Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/GhC6Lsrchxgd0fP8dkMpymyBOes.roa
File: GhC6Lsrchxgd0fP8dkMpymyBOes.roa (raw, json)
Hash identifier: mpHE/VGwChjPDUPqStZBWGTrfqQvcCkJVGjhGx80Jwg=
Subject key identifier: 1A:10:BA:2E:CA:DC:87:18:1D:D1:F3:FC:76:43:29:CA:6C:81:39:EB
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 018AC80EA379101B7DF0C620FFBA07A25346
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/GhC6Lsrchxgd0fP8dkMpymyBOes.roa
Signing time: Sun 24 Sep 2023 16:38:37 +0000
ROA not before: Sun 24 Sep 2023 16:38:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 185.137.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c8:0e:a3:79:10:1b:7d:f0:c6:20:ff:ba:07:a2:53:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Sep 24 16:38:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a10ba2ecadc87181dd1f3fc764329ca6c8139eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:66:37:d6:6f:76:01:2c:a3:e1:38:73:87:c0:
2d:9a:8d:ad:d7:7b:b7:ee:e0:00:c9:14:20:8e:f2:
36:a9:93:7a:d9:65:f6:36:c1:0c:3c:cb:e2:13:1d:
eb:3e:eb:12:87:f5:77:02:39:5e:b8:4b:5e:bf:20:
7d:1a:76:34:d1:95:c5:86:80:af:7b:e2:a5:8e:65:
45:55:5c:e1:4c:a1:12:83:c4:64:0f:b2:0b:32:aa:
16:af:3a:6a:d1:f6:49:54:35:66:2a:37:17:84:95:
5b:5e:12:3b:f3:63:fd:71:3a:59:ce:e8:e1:67:33:
7b:4d:aa:b4:40:c9:b0:24:be:50:e7:3b:c3:c0:bd:
99:94:b2:00:69:b9:67:c2:16:82:db:7c:77:80:21:
d4:ea:74:bf:e1:7d:1c:21:52:c4:b0:0f:45:fb:d3:
d1:9a:d4:1c:4f:fa:e2:e1:2c:bf:90:e5:93:25:80:
58:56:35:11:14:ba:30:ed:12:2e:a7:85:bd:50:c3:
4a:77:a6:19:ec:c9:ab:46:6a:2d:e4:20:38:a2:13:
af:ce:93:d1:e3:be:c4:80:3c:ba:4d:a1:bb:28:5d:
ab:f4:76:fd:24:d7:d9:5f:be:30:5d:8f:d4:67:36:
30:98:15:ac:7d:b8:62:2c:f8:ba:f3:74:47:ab:c8:
6d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:10:BA:2E:CA:DC:87:18:1D:D1:F3:FC:76:43:29:CA:6C:81:39:EB
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/GhC6Lsrchxgd0fP8dkMpymyBOes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.98.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:aa:95:54:65:50:2b:ef:76:8d:97:7e:99:f0:d7:1e:18:44:
4e:be:f9:dc:3e:68:eb:c0:40:d9:c2:83:6b:3c:c7:a4:8e:dd:
58:7b:c5:78:86:6b:67:b7:ee:0c:4a:1b:fb:60:9c:06:1e:18:
84:a9:09:7e:b7:ef:be:0b:ec:fd:7e:df:b2:74:71:b5:b3:29:
26:79:ca:f8:ec:4e:6a:cb:50:ce:54:dd:0b:c0:94:c7:64:ea:
e8:05:d7:52:83:8c:4e:38:a0:28:24:b9:ed:46:35:93:eb:fe:
6d:68:f1:f0:79:5d:c5:b3:be:f5:d3:32:e0:b7:99:27:2f:51:
6b:0f:97:48:db:c7:76:4b:df:a0:9d:d5:cd:40:89:eb:c6:41:
1b:88:d0:63:06:50:69:89:cb:81:7a:21:a6:7a:a8:fe:fd:27:
29:cd:b8:0f:ea:fa:b5:b0:41:83:a7:fb:aa:c7:bd:20:7b:3f:
bf:f6:a5:5b:a4:a6:59:ca:15:13:27:bc:6d:ef:40:05:f3:78:
cd:28:f4:3d:c4:5c:28:ae:b7:c1:6e:69:57:71:35:00:35:c9:
db:d4:17:85:12:b4:47:af:4c:52:a4:71:e7:17:5b:9a:7d:a8:
2f:62:93:07:4e:46:23:5a:67:c3:fe:67:46:19:63:23:53:3c:
ed:d9:48:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:39 2024 by rpki-client on console-ams.rpki-client.org