Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/_gAHlZRtRMlwoiTOngh-J9xqO30.roa
File: _gAHlZRtRMlwoiTOngh-J9xqO30.roa (raw, json)
Hash identifier: 6yhObp8G5Y2Bbe5I+TcZKG5Pw0K7YKNlI3rgCHFxqhc=
Subject key identifier: FE:00:07:95:94:6D:44:C9:70:A2:24:CE:9E:08:7E:27:DC:6A:3B:7D
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 018CF3DF34E57884BA633717D85460B640F1
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/_gAHlZRtRMlwoiTOngh-J9xqO30.roa
Signing time: Wed 10 Jan 2024 14:55:40 +0000
ROA not before: Wed 10 Jan 2024 14:55:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 185.191.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Mar 2024 18:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:df:34:e5:78:84:ba:63:37:17:d8:54:60:b6:40:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Jan 10 14:55:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe000795946d44c970a224ce9e087e27dc6a3b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:55:87:bb:24:eb:ca:2e:5a:ad:b5:e3:b3:ee:
0b:5c:8c:4e:af:df:cb:bd:37:4d:40:bc:a5:ce:55:
30:dd:6d:a4:ed:2b:dd:a5:c5:c6:07:92:be:9c:4f:
c0:ba:f1:18:f1:e7:c5:de:90:be:c2:97:8c:0a:73:
df:2c:3e:fa:87:67:c1:5f:9d:e3:4a:e2:1a:91:80:
52:3b:c8:0d:3e:c4:42:b7:73:50:4f:d8:85:8c:d2:
a4:fe:7a:a6:38:ca:5a:77:31:da:0e:3b:a3:05:ed:
95:92:c1:57:e9:45:f0:70:ae:87:ae:71:b8:de:5c:
74:32:83:5a:07:fc:91:e0:12:5c:7a:0e:ea:2a:1f:
02:ef:56:af:d4:ca:0a:8d:b8:b2:d5:6e:f3:db:67:
66:c6:96:dd:e8:ed:1c:ec:d6:b6:12:b9:68:2d:87:
56:0f:0f:67:e9:f7:0e:c7:9e:49:40:7e:6f:a7:0b:
5f:2b:88:d3:b3:2e:c0:e5:2b:0e:54:4d:2c:05:7c:
c2:6c:a4:f7:9c:19:d3:bd:9f:6b:6b:ae:eb:fb:20:
86:d7:0c:3d:10:4b:00:ef:a5:38:5f:5c:9d:56:72:
d6:0b:5e:25:50:1c:d8:9b:a4:f7:2e:75:43:83:08:
a3:d2:12:5e:a3:c4:41:37:37:71:8b:4d:0e:4b:f5:
54:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:00:07:95:94:6D:44:C9:70:A2:24:CE:9E:08:7E:27:DC:6A:3B:7D
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/_gAHlZRtRMlwoiTOngh-J9xqO30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.20.0/24
Signature Algorithm: sha256WithRSAEncryption
97:3c:0d:4d:ab:1a:70:36:96:9a:7a:7d:28:6f:2a:1a:a3:09:
9e:cc:92:62:7e:b7:7d:40:a5:40:1f:5a:b3:63:76:33:da:9e:
bc:1a:1f:14:9d:3e:c2:a8:6e:87:af:88:66:86:34:28:6a:8b:
01:02:80:63:c1:22:86:be:84:6f:bd:80:57:b0:45:eb:57:86:
90:36:eb:90:94:d5:31:89:d4:03:75:e6:17:1b:fc:f5:dd:36:
ee:8b:0b:e9:5e:35:95:46:a8:c2:26:c4:c0:91:e8:60:bb:12:
8e:d0:7b:ec:1d:38:9d:8d:92:9f:67:d5:dd:10:7a:9d:c7:74:
42:02:2f:5d:ea:66:c6:50:b4:94:d5:26:7c:8b:88:ba:77:5c:
21:4f:0a:75:5c:f6:ae:3a:49:06:f2:74:26:89:7b:a4:be:3e:
77:a2:be:10:f9:60:60:95:9f:4f:54:d2:fc:da:6e:61:c1:b9:
c2:f2:10:bc:16:56:62:bf:2e:dd:84:e9:a1:fa:82:c5:50:27:
16:34:d9:b2:74:07:a3:7f:8d:06:e9:cd:3b:0f:3d:24:5d:7f:
2a:c5:95:16:89:04:0e:69:41:b4:1a:03:b3:8d:6d:a4:0d:49:
5d:65:f3:91:64:df:c8:b2:85:8f:51:3f:96:2c:20:92:79:2c:
a7:e3:e7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:19 2024 by rpki-client on console-ams.rpki-client.org