Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gJ3U4GbAPl8FBR4vrgVihlUBG_s.roa
File: gJ3U4GbAPl8FBR4vrgVihlUBG_s.roa (raw, json)
Hash identifier: MEIWGVAlZc8GNSjy6p8V7rNjd09PrMtAaZdz2Tr5i4U=
Subject key identifier: 80:9D:D4:E0:66:C0:3E:5F:05:05:1E:2F:AE:05:62:86:55:01:1B:FB
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0186D01D65767065D820ACA22E0D53EAE0F6
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gJ3U4GbAPl8FBR4vrgVihlUBG_s.roa
Signing time: Sat 11 Mar 2023 10:00:32 +0000
ROA not before: Sat 11 Mar 2023 10:00:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.199.212.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
79.98.246.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
185.226.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Mar 2023 09:16:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d0:1d:65:76:70:65:d8:20:ac:a2:2e:0d:53:ea:e0:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Mar 11 10:00:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=809dd4e066c03e5f05051e2fae05628655011bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f6:77:c3:65:19:13:09:c8:a5:f0:bf:90:26:
e2:ad:a7:38:aa:d4:4c:56:4a:c5:8a:ea:1d:fa:27:
f9:7c:83:83:d7:42:c8:14:7f:0a:f6:9b:48:48:0b:
b2:45:f2:b2:41:f2:7e:99:9a:63:b6:e8:93:69:8e:
87:79:25:b0:d6:04:39:90:10:b9:40:a0:a8:a7:1d:
a7:6b:35:5e:0a:37:54:49:0f:d7:4c:3b:03:ef:ff:
27:81:94:8a:fb:26:ee:d2:d7:7a:b2:2b:6d:bc:93:
cb:5c:66:b7:54:06:a7:c6:32:1b:c4:9f:2d:bc:31:
29:df:e0:f6:24:4a:38:66:20:f6:58:17:9b:11:77:
35:01:c9:cf:9c:cc:0a:e6:da:7c:4c:dd:ff:50:d8:
6d:19:d8:b9:3f:f2:9f:38:26:37:5c:9f:06:93:38:
76:f1:3f:ad:c4:8c:07:d8:21:2c:be:e7:b3:3f:1f:
84:50:a6:10:61:41:2d:4e:63:c0:e1:70:68:47:3b:
42:0a:c5:62:66:93:ad:a5:df:96:92:e7:1e:c6:ce:
a9:25:d6:24:c4:d2:36:44:de:5d:26:dc:dd:5a:72:
9c:54:fc:a5:a3:be:ba:ef:5a:78:8f:f1:43:8d:f6:
e6:bb:3d:c6:24:b5:cf:00:92:40:1d:5d:f6:7b:5b:
47:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9D:D4:E0:66:C0:3E:5F:05:05:1E:2F:AE:05:62:86:55:01:1B:FB
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gJ3U4GbAPl8FBR4vrgVihlUBG_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.246.0/23
185.199.212.0/24
185.226.180.0/24
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
45:91:8d:ac:dc:40:d1:69:55:71:1f:68:c0:0c:22:68:fb:88:
44:6a:83:67:e2:3b:6c:a0:c4:71:fa:79:bc:9d:19:67:80:f8:
41:05:65:d9:3d:19:2b:50:ca:90:1c:da:d0:37:76:85:ff:f2:
e9:19:ca:26:2f:52:62:4c:1b:6d:f3:a4:90:5b:57:9b:c5:60:
f9:a6:4c:62:1e:ba:56:91:e3:a8:27:0b:d9:0e:a7:25:2d:3d:
a1:ee:0a:30:17:77:f2:b0:dc:a4:1d:2b:7a:73:61:a1:31:a5:
34:4b:99:c4:4c:85:b8:bd:78:db:ea:fc:fb:78:ea:23:50:9d:
fd:b8:48:41:79:0b:31:e5:0a:4b:07:9b:52:7c:c4:e8:3a:3a:
df:e0:2a:3d:7d:73:97:8f:12:52:00:cc:c1:c6:4a:02:6a:00:
3b:85:b2:f2:e9:ce:52:de:b7:00:30:57:5d:9d:cc:e8:df:3e:
e6:8d:04:6d:62:42:27:be:d7:e2:86:37:24:ab:89:16:79:73:
4b:d3:c3:66:a5:12:e7:6c:4c:f3:cf:ec:37:a7:2a:27:75:38:
ff:84:59:b0:69:f9:4c:21:2d:ec:b6:40:3a:81:82:5c:c9:70:
ca:b2:51:e8:70:7f:05:24:6f:49:ea:d9:6c:24:43:57:31:19:
c9:a6:f0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org