Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/gMNaxqGGuNXNb6kKZ-k5CKb-TeE.roa
File: gMNaxqGGuNXNb6kKZ-k5CKb-TeE.roa (raw, json)
Hash identifier: lXR6fRbLSjM4Xw1/usvbEuysbnbIlMkyTZlfCa8SMLw=
Subject key identifier: 80:C3:5A:C6:A1:86:B8:D5:CD:6F:A9:0A:67:E9:39:08:A6:FE:4D:E1
Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Certificate serial: 018572559DDB6F968E423F4BCB44C4830E53
Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/gMNaxqGGuNXNb6kKZ-k5CKb-TeE.roa
Signing time: Mon 02 Jan 2023 11:54:51 +0000
ROA not before: Mon 02 Jan 2023 11:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205706
IP address blocks: 185.205.152.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:9d:db:6f:96:8e:42:3f:4b:cb:44:c4:83:0e:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Validity
Not Before: Jan 2 11:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80c35ac6a186b8d5cd6fa90a67e93908a6fe4de1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b7:2a:42:9e:8b:f7:e8:97:2a:40:8a:47:a0:
08:ca:62:f0:42:ce:4d:28:1f:db:e0:f3:2b:77:c5:
60:de:f0:65:04:f6:53:86:86:0f:d5:bd:de:3b:46:
70:40:47:f3:e2:cb:fc:d8:42:d0:d4:92:96:fe:b3:
a0:2e:85:28:ee:72:63:8e:dc:dd:f3:bb:f4:46:b7:
d3:f7:81:2c:c0:14:52:cb:d9:5f:df:13:49:11:a2:
0b:41:a7:1b:95:5a:c2:33:68:ec:a1:92:a5:46:47:
0b:14:b6:73:be:e4:6e:f5:0f:98:9f:5e:45:41:34:
21:c5:a2:b6:66:28:8c:9e:79:7a:86:20:82:c7:6d:
76:23:f4:e8:7c:f5:30:b9:67:1a:e7:f9:1c:8d:a7:
0a:61:21:b6:86:1e:cd:0f:57:a3:92:23:ce:05:4a:
97:f9:c5:e6:ed:c9:e4:a6:82:86:1c:b2:83:00:f0:
1f:f5:d3:b1:07:c8:93:b9:0f:4c:95:26:25:7b:f4:
d1:21:9a:32:27:33:a7:f5:86:1a:c4:b3:fb:bc:d8:
23:6b:83:07:6f:94:e5:fa:e7:a1:b7:21:36:ef:1a:
9c:52:41:e2:f3:b5:d6:fa:51:05:aa:e8:36:72:88:
4e:97:a3:58:ed:cf:5a:c8:3d:b6:39:75:18:c0:f6:
9a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C3:5A:C6:A1:86:B8:D5:CD:6F:A9:0A:67:E9:39:08:A6:FE:4D:E1
X509v3 Authority Key Identifier:
keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/gMNaxqGGuNXNb6kKZ-k5CKb-TeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.152.0/22
Signature Algorithm: sha256WithRSAEncryption
37:99:dc:23:a0:9c:46:78:9b:60:28:7f:e7:91:39:5e:13:91:
89:74:ff:98:e6:af:c5:08:d5:81:01:ca:aa:f0:f6:92:41:0d:
6f:d4:90:b2:c4:88:47:bb:64:70:27:71:ca:db:bc:30:d1:ad:
7c:0a:60:dc:19:44:e4:a6:0c:c7:da:a1:d3:16:83:c2:5c:8f:
db:b9:6b:c0:fe:1d:e1:d0:f8:7a:c2:87:b4:6d:6c:34:d5:5b:
c7:27:8d:9a:4d:4b:b1:1b:92:f7:b1:35:d2:40:6e:90:58:ef:
33:09:41:c0:fb:c8:bb:2e:0c:40:e4:03:94:27:c1:e3:92:73:
63:31:c7:92:aa:25:86:af:8a:42:e6:16:ed:22:f7:8d:e5:50:
f1:39:2b:1f:25:57:13:9c:9b:ee:4b:fd:1b:65:b2:98:a9:a4:
0c:e9:09:a3:a2:5e:78:96:20:fc:88:2a:61:72:e3:45:c4:34:
b9:9d:5f:74:d6:c9:4a:d3:58:6f:5d:70:ed:a3:89:cc:1d:9e:
12:a1:a1:92:f9:36:5f:fc:44:de:09:da:5a:5d:99:02:51:0a:
56:a1:af:56:9a:14:a8:8e:8b:d1:41:0f:97:52:ff:26:8b:b1:
da:61:e7:28:4e:22:ce:6c:e1:3f:10:fb:c8:60:36:1c:64:ba:
13:43:07:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:51 2024 by rpki-client on console-fra.rpki-client.org