Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/g3Pmh7DEYyjhqlzuHdOhoHXZGMI.roa
File: g3Pmh7DEYyjhqlzuHdOhoHXZGMI.roa (raw, json)
Hash identifier: 76KLooIRdDto1U+hRe8c+tzTmD0Y6jE6VbZlDjPjSfY=
Subject key identifier: 83:73:E6:87:B0:C4:63:28:E1:AA:5C:EE:1D:D3:A1:A0:75:D9:18:C2
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018C5E5EE4C753E44C06B6A0AD599008FE23
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/g3Pmh7DEYyjhqlzuHdOhoHXZGMI.roa
Signing time: Tue 12 Dec 2023 14:12:06 +0000
ROA not before: Tue 12 Dec 2023 14:12:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 185.136.32.0/22 maxlen: 32
Validation: Failed, certificate revoked on Thu 14 Dec 2023 09:56:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:5e:e4:c7:53:e4:4c:06:b6:a0:ad:59:90:08:fe:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Dec 12 14:12:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8373e687b0c46328e1aa5cee1dd3a1a075d918c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:db:62:c2:a8:12:f7:aa:33:bb:e9:a1:f6:4e:
77:a9:be:6d:c8:76:fe:6e:f9:bc:09:05:29:80:84:
a8:71:1d:16:ff:a8:28:69:f3:94:ba:ad:82:1c:c3:
bb:a6:5a:fb:92:e7:c5:19:c2:ed:38:20:48:22:3d:
21:72:bf:19:58:7c:49:68:47:b0:6c:9f:bf:5c:b3:
31:44:17:8f:37:6b:84:cb:7a:10:b9:06:23:1f:75:
33:b7:c0:b4:62:dc:3d:35:0e:7d:c6:54:5c:12:c5:
2e:c0:df:1e:bf:5f:fb:c4:5d:a3:76:bb:18:88:e9:
6c:7a:74:18:f5:eb:61:8b:ee:8c:aa:cf:6d:68:a1:
81:69:c5:39:86:8c:3c:ed:2f:ee:e7:eb:9f:fb:14:
ac:61:85:9d:1d:9b:0f:bc:e8:5f:c4:c7:87:52:ed:
32:0c:12:d6:ec:c6:f6:45:f9:87:97:70:09:9f:59:
1a:fc:65:a7:63:9d:a6:98:d8:06:18:e9:d0:9e:37:
04:d6:b7:53:30:b1:d6:98:03:16:16:b2:c9:78:40:
b5:23:2d:67:f4:01:a8:b6:2a:7a:26:81:18:00:31:
dd:16:82:ad:a3:7b:02:66:f2:f6:e7:00:b5:ff:a8:
cf:b8:c3:c9:49:56:de:be:f0:9f:e3:6d:e3:82:96:
85:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:73:E6:87:B0:C4:63:28:E1:AA:5C:EE:1D:D3:A1:A0:75:D9:18:C2
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/g3Pmh7DEYyjhqlzuHdOhoHXZGMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.32.0/22
Signature Algorithm: sha256WithRSAEncryption
95:94:f3:db:71:cc:cc:7f:63:a4:a2:92:88:40:93:18:54:b4:
dd:f1:52:b1:a6:1f:1c:35:91:09:05:2c:16:85:5b:1c:d3:bd:
85:f9:04:9e:81:51:62:c2:27:6e:05:d8:93:3a:25:eb:96:cf:
eb:31:f1:a4:38:3b:14:83:e8:c2:59:8a:da:b8:e5:e1:b3:15:
d6:01:bc:ad:bc:f4:89:c4:38:ea:65:7b:43:7a:15:a4:76:92:
ee:47:66:13:ba:0c:ae:70:d4:ff:e1:12:99:46:e7:6c:d9:21:
44:72:1e:72:fc:68:c8:72:da:b8:2c:d1:6c:80:1f:7d:ef:e2:
86:d3:6c:f1:95:64:5d:01:43:42:97:a4:21:fe:f5:7a:a0:89:
b8:c3:ca:32:5f:9f:50:e7:32:24:1c:33:19:68:c9:ce:48:b3:
3d:0d:34:73:a5:b7:22:ec:ae:0d:e1:53:84:e6:da:dc:a5:94:
16:80:6c:c6:20:c0:a0:be:16:ed:49:95:b3:8d:bb:c9:8e:d4:
16:78:a8:03:7b:8c:31:33:f2:83:60:6b:c5:36:56:63:f7:e1:
22:ed:d3:2a:dd:06:3a:4c:e5:0e:a3:7d:ef:4f:d3:b1:c8:1e:
f5:e2:04:24:16:ce:69:5f:db:11:fd:e2:69:35:8a:7c:ec:b6:
b9:20:e7:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:08 2024 by rpki-client on console-ams.rpki-client.org