Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/g1zcxyNz5T54HfUfkeYvhSwCNUY.roa
File: g1zcxyNz5T54HfUfkeYvhSwCNUY.roa (raw, json)
Hash identifier: hw5WxjwZxpa8c0yP/vyosgplOWXoqbCsjbfLPGc87P0=
Subject key identifier: 83:5C:DC:C7:23:73:E5:3E:78:1D:F5:1F:91:E6:2F:85:2C:02:35:46
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 01890EEB25BE198225A719249F4B188694A5
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/g1zcxyNz5T54HfUfkeYvhSwCNUY.roa
Signing time: Sat 01 Jul 2023 00:47:18 +0000
ROA not before: Sat 01 Jul 2023 00:47:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 185.235.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0e:eb:25:be:19:82:25:a7:19:24:9f:4b:18:86:94:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jul 1 00:47:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=835cdcc72373e53e781df51f91e62f852c023546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c7:93:80:ee:fd:1a:8a:fd:e3:3c:11:71:0f:
b2:23:ff:49:ab:11:e9:9b:1b:7c:8e:9b:4b:98:c8:
07:e5:35:a0:e6:3b:da:5f:ec:1f:33:2e:46:ea:05:
d2:5f:28:be:a4:ac:eb:55:d9:98:e5:98:0d:bd:d4:
ad:72:bb:12:02:29:a1:97:95:a6:4c:fc:f2:30:07:
1e:d9:5a:07:99:3a:94:2c:3e:d8:2f:0d:a3:98:4e:
62:b4:cb:09:51:d7:08:1a:49:25:bc:a3:97:f5:64:
f5:59:f3:c0:e8:1b:0d:72:2c:7a:fa:0d:92:94:fa:
d1:aa:24:e2:45:f4:64:d5:d9:c5:a8:5d:ab:00:99:
ed:c1:ea:f2:13:07:b6:ef:02:af:79:90:d5:84:8c:
5a:46:fe:be:fb:42:87:c4:39:e4:4c:c6:ab:cd:97:
c1:4e:b1:7f:3e:4d:d8:29:48:90:94:ef:1d:9f:6a:
8a:f3:d6:1d:84:5f:23:61:ae:57:88:c5:66:b2:0b:
b9:9d:62:b8:3b:f9:e9:87:dc:6d:39:27:46:2b:4d:
60:f8:77:2a:78:91:68:ff:b2:78:74:5b:91:f4:cf:
30:42:14:e5:83:23:86:c0:38:fc:d3:5f:b6:77:7a:
ea:76:6f:3a:4f:76:29:07:88:ce:4f:aa:a1:80:1a:
91:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5C:DC:C7:23:73:E5:3E:78:1D:F5:1F:91:E6:2F:85:2C:02:35:46
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/g1zcxyNz5T54HfUfkeYvhSwCNUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.71.0/24
Signature Algorithm: sha256WithRSAEncryption
32:02:8d:5e:67:19:85:0c:0d:ba:bb:2c:9b:56:fa:91:9c:c6:
f0:70:bd:00:ae:fb:37:4e:f8:2a:68:d9:ef:f1:2c:6e:93:d4:
a9:c3:14:65:52:d2:bd:5a:92:7e:8b:e2:63:94:38:76:f7:0d:
16:34:0b:40:2d:70:ba:99:fb:f0:90:71:ee:85:15:8c:36:5f:
64:4b:06:50:df:64:c8:47:55:b7:85:e0:11:82:d3:1c:09:bc:
ad:d4:0b:46:71:b8:df:3b:0b:0e:ce:97:26:c0:6f:06:20:c3:
03:b9:76:45:5c:5e:22:76:50:e7:ef:f3:83:5a:23:07:77:b5:
b3:39:01:76:39:06:24:73:bc:02:42:1b:1e:e8:cd:f4:46:3b:
81:d9:3b:3c:23:39:ab:68:4b:9f:fe:4b:30:0e:60:44:0e:0b:
00:81:4c:78:70:b3:78:bf:9a:13:17:b3:75:89:f9:5a:e3:fb:
22:da:b7:93:9b:e8:9b:29:81:39:98:7c:a1:0e:cf:56:8e:06:
8c:53:6f:b4:71:62:d1:1c:0e:78:9b:f5:a0:41:92:b4:da:f1:
03:33:a0:7b:ef:99:80:04:23:39:1e:d3:e3:0b:42:64:8e:47:
0b:03:15:f5:98:eb:95:d7:82:aa:55:ec:aa:c2:b3:4c:fa:f7:
df:88:a9:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:25 2024 by rpki-client on console-ams.rpki-client.org