Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/cjMm_5fltfYGEYtDrqmlKNUFxPw.roa
File: cjMm_5fltfYGEYtDrqmlKNUFxPw.roa (raw, json)
Hash identifier: vy+Y3nDnkvXbz/HNgYKEAp+5Y0e01YrnEgMBgaLyk5o=
Subject key identifier: 72:33:26:FF:97:E5:B5:F6:06:11:8B:43:AE:A9:A5:28:D5:05:C4:FC
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018CC348F3046BB610592EF187AF7AF192C2
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/cjMm_5fltfYGEYtDrqmlKNUFxPw.roa
Signing time: Mon 01 Jan 2024 04:29:47 +0000
ROA not before: Mon 01 Jan 2024 04:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199765
IP address blocks: 185.179.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 10:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f3:04:6b:b6:10:59:2e:f1:87:af:7a:f1:92:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=723326ff97e5b5f606118b43aea9a528d505c4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f7:3a:83:de:f7:ed:6a:26:ee:48:fb:1e:fb:
c6:42:dd:ac:e6:4d:51:1a:75:1c:0e:53:8e:09:a1:
8f:02:34:39:b2:5e:11:6e:49:51:cb:60:3f:d6:df:
ac:7d:fd:c5:0c:0c:76:d5:03:c5:9e:a7:85:c1:c6:
36:03:54:5f:56:05:fb:80:da:62:29:14:6c:d6:a2:
69:df:45:4d:f2:f4:77:2a:76:e5:64:4d:f6:9c:aa:
d2:5c:59:73:52:0f:ff:47:1f:3a:db:28:b2:c2:94:
c4:bb:83:3d:b3:e9:f7:a9:88:b0:25:38:84:71:4e:
2b:c1:d2:fa:1e:d6:50:91:ec:fa:4e:73:b8:ac:1c:
43:db:3e:31:b5:11:c1:23:8d:3a:3a:19:e0:c7:60:
6a:43:c0:12:1d:4d:af:6a:9c:18:0e:27:4d:6d:9d:
27:0a:e2:dc:66:96:65:0e:e0:45:6c:57:bf:8c:ca:
2a:6c:1d:4c:10:ee:0c:63:39:56:4a:47:2a:82:03:
7d:5c:1e:6d:71:4d:6f:83:79:31:8f:77:b1:09:19:
63:70:78:e6:92:3d:b6:df:28:f7:ca:b8:e1:10:93:
ce:a9:58:d1:d0:4e:74:5d:63:e0:a0:01:a0:e2:a2:
b9:e3:84:e3:86:b7:e1:54:10:c5:02:fa:44:d4:9b:
9e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:33:26:FF:97:E5:B5:F6:06:11:8B:43:AE:A9:A5:28:D5:05:C4:FC
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/cjMm_5fltfYGEYtDrqmlKNUFxPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.216.0/24
Signature Algorithm: sha256WithRSAEncryption
43:6d:88:18:20:9c:12:41:1e:61:4d:b2:56:dc:79:02:29:8e:
31:33:31:4f:f7:17:54:3f:dd:2f:ab:ee:4b:d7:43:9c:b1:f3:
17:64:76:cd:86:0a:a2:52:ce:f6:f2:6b:23:55:81:d7:aa:d9:
13:55:53:fd:a4:81:8c:1d:89:81:e5:c4:5c:e0:60:ce:12:ff:
49:00:28:58:d0:92:e0:b0:58:7a:f0:f3:f9:0c:ed:9a:51:60:
a3:d0:de:4f:fd:21:00:fb:d1:39:8d:39:c3:41:be:87:70:0a:
79:f2:39:ce:fa:6e:7a:e2:e3:0f:1f:10:5e:d6:73:6d:df:9c:
39:49:35:75:83:d4:3c:f7:16:a1:e4:e3:3d:2a:d0:cd:6e:df:
a8:a8:2f:56:7e:4e:87:da:62:a5:84:8b:f9:e4:fd:65:36:67:
64:6b:ed:ef:c6:95:39:0a:67:90:12:f3:55:91:31:84:11:6c:
7c:3a:62:67:39:f6:0e:0b:d7:07:8c:8b:da:ab:3b:02:7f:03:
6b:fb:39:ff:80:dd:3a:63:b3:23:69:26:18:18:1c:fd:ae:c7:
a0:8e:03:c4:80:72:f5:43:e9:70:d8:fb:2e:a7:2c:61:49:f6:
2f:d1:f2:38:3d:7a:65:0f:3e:76:28:59:73:ab:78:a6:4d:1e:
fa:4c:21:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 26 14:29:24 2024 by rpki-client on console-fra.rpki-client.org