Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/GPNK4FfkLv8cTwlfZ1sJyXRtrzU.roa
File: GPNK4FfkLv8cTwlfZ1sJyXRtrzU.roa (raw, json)
Hash identifier: BeZZBQJTyjrrL6znYtU4F2N+zAiSmBpuiSQylWr+/U0=
Subject key identifier: 18:F3:4A:E0:57:E4:2E:FF:1C:4F:09:5F:67:5B:09:C9:74:6D:AF:35
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0185A5B3398964F3F70ED191C684182AA449
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/GPNK4FfkLv8cTwlfZ1sJyXRtrzU.roa
Signing time: Thu 12 Jan 2023 11:17:44 +0000
ROA not before: Thu 12 Jan 2023 11:17:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51395
IP address blocks: 5.182.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:b3:39:89:64:f3:f7:0e:d1:91:c6:84:18:2a:a4:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 12 11:17:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18f34ae057e42eff1c4f095f675b09c9746daf35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0e:c1:d4:0f:58:16:77:2a:20:df:bd:7c:40:
60:23:13:d2:65:26:fa:fb:a7:bc:90:6c:ee:11:94:
02:49:ee:a8:f3:f7:87:bf:e7:6f:0b:de:d2:d4:28:
de:fd:4f:2f:20:61:e0:6d:24:1e:a3:5e:35:c3:74:
0f:e8:4b:22:a7:88:6d:47:96:1c:6e:23:11:6f:5e:
d8:94:e9:71:be:6e:0c:bf:38:83:ab:66:c9:16:40:
14:70:10:22:db:ff:49:2d:01:55:d1:de:b3:02:10:
44:62:56:2a:8e:90:8a:9f:9f:cb:03:50:8a:a4:52:
bd:74:45:19:d0:a7:a2:4d:fe:90:14:99:16:a3:a5:
5a:e9:8c:af:f6:d5:a4:ab:19:fe:e2:07:26:83:ff:
9d:d4:19:45:49:59:b7:80:bd:74:90:53:54:62:a4:
66:fb:65:1e:35:8c:16:92:54:2d:ce:ff:63:27:cb:
18:34:cf:0c:70:47:3c:9b:9f:b8:85:34:d8:97:7d:
01:4f:34:13:00:f0:49:9f:09:86:cc:02:1f:72:1e:
1c:65:5e:5f:f7:6f:7c:37:09:61:4c:ab:c4:a6:7e:
6e:12:68:9d:d9:cf:6e:9a:e1:65:60:f7:89:5a:7e:
9f:11:2f:1e:ac:24:65:6c:9f:14:9e:9e:9d:13:ad:
a3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F3:4A:E0:57:E4:2E:FF:1C:4F:09:5F:67:5B:09:C9:74:6D:AF:35
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/GPNK4FfkLv8cTwlfZ1sJyXRtrzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:eb:41:dc:30:f1:bb:c9:7d:ae:60:86:42:91:26:10:f8:7e:
ad:d0:d4:e6:6e:04:76:0c:d9:89:2f:99:23:30:40:0b:27:71:
c6:e8:2b:13:0b:bd:3a:28:cb:fd:4f:67:73:a1:3b:a3:a7:e6:
44:35:5e:f5:ca:b6:b8:02:a3:7b:c1:dd:74:7a:31:32:9c:6d:
9f:64:b4:a7:f7:da:44:04:97:dc:24:67:b5:92:41:31:f2:c8:
61:dc:f6:38:23:87:d8:d8:6a:c9:97:65:4d:b2:08:ca:47:8c:
6e:32:3d:c8:47:43:f9:7e:d1:ba:af:5a:85:5d:ff:be:f0:dc:
4f:b5:db:86:bf:42:0d:9b:d2:b9:9d:9d:03:92:75:76:5e:41:
99:dc:94:9d:bc:15:2a:51:da:6d:2e:3f:ba:5b:f9:a6:0f:1b:
ef:99:8e:31:f0:75:4b:a4:3f:04:b4:0b:a8:65:93:b7:b9:13:
85:4a:6a:59:7c:af:91:59:31:ef:56:6b:c0:2c:24:78:5d:80:
12:7f:f0:b8:8c:ba:05:32:f6:50:95:48:7c:54:2b:c6:31:a5:
9d:2e:fe:6c:57:d4:00:70:ac:4d:b2:33:11:9c:36:a9:6e:e8:
3a:4a:6c:62:52:10:36:c2:e0:93:8f:9f:01:be:ca:08:00:45:
38:49:bf:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:18 2024 by rpki-client on console-ams.rpki-client.org