e:41:35:6d:42:05:25:f6:9e:
cb:83:bc:26:35:85:b6:86:20:1e:ff:d0:65:6e:ec:
17:cd:98:40:6a:aa:a2:6a:50:99:5b:a7:07:9c:98:
ba:f8:79:00:73:40:c4:8c:4c:a6:f7:ed:70:12:94:
50:34:49:fa:96:4c:7f:28:f8:98:b7:dd:15:2f:11:
25:50:4c:a5:36:ac:02:83:94:51:74:e4:59:7f:5c:
bf:c7:25:9d:9b:8c:4f:6d:d4:2b:8a:03:cf:04:fb:
6c:fe:ac:5a:d7:60:4e:a2:f1:1d:89:b8:b7:3f:d7:
2e:24:26:f2:1c:9c:3a:0c:b9:3b:44:0c:64:97:78:
fe:e0:8e:0f:ac:a1:2c:0d:92:c6:75:d3:33:85:a6:
b1:1f:7c:a3:ae:0c:a0:03:6a:ce:1d:96:8d:6e:e1:
15:02:fb:35:aa:44:d0:9a:81:39:87:fe:17:dd:c2:
c2:c5:46:dc:2c:77:25:e6:a6:ca:61:ff:e2:92:75:
85:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5D:71:8A:9E:9F:03:C5:70:25:30:8C:5B:15:5E:D3:4C:85:86:FF
X509v3 Authority Key Identifier:
keyid:38:12:C9:7D:BD:32:19:5B:6A:FA:91:14:0B:55:20:B5:E0:C2:C5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBLJfb0yGVtq-pEUC1UgteDCxb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/gF1xip6fA8VwJTCMWxVe00yFhv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/OBLJfb0yGVtq-pEUC1UgteDCxb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.240.0/22
IPv6:
2a05:a000::/29
Signature Algorithm: sha256WithRSAEncryption
9c:1a:23:6a:f8:fa:8a:eb:18:87:9f:c9:29:6b:1b:91:c1:e6:
a3:6d:d2:ec:3d:1b:59:3a:90:b7:af:f0:3e:a8:e9:30:93:bd:
36:53:91:60:e8:86:3c:bf:7e:10:c8:e2:ff:d7:4a:26:4c:3c:
d3:30:68:de:0d:e0:3f:b7:4f:ec:79:43:ab:45:15:fe:8e:61:
25:e5:67:99:6c:9f:c3:02:c7:08:a2:b5:7b:1e:27:e9:c0:ed:
fe:96:d4:d5:b2:a6:b6:c6:4c:e2:e4:97:12:2d:2c:27:e8:f4:
e6:e2:1f:1b:bb:a3:5c:1f:a5:df:17:23:99:cb:2b:b8:84:55:
32:8d:15:41:1e:c6:36:91:d7:61:69:52:52:c1:54:08:1e:f2:
22:b1:1d:a5:d4:76:54:fc:e2:84:a0:66:73:a1:15:a0:8a:16:
4e:81:59:87:1d:a6:e3:7a:c0:f6:6a:7c:3e:8e:b8:91:ee:f6:
3b:f7:2e:53:46:a8:39:c6:49:de:17:16:86:8e:10:99:05:80:
4a:c9:b0:9c:6b:8b:5e:20:0c:ae:92:25:bf:e6:d7:37:16:7d:
7a:b1:e4:a0:b9:8d:1b:31:04:8b:a2:46:b5:14:57:b5:a0:b7:
a5:1b:d8:ca:b9:99:2a:c9:6e:88:aa:56:50:3d:84:9f:9e:d8:
65:74:93:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:11 2024 by rpki-client on console-fra.rpki-client.org