Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/gESkU_XVG3na-YObdlDQv2rK5cU.roa
File: gESkU_XVG3na-YObdlDQv2rK5cU.roa (raw, json)
Hash identifier: pYS35kbev4oNBhtipLV2pCNelEVnOnkK7HtB3c4S8pU=
Subject key identifier: 80:44:A4:53:F5:D5:1B:79:DA:F9:83:9B:76:50:D0:BF:6A:CA:E5:C5
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018CAB2CA326BA377F9B2727BE94FFC9657B
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/gESkU_XVG3na-YObdlDQv2rK5cU.roa
Signing time: Wed 27 Dec 2023 12:07:58 +0000
ROA not before: Wed 27 Dec 2023 12:07:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208476
IP address blocks: 185.244.29.0/24 maxlen: 24
185.244.30.0/24 maxlen: 24
185.244.31.0/24 maxlen: 24
185.244.26.0/24 maxlen: 24
194.5.97.0/24 maxlen: 24
194.5.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ab:2c:a3:26:ba:37:7f:9b:27:27:be:94:ff:c9:65:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Dec 27 12:07:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8044a453f5d51b79daf9839b7650d0bf6acae5c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fa:9d:c6:91:41:ca:ec:45:32:ff:b4:81:54:
4c:52:75:1e:ef:5c:79:93:52:2d:4b:c3:66:ee:2e:
7f:6e:f6:a9:a3:ff:e7:2e:15:43:3b:bc:55:f8:c7:
3e:27:98:86:e8:c7:66:18:5d:e9:c1:49:00:8a:80:
27:82:62:50:b8:8c:2d:bd:b4:e4:6b:e1:cf:7b:00:
c0:d9:cf:7c:b7:47:74:f4:23:16:d1:61:46:dc:53:
b6:11:41:59:64:e6:cb:ca:22:8b:76:ed:ef:b8:59:
83:d4:2f:a0:7c:40:9e:6c:2b:1a:fe:cd:19:7a:99:
c1:be:9c:e3:5b:4a:77:a2:9e:05:8f:c6:5a:4c:5e:
e9:c1:b8:80:c6:b5:87:c6:01:18:eb:c1:5e:5b:74:
36:55:62:99:bf:32:fa:0f:5d:a9:ec:b7:61:7f:d1:
1b:79:7a:df:4c:64:c5:5e:4e:5b:d8:98:a7:bc:96:
fb:10:ff:60:20:23:d4:03:85:1b:a6:69:de:b6:58:
5a:2c:4a:31:d6:1c:34:67:e5:02:1e:b7:b3:37:21:
6d:5f:c2:2c:3f:65:4a:06:14:7a:ea:88:8f:d1:0e:
67:b2:6e:a0:61:51:13:12:af:1b:ec:aa:fe:0b:af:
29:af:e3:23:ef:29:01:47:c1:59:1f:7f:5e:4a:0a:
57:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:44:A4:53:F5:D5:1B:79:DA:F9:83:9B:76:50:D0:BF:6A:CA:E5:C5
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/gESkU_XVG3na-YObdlDQv2rK5cU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.26.0/24
185.244.29.0-185.244.31.255
194.5.97.0/24
194.5.99.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:f7:f7:0d:96:ad:6d:54:33:11:13:7b:e9:e9:1b:9b:7c:b1:
1f:9b:aa:3b:c1:8c:59:91:2f:8f:0a:c7:7d:2e:24:8b:c5:a6:
e2:e4:89:fa:fa:30:0e:87:5c:f4:69:82:0b:10:22:91:79:b1:
96:f8:09:b9:ff:db:21:3d:16:52:64:45:66:c9:03:f6:d0:7b:
2a:3c:e8:f5:90:03:57:27:5b:6a:f7:19:7f:69:97:cd:73:93:
5b:8e:59:6a:79:f3:68:dc:b7:c8:0d:b0:14:a9:aa:73:d8:16:
97:e6:41:6d:59:bd:78:04:c8:3e:ec:74:46:8d:44:ea:d4:2f:
c7:0d:8f:91:5f:5a:ab:db:da:96:d7:b8:8a:28:9a:15:0a:6d:
59:c4:81:1a:f3:3d:13:1e:d0:ac:b3:e1:d2:2c:ed:d5:4d:fd:
d1:87:63:73:e7:7b:07:66:ac:97:e4:0d:83:dc:59:86:3b:1b:
98:9d:1f:14:f5:94:f6:47:2b:41:12:07:d3:e6:e6:79:75:28:
ef:da:03:fb:3a:20:e9:4c:38:e1:21:63:da:ee:db:50:ec:3f:
9f:e6:95:e6:83:67:7b:58:8e:1d:8a:bb:ea:be:53:65:4f:6e:
71:54:d3:7c:25:1f:d0:08:4d:5d:1d:4b:6d:e7:13:c0:1a:1e:
8e:e4:27:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org