Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/gtCXiO4Avk-adnQsGN6HGGu94c0.roa
File: gtCXiO4Avk-adnQsGN6HGGu94c0.roa (raw, json)
Hash identifier: aowmH6Ru2k0Wfv4Gee8CGHDYktZWorFESrvkkkfn0ks=
Subject key identifier: 82:D0:97:88:EE:00:BE:4F:9A:76:74:2C:18:DE:87:18:6B:BD:E1:CD
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B532A7704AFF22D946EBF09570B0814
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/gtCXiO4Avk-adnQsGN6HGGu94c0.roa
Signing time: Sun 01 Jan 2023 03:14:50 +0000
ROA not before: Sun 01 Jan 2023 03:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213252
IP address blocks: 213.238.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:2a:77:04:af:f2:2d:94:6e:bf:09:57:0b:08:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82d09788ee00be4f9a76742c18de87186bbde1cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c6:7f:03:bc:53:25:e8:d6:f0:28:7a:ad:0d:
65:99:c6:b2:9c:16:8c:3f:a0:cb:74:61:79:a9:fd:
99:b8:03:d4:49:e2:6f:bb:68:73:ba:18:8e:6c:5a:
56:4d:56:d3:50:56:3c:9e:ab:50:50:be:f3:78:a9:
c7:25:1c:b0:26:b4:6e:0f:8e:b4:90:6d:3a:32:6e:
57:86:df:fd:71:c8:e2:cc:f4:46:e5:fb:18:5e:ef:
3a:a7:af:5e:35:65:4a:5e:97:8c:75:bd:c0:91:90:
48:6b:27:3b:58:34:c0:8a:a6:11:84:9a:b6:10:e4:
31:d9:67:c6:74:c3:d1:ec:e0:61:b7:3a:a8:25:49:
7b:2c:61:ab:33:64:7f:c2:79:1f:df:69:b3:f5:5d:
79:d0:6d:c1:80:0e:38:26:59:39:a4:28:2b:5c:27:
5b:23:a0:da:72:1a:d6:5e:bd:49:54:a0:22:53:33:
c0:89:9a:f8:3c:0b:55:55:3c:53:e7:57:93:47:d6:
59:0e:96:d9:06:bd:76:a9:53:05:d3:a1:1a:bd:01:
c6:ce:8b:e8:16:0f:ec:b2:db:2b:e3:31:2b:a3:c7:
41:ff:cd:cc:13:77:11:e8:41:c8:44:85:00:c0:1e:
b6:74:16:b7:d7:90:b3:4c:58:1d:1b:a8:ac:4b:b5:
3c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D0:97:88:EE:00:BE:4F:9A:76:74:2C:18:DE:87:18:6B:BD:E1:CD
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/gtCXiO4Avk-adnQsGN6HGGu94c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.183.0/24
Signature Algorithm: sha256WithRSAEncryption
30:6a:36:81:63:d1:e8:69:61:2f:7f:d8:3d:a3:0a:23:86:9d:
36:6d:20:29:77:33:38:aa:b8:ec:df:72:d0:32:d9:c4:1b:8e:
81:d8:7c:ea:c4:46:a6:8a:20:20:cb:be:24:87:09:e7:6d:86:
33:b2:55:e4:11:72:d0:41:e9:a4:fb:6a:66:02:3d:c0:36:aa:
0c:fe:72:cf:41:c6:8f:9f:65:7b:55:06:da:8c:cc:77:97:af:
c6:5e:f7:d8:89:16:0f:48:30:4c:64:f5:ee:73:8c:89:ec:9c:
c1:2a:56:68:40:fd:d8:9b:d8:5b:53:0b:11:af:09:7c:93:32:
bf:d5:3a:cb:4f:86:f2:5e:bb:ba:20:45:1b:1c:15:bf:ad:14:
e4:e0:e5:6c:c4:69:6e:2e:9e:f6:9d:c4:f5:f9:8f:2c:ee:6b:
90:2e:49:30:54:c8:18:6c:ef:fe:d3:88:19:f8:fd:12:96:ac:
6d:5e:a7:0b:69:cd:58:59:ba:dd:24:5b:1a:a2:82:9b:7a:92:
ee:cc:14:e2:44:19:32:18:7b:fd:b2:72:aa:d6:fd:11:d4:92:
5b:03:f7:4e:09:69:c0:37:10:71:11:cf:cd:89:8d:2d:0a:9b:
4a:69:cb:57:8e:6f:3d:83:33:03:53:4b:f0:aa:a2:dd:a2:9d:
69:1d:99:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org