Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/gidhV8RNZ_mwgUWX2aRQ_ztmgeY.roa
File: gidhV8RNZ_mwgUWX2aRQ_ztmgeY.roa (raw, json)
Hash identifier: fNhsECYgYP8BUrhSk5RVCwbXod/JbqZqVYE5AZGl+kU=
Subject key identifier: 82:27:61:57:C4:4D:67:F9:B0:81:45:97:D9:A4:50:FF:3B:66:81:E6
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 018570C2CA58A8097AD6D97C85F317C191E3
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/gidhV8RNZ_mwgUWX2aRQ_ztmgeY.roa
Signing time: Mon 02 Jan 2023 04:34:52 +0000
ROA not before: Mon 02 Jan 2023 04:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.23.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 18:09:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:ca:58:a8:09:7a:d6:d9:7c:85:f3:17:c1:91:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Jan 2 04:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82276157c44d67f9b0814597d9a450ff3b6681e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:70:53:d5:3b:b9:08:77:83:e1:dc:df:df:10:
a2:ab:06:05:6c:5f:33:bd:48:6b:63:9f:6d:90:bc:
0f:17:2b:cf:d5:50:66:bb:31:e0:ed:b2:89:57:de:
62:f9:de:e1:13:76:19:3b:58:39:68:af:ac:56:65:
22:98:ee:f6:0a:ce:5d:52:cf:23:78:50:8e:2f:5f:
dd:c9:ae:69:d7:7d:65:69:25:26:18:09:67:10:8b:
38:bb:d6:6e:40:30:a0:90:f3:f9:49:0c:d0:93:f9:
76:c6:09:5e:7d:a1:7d:ce:58:f3:c8:34:0d:1f:98:
61:fd:36:2e:a5:06:f7:bb:f2:3b:62:d2:4c:87:17:
9b:c6:48:a7:cf:4f:f0:fb:bc:88:83:51:11:58:fc:
4c:2f:6a:d6:68:d4:f6:30:68:d3:c4:a7:b9:4c:33:
9a:da:af:d7:81:df:71:16:21:b8:b8:2d:6b:62:18:
fa:be:38:2c:4c:43:2f:5a:46:72:56:d2:01:e4:50:
1c:a3:59:a6:14:52:41:fb:f9:7e:4c:1d:d4:e2:6f:
e2:b6:b8:f2:86:83:0d:d8:c8:e0:8e:12:58:19:bc:
ef:22:11:29:f0:a3:89:05:da:74:39:7e:cb:a6:0c:
92:37:25:09:36:cd:2a:7d:f8:f7:9b:0b:ad:6c:e0:
a1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:27:61:57:C4:4D:67:F9:B0:81:45:97:D9:A4:50:FF:3B:66:81:E6
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/gidhV8RNZ_mwgUWX2aRQ_ztmgeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.6.0/24
Signature Algorithm: sha256WithRSAEncryption
17:27:b3:2f:d1:28:3d:f0:67:30:34:f8:63:53:34:5f:02:3c:
67:42:7e:1a:37:a2:0a:20:6b:56:a7:7f:09:d5:51:0b:da:da:
22:4c:9f:41:7a:2d:6e:35:78:9c:68:aa:8b:d0:0b:a4:0c:d7:
21:54:02:70:40:fe:ee:1b:27:45:4d:b2:4e:ea:6c:be:5b:d6:
be:f6:3e:29:23:f8:f8:7e:45:54:db:10:19:e6:2c:18:b2:37:
91:69:1c:2d:19:67:40:5b:85:dd:ec:b9:ef:cb:f1:16:31:69:
46:0b:e3:76:e7:cd:8e:a0:d7:5e:8f:4d:9c:c7:f5:f6:ee:5d:
3e:66:aa:30:28:9a:6b:64:9e:0d:36:71:41:e8:58:f0:ff:92:
ec:ec:43:87:cc:41:39:49:fb:e2:90:2b:1f:a1:74:f8:e1:97:
6e:90:e2:15:ce:96:c9:f5:a5:db:27:a2:b3:d2:68:1a:d8:c9:
e8:76:b3:d6:7f:60:d6:cf:99:3e:39:af:db:5b:c4:0c:a1:a6:
89:93:03:03:a2:55:70:8f:1e:9b:39:cc:48:9b:79:e7:bc:bb:
d0:5c:98:90:56:9d:13:95:c6:86:b9:1f:85:2f:11:70:6d:bc:
0c:e6:5a:52:15:40:91:09:7b:05:db:62:c6:fd:1e:97:60:4f:
42:4e:52:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:18 2024 by rpki-client on console-ams.rpki-client.org