Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/GaHH22-zbBYPbG2n-So8yCJan9g.roa
File: GaHH22-zbBYPbG2n-So8yCJan9g.roa (raw, json)
Hash identifier: aC43MdUN2mwtZ0PMzr9nsmgPVi1YNWvenCkrKmyefS0=
Subject key identifier: 19:A1:C7:DB:6F:B3:6C:16:0F:6C:6D:A7:F9:2A:3C:C8:22:5A:9F:D8
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A30DF2E438B28CA77CB0AB4FEC60D
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/GaHH22-zbBYPbG2n-So8yCJan9g.roa
Signing time: Mon 02 Jan 2023 12:34:48 +0000
ROA not before: Mon 02 Jan 2023 12:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29066
IP address blocks: 185.215.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:30:df:2e:43:8b:28:ca:77:cb:0a:b4:fe:c6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19a1c7db6fb36c160f6c6da7f92a3cc8225a9fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d6:f9:56:54:43:8a:c6:77:26:50:c6:50:e3:
62:79:44:69:46:bf:9c:9e:5f:b9:3d:22:d1:5a:91:
6f:70:2f:87:7e:fb:bf:cd:d2:72:3b:0f:f8:82:b9:
8f:f7:97:1e:f2:a5:25:8b:85:ea:c3:29:2b:86:95:
8b:d7:dc:ec:61:32:26:91:42:14:86:6a:28:3a:ac:
d4:b5:f5:c8:11:10:83:57:d7:0c:65:65:11:48:b5:
af:69:b3:b7:71:21:c1:36:81:32:2b:af:76:cc:30:
aa:87:0c:dd:da:14:9b:0c:b9:61:82:63:58:f3:22:
f8:a7:6b:56:36:15:40:ce:f8:f3:d6:80:a3:cd:22:
9f:f4:1e:cf:18:88:a8:ab:d5:5e:58:e8:bd:7f:c3:
d8:db:99:6d:a4:ec:f2:78:dd:bc:18:37:a7:07:52:
d9:ab:44:ad:bc:91:a9:2a:d1:3a:52:68:fd:be:27:
ca:7a:b2:21:47:2e:c2:54:2f:de:dc:50:c8:59:3f:
6a:24:80:3f:ad:6e:8d:db:30:48:b5:c2:81:f6:97:
69:da:f3:06:9e:ea:e2:8e:7d:31:97:0e:43:28:59:
71:d0:43:82:e8:58:47:4c:07:b4:5b:cb:81:41:03:
23:08:b1:d2:93:f1:8a:fc:a2:4b:74:55:05:bc:1b:
a3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A1:C7:DB:6F:B3:6C:16:0F:6C:6D:A7:F9:2A:3C:C8:22:5A:9F:D8
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/GaHH22-zbBYPbG2n-So8yCJan9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.245.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:0f:0a:56:37:e8:e4:5e:15:c6:f0:a4:84:88:1a:20:80:85:
3e:ef:38:cd:dc:58:67:b0:5f:c8:a8:b4:e0:5f:27:f5:b4:f7:
65:cb:e5:82:41:db:69:eb:92:e3:1a:85:9a:07:f8:25:66:55:
99:0a:05:36:3f:9c:6e:69:a9:10:1d:89:4b:35:11:72:9f:a4:
2e:b3:57:e5:34:84:fe:8b:2f:07:27:3e:be:30:8e:ce:d3:46:
cc:95:92:15:9c:ff:66:3a:ad:95:a5:a6:d0:89:d2:f0:25:e5:
a7:2f:9e:f9:28:b2:17:4d:9d:2a:c4:b2:8a:fb:16:7e:06:fb:
b7:88:fa:77:08:e2:6a:c4:0f:40:a9:d6:db:65:54:93:03:aa:
5a:90:07:eb:12:be:9f:26:60:13:e6:9c:3c:e7:7e:12:cf:19:
8b:f4:29:6e:75:8f:30:56:c4:8c:00:c1:22:3f:30:ba:07:74:
ca:d3:1d:d2:7f:77:11:19:13:48:9b:8a:e0:43:82:28:96:b9:
d8:30:d5:68:9f:58:9d:ce:31:5c:a9:a0:97:00:8b:04:43:eb:
1f:3c:16:0b:c0:0c:ac:75:83:95:fb:cd:6d:0a:22:c2:5e:64:
a5:29:05:36:9e:b4:39:67:15:b7:36:29:e0:a1:1f:92:35:e4:
7b:b6:35:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org