Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/9e96a3-ce89-442e-bc48-addefa6911b9/1/gHGK1qF7JgMrOriMgYAsZ4GeoKs.roa
File: gHGK1qF7JgMrOriMgYAsZ4GeoKs.roa (raw, json)
Hash identifier: n0Xuzvh5saYUg0dVyyhAfjZwdZEe9lBwSryGw5FSOGU=
Subject key identifier: 80:71:8A:D6:A1:7B:26:03:2B:3A:B8:8C:81:80:2C:67:81:9E:A0:AB
Certificate issuer: /CN=634c53abd0dda68ca67fc8066bc165a2b32dc82b
Certificate serial: 018572280B9941C1CCEC005213257A6C7648
Authority key identifier: 63:4C:53:AB:D0:DD:A6:8C:A6:7F:C8:06:6B:C1:65:A2:B3:2D:C8:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y0xTq9Ddpoymf8gGa8FlorMtyCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/9e96a3-ce89-442e-bc48-addefa6911b9/1/gHGK1qF7JgMrOriMgYAsZ4GeoKs.roa
Signing time: Mon 02 Jan 2023 11:05:05 +0000
ROA not before: Mon 02 Jan 2023 11:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204439
IP address blocks: 185.248.216.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:0b:99:41:c1:cc:ec:00:52:13:25:7a:6c:76:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=634c53abd0dda68ca67fc8066bc165a2b32dc82b
Validity
Not Before: Jan 2 11:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80718ad6a17b26032b3ab88c81802c67819ea0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cd:82:80:36:38:3e:b8:54:cd:b2:8d:c9:27:
0a:5b:0b:94:e8:18:71:b9:a8:ee:51:46:8d:96:0e:
07:6e:50:04:00:17:6b:eb:4f:90:9a:97:9e:f9:eb:
87:0a:fa:8f:1a:64:af:aa:9b:b1:bf:38:13:10:f8:
1b:f4:67:8f:62:81:e3:cd:bb:88:c0:8c:e7:fa:f6:
1f:3c:45:b3:19:5a:9c:bf:88:bb:f4:c1:7f:59:09:
30:f7:6e:76:eb:98:4d:35:cc:66:e8:57:6b:be:c1:
33:c6:5e:db:86:a6:17:01:26:7c:8d:bc:f7:b3:c9:
fa:a5:56:3c:0d:a0:de:2b:05:b2:c8:84:64:8f:cf:
6c:5b:0d:ac:ae:9a:c1:ba:c7:fa:5c:fc:e8:9b:b0:
7d:53:31:22:52:93:24:0e:39:c8:88:0f:84:7d:7f:
da:50:ce:82:f5:e9:a0:53:52:04:13:a8:53:23:e4:
97:0a:6e:79:74:45:90:10:16:40:93:4f:38:10:41:
73:f9:e7:b2:ee:93:73:89:c3:80:33:ab:b2:50:56:
95:69:0c:de:aa:f8:51:1b:3a:38:ea:d3:ee:5f:93:
ed:2f:ab:dd:52:89:34:1d:c0:76:e3:94:33:a9:ac:
7c:2c:eb:25:20:bd:9b:96:d2:76:86:d2:39:9b:2f:
d6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:71:8A:D6:A1:7B:26:03:2B:3A:B8:8C:81:80:2C:67:81:9E:A0:AB
X509v3 Authority Key Identifier:
keyid:63:4C:53:AB:D0:DD:A6:8C:A6:7F:C8:06:6B:C1:65:A2:B3:2D:C8:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y0xTq9Ddpoymf8gGa8FlorMtyCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9e96a3-ce89-442e-bc48-addefa6911b9/1/gHGK1qF7JgMrOriMgYAsZ4GeoKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9e96a3-ce89-442e-bc48-addefa6911b9/1/Y0xTq9Ddpoymf8gGa8FlorMtyCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.216.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:12:67:77:5d:78:87:19:61:d1:bd:5d:ea:1c:d8:bf:72:98:
b4:e4:1f:b7:7f:af:b2:5b:5e:5e:f6:68:91:02:d8:c0:83:ef:
1b:c0:b6:52:f2:64:8c:3b:a1:67:75:e6:dc:10:4b:97:c0:aa:
a2:be:31:da:b1:35:ca:d9:32:65:d9:5f:ec:27:2d:8e:ed:86:
2a:bb:1a:8c:3f:68:fd:5e:68:ac:a9:69:dd:57:f6:8a:6a:1e:
d0:a0:0d:22:2b:e3:7b:4d:73:99:76:f6:1e:f1:dc:43:f8:f1:
cf:02:de:c8:b8:9e:b4:a6:22:b4:24:00:d3:9e:b1:2d:88:13:
5a:40:cb:03:89:87:81:72:5d:8f:3f:dd:0c:57:86:29:94:cc:
17:a7:a4:0f:2c:b8:34:5d:ff:d9:3d:71:01:32:0b:58:4a:b9:
b7:e2:1b:6f:f0:89:6a:12:99:3d:7e:3c:41:8b:fb:14:a0:e3:
d8:c8:16:19:b2:68:b1:4d:b9:e4:af:d8:22:0a:c5:6c:0d:bf:
d3:40:12:aa:da:4a:c1:eb:e4:22:ca:c5:b9:a7:a9:30:d0:96:
eb:ef:60:60:fd:4c:4e:a4:54:69:e2:0b:1d:f2:95:42:61:4f:
01:7a:39:7e:eb:ee:a5:c1:1a:64:f6:6a:eb:2e:8d:a8:b3:e9:
b9:ba:80:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:02 2024 by rpki-client on console-ams.rpki-client.org