Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/GEGUaTo3BTAQMRm9kt9z3QouAkE.roa
File: GEGUaTo3BTAQMRm9kt9z3QouAkE.roa (raw, json)
Hash identifier: PmQCF0a0hXqEHU9DA0nIpCMsmlalV1MYVjnY4eakdJE=
Subject key identifier: 18:41:94:69:3A:37:05:30:10:31:19:BD:92:DF:73:DD:0A:2E:02:41
Certificate issuer: /CN=cc72e633df5635a9f98d2f68a6d2adcb44155cdc
Certificate serial: 018CC86FE2499580F8AE1F500236D0469113
Authority key identifier: CC:72:E6:33:DF:56:35:A9:F9:8D:2F:68:A6:D2:AD:CB:44:15:5C:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zHLmM99WNan5jS9optKty0QVXNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/GEGUaTo3BTAQMRm9kt9z3QouAkE.roa
Signing time: Tue 02 Jan 2024 04:30:24 +0000
ROA not before: Tue 02 Jan 2024 04:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59773
IP address blocks: 185.71.204.0/24 maxlen: 24
185.71.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 08:23:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:e2:49:95:80:f8:ae:1f:50:02:36:d0:46:91:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc72e633df5635a9f98d2f68a6d2adcb44155cdc
Validity
Not Before: Jan 2 04:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=184194693a370530103119bd92df73dd0a2e0241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:61:ab:74:76:a8:c3:bf:43:b6:cb:dd:6e:2d:
2e:d2:32:c0:f0:aa:fa:11:e8:61:0b:61:e8:2e:b5:
3c:87:9b:e5:44:3e:00:f5:3c:66:4d:ad:ed:05:f8:
1d:f0:62:7b:9c:64:12:5c:09:93:10:52:a1:63:94:
28:8d:8b:03:7f:80:cc:84:5f:65:ba:b3:34:b1:7b:
40:c8:de:a7:31:c9:a8:e7:d1:7e:12:a5:b6:1f:36:
16:75:7e:f7:0a:a0:75:3d:7e:1c:4a:95:5d:53:5b:
57:e3:0c:90:22:f1:a0:07:71:c3:f9:aa:ea:d8:f4:
ce:5c:ee:a1:b2:74:88:8f:db:de:11:7c:82:37:63:
39:42:d0:bb:f1:1e:7d:43:03:eb:30:f2:df:f0:d3:
fa:ff:dd:eb:17:c4:08:d5:6d:30:b6:15:2c:13:98:
55:81:ab:11:5e:c7:12:58:3a:ce:9b:db:25:dd:94:
f7:e0:64:af:ec:65:3a:28:6d:a0:91:d1:2e:ed:81:
ec:68:0e:3a:61:a9:bb:27:7e:c4:3b:04:7c:2c:6c:
0f:67:a7:8a:04:af:d2:a2:e7:9a:2e:4a:f2:61:91:
ff:73:46:01:b7:c8:25:52:2a:57:1b:c3:07:eb:5a:
d1:7d:4b:6d:97:b2:c1:ed:30:71:c9:12:79:21:ed:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:41:94:69:3A:37:05:30:10:31:19:BD:92:DF:73:DD:0A:2E:02:41
X509v3 Authority Key Identifier:
keyid:CC:72:E6:33:DF:56:35:A9:F9:8D:2F:68:A6:D2:AD:CB:44:15:5C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zHLmM99WNan5jS9optKty0QVXNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/GEGUaTo3BTAQMRm9kt9z3QouAkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/zHLmM99WNan5jS9optKty0QVXNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.204.0/24
185.71.207.0/24
Signature Algorithm: sha256WithRSAEncryption
57:67:cb:1b:23:5b:1b:e7:9c:8a:a9:21:f5:58:bf:8a:b9:40:
6e:05:82:7d:40:90:8a:fc:d7:6e:29:75:d7:88:08:12:92:7f:
8d:a0:27:7e:8f:37:20:ed:d1:c9:90:26:03:83:c8:d8:53:18:
cd:62:d1:80:02:d1:ec:04:54:3d:9f:72:b3:68:49:6e:f6:d6:
0a:ea:7f:9e:35:b5:14:0d:72:27:94:d3:db:ee:a5:a5:3d:44:
ba:3a:60:0b:14:3b:be:44:44:49:bf:1f:da:6d:53:c4:d8:69:
3f:eb:c5:f1:7a:b0:b5:e5:cd:2f:ab:9c:1c:2f:68:08:94:83:
65:76:7d:a9:61:af:b5:a7:c8:44:da:fe:d3:d9:b5:d8:f9:65:
9c:56:44:ff:12:e4:83:3c:18:f9:de:e4:e0:6b:56:9b:2f:7a:
2d:27:22:9f:b5:10:10:77:17:13:83:ff:28:50:03:05:d0:4a:
fe:31:9c:3b:e3:f4:58:1e:7f:7c:05:68:7f:a6:72:5f:cf:f2:
e0:f0:c4:a3:83:79:b6:4d:b4:b8:15:af:f5:d7:63:6e:89:c2:
ad:26:62:59:fa:f7:09:c1:f3:89:da:f1:c2:f6:4b:56:9b:57:
21:50:8d:33:83:a6:3b:78:fb:36:e7:35:1e:c2:0b:ab:0e:23:
3a:eb:8a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org