Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c60b1b-9b42-45eb-a582-92ddec6bd0a2/1/gsJmEoyFFYk6N3RrcQ_bpPYCy_E.roa
File: gsJmEoyFFYk6N3RrcQ_bpPYCy_E.roa (raw, json)
Hash identifier: DcTEA9yh7ksD3NV1fotgW4XTsrl1M50uHXbpOBzhEAQ=
Subject key identifier: 82:C2:66:12:8C:85:15:89:3A:37:74:6B:71:0F:DB:A4:F6:02:CB:F1
Certificate issuer: /CN=4b4fbfcf5fdc48ab0bfb52854f7a04fc1cff1dbd
Certificate serial: 019329FBD43076A3941B63456CB48849E6EE
Authority key identifier: 4B:4F:BF:CF:5F:DC:48:AB:0B:FB:52:85:4F:7A:04:FC:1C:FF:1D:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S0-_z1_cSKsL-1KFT3oE_Bz_Hb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c60b1b-9b42-45eb-a582-92ddec6bd0a2/1/gsJmEoyFFYk6N3RrcQ_bpPYCy_E.roa
Signing time: Thu 14 Nov 2024 09:23:09 +0000
ROA not before: Thu 14 Nov 2024 09:23:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 185.57.208.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 10:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:29:fb:d4:30:76:a3:94:1b:63:45:6c:b4:88:49:e6:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b4fbfcf5fdc48ab0bfb52854f7a04fc1cff1dbd
Validity
Not Before: Nov 14 09:23:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82c266128c8515893a37746b710fdba4f602cbf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:ca:16:b1:cc:72:f8:03:88:61:12:88:d8:
19:6e:b0:58:1b:0d:8e:58:55:8f:aa:92:eb:40:bc:
6e:dc:54:0e:20:64:f3:03:8a:65:88:16:8b:9a:06:
9f:c9:a3:3b:00:bc:7f:26:34:cb:10:8d:dc:cd:ce:
78:a8:aa:48:ec:dd:75:55:9c:95:1a:06:ac:5b:e0:
d7:27:4e:68:ee:c7:17:19:f7:d9:82:ce:80:a1:4e:
f5:ef:ba:4b:81:e6:86:fd:f9:63:25:9e:b5:61:d4:
12:e1:4a:fd:a8:3f:9e:f2:a9:ac:11:84:4d:d2:2d:
d1:00:4a:92:9c:08:e4:b9:11:03:23:6a:38:58:2e:
0a:fa:c1:e4:5a:ee:e3:0d:e8:42:e7:7f:68:44:cc:
41:2f:a7:ed:ba:e4:ba:10:19:1a:94:38:b7:0a:46:
ad:2a:d3:1d:80:c7:9c:c7:47:d3:7a:18:8c:31:42:
0a:d6:11:c4:49:81:f2:af:d2:fa:7d:9c:82:e4:7f:
50:59:07:ae:35:96:3e:06:09:c1:a1:cd:22:10:fa:
57:b0:08:3d:60:74:9d:39:cc:aa:f0:83:22:07:06:
5c:55:38:24:df:fa:7b:54:c8:a3:7a:59:aa:c8:aa:
d7:61:30:a9:54:99:10:4e:9f:85:0a:fb:76:0c:2f:
ea:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C2:66:12:8C:85:15:89:3A:37:74:6B:71:0F:DB:A4:F6:02:CB:F1
X509v3 Authority Key Identifier:
keyid:4B:4F:BF:CF:5F:DC:48:AB:0B:FB:52:85:4F:7A:04:FC:1C:FF:1D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S0-_z1_cSKsL-1KFT3oE_Bz_Hb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c60b1b-9b42-45eb-a582-92ddec6bd0a2/1/gsJmEoyFFYk6N3RrcQ_bpPYCy_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c60b1b-9b42-45eb-a582-92ddec6bd0a2/1/S0-_z1_cSKsL-1KFT3oE_Bz_Hb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.208.0/22
Signature Algorithm: sha256WithRSAEncryption
60:fc:c1:ee:03:99:72:36:a6:f1:9a:b9:c1:68:5f:72:0d:9c:
f6:a1:d7:d3:70:ed:0c:46:b0:cc:e8:7f:8f:30:c8:f1:91:fd:
19:5e:47:98:9b:7c:df:de:e6:37:fe:1e:52:6a:46:0c:ec:a8:
e5:02:98:5a:75:88:7a:db:10:37:30:37:88:e0:e3:28:c7:ff:
e6:5b:03:cf:8e:6b:57:d0:39:07:74:a2:3b:53:85:e4:87:ab:
1c:37:f1:b6:7f:ac:d6:c5:00:0f:75:b8:d9:e9:91:01:13:47:
5f:2d:0e:a6:cf:49:be:cf:b8:f2:16:58:44:db:de:c1:3c:b0:
65:65:ba:dc:f4:16:fa:8c:5f:4a:57:2f:f0:11:45:2a:93:65:
e7:83:8e:86:1f:28:f4:70:e8:ed:ba:a3:13:10:d4:15:cb:af:
52:12:77:ff:af:4f:c4:9f:df:92:16:f7:ef:0e:66:c8:aa:99:
31:b3:38:91:38:63:53:46:70:33:6a:1c:27:13:3b:51:dc:53:
09:22:2a:bd:c9:0a:1f:39:3a:d7:17:4e:72:47:dc:fc:5a:82:
8a:fc:c9:ee:d2:5d:3a:a5:ef:45:2e:14:ed:21:43:54:72:e1:
d1:47:9f:dd:c7:77:ed:7c:6f:e7:96:e3:86:5c:45:cb:4f:8a:
2f:78:18:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:18:59 2024 by rpki-client on console-ams.rpki-client.org