Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/Gm33adY-1rJcRPTPie2zq8DAoOc.roa
File: Gm33adY-1rJcRPTPie2zq8DAoOc.roa (raw, json)
Hash identifier: IzluGxO1gQqY7Sf+TY6lvuOmUH0Tkh0Mdulm4MHCTkA=
Subject key identifier: 1A:6D:F7:69:D6:3E:D6:B2:5C:44:F4:CF:89:ED:B3:AB:C0:C0:A0:E7
Certificate issuer: /CN=330fe971b3e36b16a92be85f59985be45968b864
Certificate serial: 018572BA7521E19F0B79E860FB5AF3F65FE2
Authority key identifier: 33:0F:E9:71:B3:E3:6B:16:A9:2B:E8:5F:59:98:5B:E4:59:68:B8:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mw_pcbPjaxapK-hfWZhb5FlouGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/Gm33adY-1rJcRPTPie2zq8DAoOc.roa
Signing time: Mon 02 Jan 2023 13:45:00 +0000
ROA not before: Mon 02 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201628
IP address blocks: 185.68.183.0/24 maxlen: 24
185.68.180.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:75:21:e1:9f:0b:79:e8:60:fb:5a:f3:f6:5f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=330fe971b3e36b16a92be85f59985be45968b864
Validity
Not Before: Jan 2 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a6df769d63ed6b25c44f4cf89edb3abc0c0a0e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1f:37:5a:51:80:7c:1b:80:11:c9:30:49:10:
7f:9d:62:e9:6b:19:2c:87:db:94:05:5b:b9:f4:05:
26:0b:2a:8f:68:38:b1:70:b5:71:3f:38:44:46:93:
c1:a7:6e:fa:a4:78:b3:b3:1f:60:74:e1:5a:00:04:
37:21:4f:c0:9d:20:99:ce:c5:68:97:4a:a3:2f:20:
e9:47:b5:ff:56:10:ca:35:68:7f:1e:1a:a4:34:f4:
33:e8:5f:6c:a2:8b:5b:97:a9:4b:46:a8:14:86:83:
db:16:08:c8:a3:09:11:93:d6:a1:cf:d9:6a:82:df:
1d:4a:f0:dc:3e:77:8d:b8:f3:8e:5a:8c:b4:b5:e5:
47:8a:43:95:6a:0f:0a:39:98:e3:46:c1:19:31:43:
21:15:9e:43:ea:dc:eb:c7:c6:c9:b2:56:a2:b9:d7:
e2:88:c5:bf:7d:d0:81:1a:51:10:1c:9a:ba:59:51:
ce:62:56:6f:6e:74:18:f9:86:95:88:7e:52:0a:9c:
72:b0:93:50:4d:cd:1e:bb:58:0e:2a:f9:71:f4:12:
9f:11:87:bf:36:26:44:0d:76:a5:9c:87:a5:4a:51:
bc:31:45:96:7c:df:45:93:cb:79:7d:b4:0b:51:81:
7e:5d:4a:79:97:4c:09:a8:35:42:89:e0:6c:ae:2f:
3b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:6D:F7:69:D6:3E:D6:B2:5C:44:F4:CF:89:ED:B3:AB:C0:C0:A0:E7
X509v3 Authority Key Identifier:
keyid:33:0F:E9:71:B3:E3:6B:16:A9:2B:E8:5F:59:98:5B:E4:59:68:B8:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mw_pcbPjaxapK-hfWZhb5FlouGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/Gm33adY-1rJcRPTPie2zq8DAoOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/Mw_pcbPjaxapK-hfWZhb5FlouGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.180.0/23
185.68.183.0/24
Signature Algorithm: sha256WithRSAEncryption
09:8e:28:6a:41:e1:c2:e1:89:f3:bb:e5:a6:c4:b0:db:79:0b:
ba:84:14:55:8f:da:8b:b7:65:13:9c:6c:a1:c6:0d:3e:11:c9:
94:cb:e3:1e:5b:79:04:ed:04:a6:29:af:6e:4a:d3:1f:6d:b8:
ef:4a:c6:8b:22:c9:d4:1c:1b:9f:ec:4a:97:1e:90:8e:85:04:
ce:3c:b8:b0:94:41:9c:06:de:be:e6:04:5a:34:46:6a:1c:7b:
15:53:8c:5a:87:0f:57:f0:9c:16:f7:34:38:85:fa:98:8f:de:
3a:55:5c:84:b8:65:bc:64:c3:61:c4:30:d7:eb:e4:77:0c:e2:
54:9f:b0:f5:5a:19:9f:49:1e:64:ec:57:68:cb:b7:39:46:ff:
54:0e:8d:62:bc:39:74:0d:7d:0e:d2:5d:c6:ed:59:eb:eb:4f:
22:1f:a9:d8:8c:b5:cd:6a:d9:87:0e:78:c2:3b:f9:93:74:e3:
23:d4:e9:11:a8:55:ca:4b:bf:c5:c8:cc:87:83:70:7a:49:cf:
fe:26:4b:5f:da:a0:75:4e:62:df:8d:d9:85:ae:31:d1:9e:f4:
1a:97:ac:eb:ce:51:a4:0a:a7:be:4b:4e:ae:49:41:fe:f0:1e:
6d:69:74:63:fb:5f:9b:cd:04:03:cb:ca:3f:07:4b:b5:41:e6:
b2:36:88:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:37 2024 by rpki-client on console-ams.rpki-client.org