Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/GKEHOllxIccmZrFNGi6yWHA3P8U.roa
File: GKEHOllxIccmZrFNGi6yWHA3P8U.roa (raw, json)
Hash identifier: JwgD2uxy3cTGKpd3niS9rcogXatR8f+gzYncSSwfTV8=
Subject key identifier: 18:A1:07:3A:59:71:21:C7:26:66:B1:4D:1A:2E:B2:58:70:37:3F:C5
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 0185710BE399BF3D5609D6D8CFC197767F55
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/GKEHOllxIccmZrFNGi6yWHA3P8U.roa
Signing time: Mon 02 Jan 2023 05:54:42 +0000
ROA not before: Mon 02 Jan 2023 05:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60118
IP address blocks: 185.230.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0b:e3:99:bf:3d:56:09:d6:d8:cf:c1:97:76:7f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Jan 2 05:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18a1073a597121c72666b14d1a2eb25870373fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:49:fb:fe:b4:f8:fa:c9:c8:28:89:2d:d4:23:
62:71:3a:3c:4c:ff:ce:c8:af:08:92:3b:4e:09:d1:
ae:12:3f:7e:70:af:b9:43:7c:43:73:94:be:a4:c8:
3e:58:51:62:cd:32:19:ae:5e:03:ea:88:88:fa:81:
28:3b:9a:62:70:93:0b:68:43:56:24:c8:a1:ae:4e:
f1:57:c3:7e:b3:ca:4a:e0:b5:ec:bc:74:07:ff:4b:
87:f1:2e:49:ab:31:d7:68:47:5c:b9:ec:83:d1:6f:
08:42:ec:89:52:67:67:12:39:f9:e7:48:c4:de:36:
31:47:2d:8a:ab:ca:eb:ec:9f:10:31:75:1d:a9:d0:
e3:b8:f5:7c:ba:db:43:40:5d:5b:ec:95:1d:52:68:
2a:bf:60:40:ca:fc:78:d4:19:cc:ae:a9:4c:57:a1:
a8:14:b1:e9:e1:e8:09:32:46:c5:c2:bf:37:4e:fc:
2d:8f:77:80:09:5d:cd:98:67:22:03:3e:58:cd:a2:
16:89:7c:03:60:7d:55:ea:d6:2e:eb:f0:45:ea:86:
f1:10:76:66:3a:9e:a1:40:44:0c:00:af:d3:8c:b5:
e9:e2:dd:54:9f:f9:a2:56:c8:0f:cc:c4:b4:fa:5b:
9a:37:b1:10:56:5d:36:24:c5:5c:a0:c6:56:6d:05:
82:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A1:07:3A:59:71:21:C7:26:66:B1:4D:1A:2E:B2:58:70:37:3F:C5
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/GKEHOllxIccmZrFNGi6yWHA3P8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.18.0/24
Signature Algorithm: sha256WithRSAEncryption
71:82:14:97:f0:89:b8:97:df:07:c4:01:95:70:3b:c0:39:ac:
ea:88:b8:e6:42:10:e8:5e:af:49:52:72:02:f9:7f:92:b5:bf:
7f:05:d1:c0:cb:e4:e8:38:14:f0:0e:9d:19:41:fc:31:39:62:
d5:2c:0b:5f:c8:64:d1:dd:56:d2:f9:42:1f:59:ca:e4:d0:49:
83:29:8e:45:11:43:e1:f9:4b:2f:4c:4f:3f:09:72:cf:6f:aa:
ac:69:7b:85:c1:5d:5d:b6:23:0d:fb:36:a4:8e:a7:a1:5a:ee:
66:0a:4a:a0:ba:da:65:ab:b2:16:35:c0:67:40:10:87:02:79:
d8:12:75:5d:03:33:e9:80:a3:65:4a:6b:59:cd:0a:ef:eb:bc:
7d:ae:0e:37:76:3f:47:8a:7b:c1:55:35:49:a1:a6:72:24:0e:
41:f9:f6:f2:5b:93:31:9c:9a:44:26:01:8c:46:0e:4b:e5:de:
c7:cf:f9:e4:d8:0a:1e:ae:4b:67:fe:9b:5a:8e:0b:3d:bd:17:
ed:7d:cc:e2:16:d1:49:c3:ef:4a:8f:c8:06:f8:19:1a:d6:d2:
f7:27:ec:cd:8d:f0:d5:5e:d6:74:40:79:c4:d0:38:c6:16:8c:
53:15:eb:30:e8:7b:14:99:0d:71:2c:52:9a:1e:11:31:0e:d8:
ec:1a:cd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:46 2024 by rpki-client on console-ams.rpki-client.org