Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/GD35kZ27zgJApereUYRsJGUTlKw.roa
File: GD35kZ27zgJApereUYRsJGUTlKw.roa (raw, json)
Hash identifier: +gshUYnRLZUIYgRLLoDvV7klkt4IY2fh+aAoKai7Zg0=
Subject key identifier: 18:3D:F9:91:9D:BB:CE:02:40:A5:EA:DE:51:84:6C:24:65:13:94:AC
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018B62ED39DC4916B9FBF7ECA75B559D12DD
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/GD35kZ27zgJApereUYRsJGUTlKw.roa
Signing time: Tue 24 Oct 2023 18:23:15 +0000
ROA not before: Tue 24 Oct 2023 18:23:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216127
IP address blocks: 5.104.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:62:ed:39:dc:49:16:b9:fb:f7:ec:a7:5b:55:9d:12:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Oct 24 18:23:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=183df9919dbbce0240a5eade51846c24651394ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3c:a3:53:78:ce:00:97:b8:d5:57:d0:86:96:
96:e5:b3:1b:02:8b:e1:0f:8f:40:2d:c6:b5:07:63:
66:85:71:bd:95:8d:0f:38:0e:d8:84:49:c6:24:a5:
e3:e0:61:e4:2f:9d:68:76:d9:91:13:02:8d:45:dd:
65:00:89:88:88:99:64:fa:d3:50:57:ee:1a:16:8b:
e3:36:7c:14:a4:12:62:47:4e:aa:ba:fa:3e:98:3a:
b3:de:1b:fc:c0:40:80:b1:81:4d:c8:af:a1:b9:13:
70:84:71:d0:42:a5:bf:b0:c6:dd:18:7c:70:49:19:
e1:28:3b:18:23:82:ab:f0:42:64:41:f4:b4:f5:9e:
8e:42:80:67:81:9f:a2:1d:54:cd:ed:89:59:db:89:
39:c9:fe:43:f9:65:54:88:bb:9a:8b:b1:78:0b:9d:
30:eb:23:5a:c8:46:12:98:08:68:a9:66:6d:83:ae:
7c:6d:11:a8:cb:ae:8a:9a:9b:29:92:6f:4b:4e:bc:
3c:b8:9d:c3:c5:3d:fe:d1:63:40:0a:7f:47:a3:6b:
97:65:0c:6d:f8:57:eb:de:4a:3d:85:09:7a:15:76:
90:76:b3:ea:0c:de:97:dd:e1:7a:4e:91:52:6f:e4:
c0:6d:33:d9:4c:dd:12:2b:9a:61:99:41:ef:23:01:
90:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:3D:F9:91:9D:BB:CE:02:40:A5:EA:DE:51:84:6C:24:65:13:94:AC
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/GD35kZ27zgJApereUYRsJGUTlKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.75.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:c9:82:fe:6a:80:31:74:1f:78:18:1e:3e:c3:76:d0:d7:fa:
78:cf:bb:f1:49:93:c2:8f:a8:05:7d:42:73:c9:5f:bc:9b:e1:
9f:fd:72:fa:8a:ed:00:e0:07:e6:42:d4:4c:da:1c:55:c6:62:
9b:6a:50:e5:8c:4c:06:71:15:58:75:f9:ee:84:92:9a:7b:25:
30:b6:d0:35:5c:48:2e:70:e2:48:90:75:ba:12:69:39:01:8f:
0b:f0:60:6c:7d:77:4a:58:03:3f:73:d8:2d:a7:5d:bc:37:9f:
dc:08:2b:67:0e:70:5e:91:c0:b5:73:1d:5b:67:6c:74:7c:db:
7e:0d:54:b4:32:56:67:87:2b:93:5f:12:33:19:0e:17:2b:25:
c1:b6:fd:c8:91:e1:5f:12:2e:1b:d1:ad:b0:e2:b5:d3:0e:87:
28:b6:b2:49:c4:25:11:b7:70:8d:7c:40:1d:f6:e2:88:4b:5f:
17:d6:b6:04:be:7e:a4:42:ab:4a:f0:90:3d:8d:36:e6:e6:22:
c1:63:62:b0:79:7d:4b:c5:8e:b2:73:06:9f:ca:a1:3e:48:74:
c2:4a:93:13:f8:ae:e7:03:df:ee:c2:c6:5c:b2:a4:0d:f6:6b:
75:1a:5f:eb:d2:90:be:3b:78:f0:08:52:0c:12:91:de:6f:70:
2c:ea:2b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:37 2024 by rpki-client on console-fra.rpki-client.org