Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/gcO39eWeAu1CZy_2a0ZzJzIXHv4.roa
File: gcO39eWeAu1CZy_2a0ZzJzIXHv4.roa (raw, json)
Hash identifier: I5rHN4Bk96qRoADPW0yxfGrHROO/0nYV7w8H9QIDZVA=
Subject key identifier: 81:C3:B7:F5:E5:9E:02:ED:42:67:2F:F6:6B:46:73:27:32:17:1E:FE
Certificate issuer: /CN=dfa7e00738d3f7b8de48de38627567768e2f89b6
Certificate serial: 018CE5894FCE2E145B9361FC6816C9A4CB88
Authority key identifier: DF:A7:E0:07:38:D3:F7:B8:DE:48:DE:38:62:75:67:76:8E:2F:89:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/36fgBzjT97jeSN44YnVndo4vibY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/gcO39eWeAu1CZy_2a0ZzJzIXHv4.roa
Signing time: Sun 07 Jan 2024 20:07:10 +0000
ROA not before: Sun 07 Jan 2024 20:07:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59704
IP address blocks: 185.40.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 12:07:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e5:89:4f:ce:2e:14:5b:93:61:fc:68:16:c9:a4:cb:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfa7e00738d3f7b8de48de38627567768e2f89b6
Validity
Not Before: Jan 7 20:07:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81c3b7f5e59e02ed42672ff66b46732732171efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:67:86:2b:61:0b:78:fc:a8:7d:47:57:52:b3:
c9:6f:88:2a:62:e8:8f:d1:e0:82:53:1f:22:50:13:
cf:41:5f:e8:f7:0a:c2:69:78:55:0a:ef:54:da:99:
98:57:06:9b:dd:a5:16:65:c1:f1:b0:82:c3:69:5e:
2c:ca:d9:4d:06:f9:fd:6b:71:d8:b6:73:fd:d7:72:
b2:2c:3e:95:f6:a1:bf:19:40:5f:d2:79:a1:05:3a:
6d:0c:6e:e8:c6:48:3c:4a:74:28:db:6b:83:cb:d8:
4c:a1:5d:0d:63:ce:d9:3e:cd:3c:5a:c8:b5:7c:62:
29:1d:b1:dd:5d:fb:a5:2b:7d:1e:cb:a0:32:7e:34:
5d:7c:42:41:3b:70:f6:eb:99:00:c7:72:74:e2:5b:
21:01:71:16:7e:77:0c:49:87:b1:50:d2:fe:e9:a9:
ad:33:a2:21:0e:3b:a6:d1:8a:28:07:81:58:9f:db:
ad:90:c5:50:81:41:d1:80:f5:51:44:f6:51:d8:04:
a2:e4:8a:e5:67:31:35:7c:98:0e:cc:74:e6:22:ca:
92:b5:46:d6:0d:58:e1:1c:91:50:56:18:9c:72:2b:
18:90:cc:47:a4:5a:ca:41:d2:f5:17:99:55:49:13:
42:d5:7e:d6:de:49:bd:ff:b2:77:ee:a8:ec:f7:97:
e1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:C3:B7:F5:E5:9E:02:ED:42:67:2F:F6:6B:46:73:27:32:17:1E:FE
X509v3 Authority Key Identifier:
keyid:DF:A7:E0:07:38:D3:F7:B8:DE:48:DE:38:62:75:67:76:8E:2F:89:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/36fgBzjT97jeSN44YnVndo4vibY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/gcO39eWeAu1CZy_2a0ZzJzIXHv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/36fgBzjT97jeSN44YnVndo4vibY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.32.0/24
Signature Algorithm: sha256WithRSAEncryption
96:1e:40:ed:f9:be:0f:d7:0b:31:8d:c3:b8:51:35:a5:a0:73:
e2:52:1a:03:dc:da:8d:c3:7e:9e:84:ae:11:ec:60:d9:13:a5:
67:2d:e5:5d:87:32:bd:2a:41:10:30:f4:d7:cc:ba:ba:9e:08:
b7:be:cc:86:65:f6:fa:a6:6e:00:fe:51:e5:12:5e:b8:7b:77:
e3:c8:a3:a4:7b:4d:ed:cf:bb:7c:1e:c3:64:fa:93:46:58:ec:
f2:f4:79:1b:ee:88:12:65:61:9a:83:88:52:32:21:28:8d:d1:
94:ca:94:33:12:fc:64:09:e7:ee:ed:1b:26:95:26:f8:d2:6b:
81:ff:36:6a:77:e0:7a:5f:74:fa:b7:54:74:32:f9:e1:e2:7e:
2b:54:3c:82:0d:c8:6d:10:5c:89:d3:86:52:a8:44:9d:fb:8c:
ed:36:1f:10:64:0b:cc:33:12:63:63:ab:a5:40:b9:59:64:b3:
32:3a:2f:92:a5:01:27:a8:8c:ca:e3:12:d9:6b:67:08:62:cd:
57:14:a9:f5:9c:2b:b6:37:7b:43:6f:8f:bf:c3:5d:82:c2:e2:
fb:de:10:33:85:03:21:29:e1:92:0f:94:83:4c:4a:9f:3e:a5:
ac:c9:00:50:a9:5b:93:51:f0:9e:af:6a:13:29:e0:d2:4b:ae:
ab:55:11:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 17:17:05 2024 by rpki-client on console-ams.rpki-client.org