Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/GH3nPmBaWU9lTpleojOSb1qwfCQ.roa
File: GH3nPmBaWU9lTpleojOSb1qwfCQ.roa (raw, json)
Hash identifier: rURKrYiCEi8Bv2ye6wAWjmmlRs7N84DbAE03FX2LV0k=
Subject key identifier: 18:7D:E7:3E:60:5A:59:4F:65:4E:99:5E:A2:33:92:6F:5A:B0:7C:24
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF790CEE374B06E4B706F6BBDD17B9
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/GH3nPmBaWU9lTpleojOSb1qwfCQ.roa
Signing time: Sun 01 Jan 2023 15:24:48 +0000
ROA not before: Sun 01 Jan 2023 15:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201617
IP address blocks: 148.81.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:79:0c:ee:37:4b:06:e4:b7:06:f6:bb:dd:17:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=187de73e605a594f654e995ea233926f5ab07c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9c:3a:76:44:1c:6f:0e:d3:50:9e:e2:e6:56:
83:6f:a0:dd:90:61:3f:ea:20:69:ac:4d:04:14:6c:
4e:db:d4:e5:fe:97:41:d8:66:a2:9c:3a:26:83:9f:
b6:cb:cf:55:c4:5f:21:d8:95:02:00:ea:e4:a3:f6:
bd:44:91:93:51:0c:7a:89:06:73:63:3b:8c:1f:77:
67:c2:6b:56:39:bf:b5:e0:3b:b9:42:7d:3f:2c:b0:
fd:85:ea:70:d0:45:f7:2c:25:55:48:29:1b:33:18:
3a:eb:5c:15:73:6d:2f:33:8c:63:90:06:57:51:51:
de:60:35:68:33:03:c8:c3:19:2d:1b:1b:e4:31:c2:
39:cd:46:71:73:16:5f:aa:e1:8b:de:ab:32:a8:8b:
f9:49:5f:38:e9:9b:d7:74:fd:14:da:49:25:25:09:
22:d2:69:23:e8:f2:fe:0c:0d:e5:9e:17:d6:69:d4:
f3:9a:f2:ed:ba:5a:8c:c0:b5:ad:15:e5:0c:e3:21:
9c:bf:cb:8c:14:e4:db:cb:e6:96:e3:dd:60:af:59:
55:8f:8d:de:b7:2a:cc:ac:e2:a7:af:2a:9e:3d:3f:
1c:7d:3d:5b:da:25:86:55:fb:75:f1:d6:00:82:39:
2e:bf:3e:2e:71:1e:56:14:96:1e:23:ee:d9:98:7a:
39:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7D:E7:3E:60:5A:59:4F:65:4E:99:5E:A2:33:92:6F:5A:B0:7C:24
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/GH3nPmBaWU9lTpleojOSb1qwfCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.81.230.0/24
Signature Algorithm: sha256WithRSAEncryption
14:06:14:fd:4b:0c:f8:90:55:bf:ad:8b:6f:ca:c9:9c:09:b8:
eb:71:bd:36:bb:19:68:72:ae:e0:72:16:46:df:88:80:16:bc:
c0:2a:56:fa:eb:ba:ed:ca:5d:98:eb:1a:f7:84:c2:06:9e:21:
3d:75:83:e6:db:00:33:b7:2c:24:2f:7f:e0:a6:46:6a:cf:7a:
8f:e5:a6:0c:d5:5e:7f:2d:c3:04:b5:97:d0:12:65:9d:21:f9:
0c:0e:f9:11:ad:cb:97:b5:9f:00:d9:24:d5:1b:b0:3d:9b:b0:
44:88:ea:cf:d6:02:28:14:c0:5e:89:9a:22:6c:0b:aa:bb:de:
66:48:1e:40:9c:4c:d7:b2:7f:0a:30:4b:a6:e3:f0:5e:0f:7e:
69:83:f3:4a:83:78:8d:49:9f:ea:68:e0:3b:ab:68:47:d7:7f:
b9:5e:f9:d6:88:dc:04:91:0d:dc:b0:cb:c3:8a:07:8d:b2:09:
dd:e6:93:9c:8c:03:ec:9a:2c:58:1d:96:a4:87:97:90:17:62:
49:59:e5:aa:9e:bc:45:2d:9f:1c:20:19:42:aa:af:c2:a3:9a:
f4:5b:e5:f7:af:76:44:8e:cf:4c:83:77:7f:e0:01:d9:24:79:
b0:02:e8:7e:ed:62:9c:83:b4:44:fb:9b:99:25:45:71:4f:fb:
9a:af:be:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org