Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/GAHcr2kDYdRg_TOdZVFBnodEFMQ.roa
File: GAHcr2kDYdRg_TOdZVFBnodEFMQ.roa (raw, json)
Hash identifier: 7JQQYsKM7DA7Uq3l215C6QRmYW0T9GoPyXLgq6UZJ3U=
Subject key identifier: 18:01:DC:AF:69:03:61:D4:60:FD:33:9D:65:51:41:9E:87:44:14:C4
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018CC500C1DF65231136279A82DF491D4FE1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/GAHcr2kDYdRg_TOdZVFBnodEFMQ.roa
Signing time: Mon 01 Jan 2024 12:30:10 +0000
ROA not before: Mon 01 Jan 2024 12:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200461
IP address blocks: 178.18.148.0/23 maxlen: 32
Validation: Failed, certificate revoked on Fri 01 Mar 2024 08:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:c1:df:65:23:11:36:27:9a:82:df:49:1d:4f:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 12:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1801dcaf690361d460fd339d6551419e874414c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f3:67:6b:ec:36:8f:58:c7:a8:ba:10:60:dd:
96:61:8a:3a:f0:d9:5b:a7:92:db:19:b2:41:be:62:
90:f3:12:8d:de:28:43:34:ef:6c:4a:10:26:55:bc:
d0:92:bb:02:62:04:e4:5d:27:39:07:bf:42:09:7c:
e0:a2:9a:3c:de:39:3c:c7:ee:4f:18:d3:7e:8d:b1:
e9:00:d8:35:fb:94:9a:69:40:60:de:12:ef:91:8d:
58:fe:c0:fd:d3:c6:87:ca:ef:85:4e:5c:32:85:13:
f0:c6:e0:10:db:a2:c9:ed:e2:d6:93:f8:d2:b4:a7:
98:c9:3f:8b:37:f3:22:3b:e8:94:2e:e3:88:82:79:
5e:36:42:3e:6f:46:a1:60:b1:89:0f:1d:f0:b8:1d:
39:08:98:b4:00:d9:84:38:c6:a2:2a:a3:db:c5:3c:
08:2f:17:03:3c:bb:e0:cd:95:c7:67:03:50:85:14:
0f:a9:02:9b:70:ca:c3:0c:01:89:99:23:a3:00:8c:
23:c1:99:10:a2:3d:93:ca:64:de:5a:db:78:18:f1:
2e:26:f7:d0:2d:8f:d1:12:1c:a3:6f:fd:c1:75:6b:
a8:84:36:3d:54:0f:0e:f8:08:c4:0f:fc:5c:61:09:
45:e9:6e:5f:04:3d:e4:c7:bb:1f:9e:ba:35:f6:1a:
7b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:01:DC:AF:69:03:61:D4:60:FD:33:9D:65:51:41:9E:87:44:14:C4
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/GAHcr2kDYdRg_TOdZVFBnodEFMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.148.0/23
Signature Algorithm: sha256WithRSAEncryption
e1:43:be:15:c6:30:4f:9a:bd:99:30:58:a9:ab:b1:38:3f:08:
bf:38:97:23:0e:d1:ba:0a:dd:76:4d:1f:c9:06:a8:da:16:4a:
4e:9c:6b:c1:0b:ba:47:fd:86:0c:39:4b:cd:e6:f8:f0:dd:16:
0c:cb:ac:59:08:50:bd:5d:6d:a8:6c:54:cf:8d:a6:a6:6f:c3:
3c:d2:12:a8:81:ca:91:86:29:d0:1b:5e:8a:3d:e9:3c:3d:da:
c6:31:d1:69:35:af:f6:35:e3:3a:e8:a8:fc:2e:41:1f:6d:2a:
28:e9:d8:f7:a1:1f:4d:9f:b1:ba:da:58:10:9a:53:b1:67:00:
7e:f5:ee:68:8c:84:7a:a4:43:cd:68:b5:15:38:df:6e:2a:ca:
2b:5a:de:5b:b3:3c:21:ba:1c:34:93:53:61:09:40:c1:0e:9c:
10:e8:61:eb:2f:e2:58:2d:43:ff:22:8b:8c:27:a7:dc:d4:08:
7e:65:25:f1:ef:61:5c:68:26:9d:d2:04:c7:7b:dc:c4:97:f5:
a8:be:9a:36:fb:c9:86:f9:5a:be:48:3e:63:64:5a:ba:f2:57:
e9:4d:1b:13:11:ee:f9:81:a4:6b:9e:1a:70:d7:20:d7:43:61:
97:d7:74:99:56:b4:3c:b4:da:57:11:2e:19:4a:45:1c:4b:c1:
83:44:9d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org