Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/452c2b-f2cf-4a92-a1cd-f0198c6c2474/1/gp9TV2MDShnKTxmZ7L2YjuM32E8.roa
File: gp9TV2MDShnKTxmZ7L2YjuM32E8.roa (raw, json)
Hash identifier: BgQKSiqOkbjg7p77vMb3S7y+5g2XzaWlyngtUIm9aLg=
Subject key identifier: 82:9F:53:57:63:03:4A:19:CA:4F:19:99:EC:BD:98:8E:E3:37:D8:4F
Certificate issuer: /CN=6696aea6bab79c48f5ddee4a46bf4ab64d863160
Certificate serial: 018D3C8789005EB1D80D176B5534FAEF4F78
Authority key identifier: 66:96:AE:A6:BA:B7:9C:48:F5:DD:EE:4A:46:BF:4A:B6:4D:86:31:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zpauprq3nEj13e5KRr9Ktk2GMWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/452c2b-f2cf-4a92-a1cd-f0198c6c2474/1/gp9TV2MDShnKTxmZ7L2YjuM32E8.roa
Signing time: Wed 24 Jan 2024 17:32:11 +0000
ROA not before: Wed 24 Jan 2024 17:32:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215733
IP address blocks: 185.97.236.0/22 maxlen: 22
185.152.72.0/22 maxlen: 22
185.206.192.0/22 maxlen: 22
185.209.164.0/22 maxlen: 22
194.36.58.0/23 maxlen: 23
194.36.64.0/23 maxlen: 23
2a01:ac::/32 maxlen: 32
2a01:ad::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 26 Jan 2024 16:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3c:87:89:00:5e:b1:d8:0d:17:6b:55:34:fa:ef:4f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6696aea6bab79c48f5ddee4a46bf4ab64d863160
Validity
Not Before: Jan 24 17:32:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=829f535763034a19ca4f1999ecbd988ee337d84f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:0a:25:53:e7:3e:c4:80:78:4a:81:8e:59:76:
de:89:f6:52:47:61:ec:8a:c8:e7:40:81:e7:88:32:
51:56:22:fb:28:af:19:69:78:f4:34:fc:1b:7a:18:
db:55:fe:c6:4a:2b:81:53:08:a0:9a:9e:92:f7:3a:
6f:78:e6:43:9b:44:88:b2:10:67:70:fd:aa:c6:59:
4c:dd:97:6e:4d:04:bb:3c:c5:e4:e1:fd:c2:ae:71:
42:d6:c9:bf:d2:71:d3:35:d8:53:32:92:65:02:b7:
9e:1e:0e:d6:4a:1f:7e:eb:4f:61:7c:a5:2b:98:81:
41:2a:17:cd:ee:77:9e:5c:c1:52:2d:26:4a:5f:25:
da:88:ad:6c:81:dd:b7:de:fe:a3:b1:0a:c8:40:71:
5a:8b:4c:74:02:b2:34:3c:2b:b8:9a:0a:85:a6:7d:
99:a2:a6:2a:6d:59:28:92:53:23:69:d1:04:de:eb:
d6:33:10:56:25:83:ea:56:c6:d7:4b:73:d1:95:77:
e7:43:4c:dc:b1:2f:ed:e9:b4:f7:d6:96:89:61:6d:
5d:4c:9c:3f:31:ed:94:e7:1d:49:db:72:7a:1f:05:
af:67:4c:68:0e:15:13:ff:05:6c:31:56:c1:34:63:
34:56:d5:0f:f6:ff:77:41:d3:7d:8a:5d:fb:5c:e0:
a1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9F:53:57:63:03:4A:19:CA:4F:19:99:EC:BD:98:8E:E3:37:D8:4F
X509v3 Authority Key Identifier:
keyid:66:96:AE:A6:BA:B7:9C:48:F5:DD:EE:4A:46:BF:4A:B6:4D:86:31:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zpauprq3nEj13e5KRr9Ktk2GMWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/452c2b-f2cf-4a92-a1cd-f0198c6c2474/1/gp9TV2MDShnKTxmZ7L2YjuM32E8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/452c2b-f2cf-4a92-a1cd-f0198c6c2474/1/Zpauprq3nEj13e5KRr9Ktk2GMWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.236.0/22
185.152.72.0/22
185.206.192.0/22
185.209.164.0/22
194.36.58.0/23
194.36.64.0/23
IPv6:
2a01:ac::/31
Signature Algorithm: sha256WithRSAEncryption
91:58:ec:46:df:5d:cc:69:b4:c2:1d:7a:c9:4d:69:85:fb:56:
58:bb:5d:71:97:14:e1:7d:d0:a3:28:c0:12:c3:ca:bb:2b:83:
4d:7b:53:14:f4:9d:3b:28:16:b0:59:40:d2:bc:9b:8e:c9:34:
5d:ed:a2:aa:25:c6:a9:d9:bc:0f:33:dd:97:06:61:ae:6f:45:
5d:47:7d:2f:bd:f5:44:32:1e:73:48:00:38:ad:f1:45:c4:30:
00:03:e6:46:5b:f6:e9:aa:e7:8f:a7:67:ec:86:89:5b:62:ca:
13:c8:16:71:3f:a4:5b:a6:61:19:20:e2:f1:fb:7d:81:18:8f:
8d:e6:ce:3f:19:06:60:95:1d:34:bf:f4:b2:cc:80:de:d0:25:
07:72:a7:1d:34:4e:76:7b:29:40:07:4a:d8:73:43:d6:be:e4:
e2:c5:73:5e:59:89:86:ec:b5:98:f2:2d:9b:08:c2:67:7a:23:
7e:b5:e3:7c:97:60:8c:50:7a:0d:61:a8:28:77:a3:0d:e4:5f:
b2:5d:49:7a:39:4e:6d:56:38:e3:87:e1:d0:99:b2:9f:9c:7a:
b8:ba:fa:2c:ae:15:86:7f:6a:dd:7f:4b:45:68:49:5d:0e:1f:
10:e3:88:d9:77:52:29:a2:e1:4b:1b:9d:6e:66:31:a8:e9:38:
87:67:15:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:36 2024 by rpki-client on console-ams.rpki-client.org