Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/0db348-8ca8-40de-82cd-29f20dc8eaf4/1/GeBgZyTS1QuNdxgI54zgi7q1fDU.roa
File: GeBgZyTS1QuNdxgI54zgi7q1fDU.roa (raw, json)
Hash identifier: s4Nle7ZLSsg8J/jXMA5NzrO6W4HQr4Sfka0txQ5bmvw=
Subject key identifier: 19:E0:60:67:24:D2:D5:0B:8D:77:18:08:E7:8C:E0:8B:BA:B5:7C:35
Certificate issuer: /CN=8a7b85c316586b199d26bfc48fe2598939cb6fde
Certificate serial: 018A8E64DF553B7F8A0CBF6C7DE6E40195D2
Authority key identifier: 8A:7B:85:C3:16:58:6B:19:9D:26:BF:C4:8F:E2:59:89:39:CB:6F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/inuFwxZYaxmdJr_Ej-JZiTnLb94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/0db348-8ca8-40de-82cd-29f20dc8eaf4/1/GeBgZyTS1QuNdxgI54zgi7q1fDU.roa
Signing time: Wed 13 Sep 2023 11:54:50 +0000
ROA not before: Wed 13 Sep 2023 11:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22612
IP address blocks: 185.61.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:64:df:55:3b:7f:8a:0c:bf:6c:7d:e6:e4:01:95:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a7b85c316586b199d26bfc48fe2598939cb6fde
Validity
Not Before: Sep 13 11:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19e0606724d2d50b8d771808e78ce08bbab57c35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:78:e4:bd:20:14:c5:da:95:2b:48:7a:2e:cc:
72:07:2b:64:e0:29:b2:4c:66:b9:cd:3b:1b:e3:ea:
d8:d5:a3:0a:e8:6a:fc:ef:47:85:19:09:21:18:6c:
68:1a:08:fa:77:89:8f:6d:00:9e:9d:61:ac:ef:f1:
43:78:26:45:fe:35:b3:c2:3d:d0:05:01:c9:9e:9d:
5f:c7:19:79:fb:00:08:56:47:7d:f6:b7:8b:93:11:
81:07:6d:cf:da:3a:98:b4:98:08:4f:60:31:89:20:
10:91:38:9b:b4:37:93:14:f0:ca:ba:fa:34:91:33:
2d:f7:1a:4a:2f:b7:21:69:3f:b7:ec:c6:e6:dd:21:
87:2c:92:9e:29:29:65:36:e2:7b:2b:35:5f:cb:13:
38:93:c9:a0:4a:95:50:81:c2:02:c7:ab:9c:b1:97:
73:03:bb:96:14:c8:d1:78:b7:05:60:d3:61:a4:e9:
0a:59:48:57:96:f3:3a:8c:cc:72:d6:14:ed:6e:13:
f9:7a:2d:9b:67:ba:c7:ab:4a:66:82:ee:ce:3d:98:
0f:a9:2d:c3:d7:96:84:f5:fe:61:9e:e9:5b:f6:fd:
12:ff:e6:8f:f6:93:b0:af:37:27:58:32:81:2f:32:
37:ed:9e:ab:56:09:f6:75:61:2a:4f:55:4e:a4:21:
b5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E0:60:67:24:D2:D5:0B:8D:77:18:08:E7:8C:E0:8B:BA:B5:7C:35
X509v3 Authority Key Identifier:
keyid:8A:7B:85:C3:16:58:6B:19:9D:26:BF:C4:8F:E2:59:89:39:CB:6F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/inuFwxZYaxmdJr_Ej-JZiTnLb94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/0db348-8ca8-40de-82cd-29f20dc8eaf4/1/GeBgZyTS1QuNdxgI54zgi7q1fDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/0db348-8ca8-40de-82cd-29f20dc8eaf4/1/inuFwxZYaxmdJr_Ej-JZiTnLb94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.152.0/22
Signature Algorithm: sha256WithRSAEncryption
84:b4:7b:92:40:ad:64:36:4d:57:d0:98:32:d2:c4:b5:94:12:
be:6b:2f:da:f4:17:e8:c7:a1:f4:a2:2e:59:99:6e:6e:cf:ea:
0b:7f:a7:3c:2e:a4:39:d7:f6:98:14:b3:e7:92:1b:7a:c7:04:
3e:ed:eb:0f:26:03:45:ad:03:7c:7e:2e:ab:1a:4b:16:ed:d5:
b5:6b:d2:19:aa:4f:3b:f9:80:a0:2d:d8:fd:52:9e:85:c1:17:
4d:32:09:fc:63:a3:bb:a8:13:54:eb:fe:95:6e:27:19:d3:8f:
85:b5:02:d8:b7:00:e3:3e:4e:de:55:52:1c:b6:79:64:e3:ea:
d3:ad:bd:15:bc:67:01:f9:e0:10:4b:ec:02:84:bb:ae:f8:a3:
4c:0d:9d:e2:fd:62:1f:22:84:62:52:a1:fe:0b:90:71:f3:7a:
08:28:cf:a9:e0:bb:70:7b:ac:d9:04:2e:97:cc:47:80:58:5a:
b2:80:0c:9b:da:4d:f0:3a:e1:ed:66:28:fe:11:af:4d:57:8a:
ed:29:88:21:9b:9d:1e:37:97:1b:80:40:e3:54:80:c4:25:e5:
ed:a9:34:9e:2b:86:ea:84:c6:4f:60:2d:a3:ce:dc:9d:99:0f:
75:66:6f:9d:da:4c:49:5f:33:1e:b2:e5:a5:d4:dd:4a:17:82:
7d:54:8a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:16 2024 by rpki-client on console-ams.rpki-client.org