Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/kUi31Q4roj5KGft5NwhklCWuzds.roa
File: kUi31Q4roj5KGft5NwhklCWuzds.roa (raw, json)
Hash identifier: x1PSH3mS9UugWG6W4B4og4xSIWnpcaQISCoD3Jui/E0=
Subject key identifier: 91:48:B7:D5:0E:2B:A2:3E:4A:19:FB:79:37:08:64:94:25:AE:CD:DB
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01856F66F5D2485FE8656B8DF5DD3E9EBD11
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/kUi31Q4roj5KGft5NwhklCWuzds.roa
Signing time: Sun 01 Jan 2023 22:14:56 +0000
ROA not before: Sun 01 Jan 2023 22:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 185.179.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Jan 2023 07:08:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:f5:d2:48:5f:e8:65:6b:8d:f5:dd:3e:9e:bd:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 22:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9148b7d50e2ba23e4a19fb793708649425aecddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0b:64:53:1f:96:42:36:10:71:96:a6:c3:d0:
d4:0c:c5:2a:37:c5:e2:65:a9:98:27:08:9d:fa:d3:
e6:08:28:48:b9:95:67:5a:20:55:3f:18:43:bf:1a:
19:db:54:13:58:1b:71:d0:e6:70:c6:6c:7a:53:6f:
d3:76:8d:2c:07:44:de:c6:2f:b8:3a:69:e3:4e:ae:
93:45:5a:04:22:50:32:fd:f4:bb:cf:6e:2c:20:4b:
08:c6:12:a9:8d:89:5d:44:e5:d1:49:4a:59:cc:1f:
f7:5a:4c:3d:16:c2:34:46:a8:fd:82:e3:7e:8f:05:
38:c4:aa:81:e1:7b:33:d1:2c:83:b8:4a:b1:13:37:
78:6f:2f:8d:5b:7a:39:7d:97:0a:0d:bb:15:7a:29:
45:c2:ce:1f:8f:3e:13:e0:ee:29:e4:2d:33:40:b6:
87:e2:84:a0:36:f4:60:4e:a4:5c:8f:74:ef:c1:32:
12:4b:5f:79:7f:ec:9a:27:f0:8e:5a:50:d5:84:04:
ee:1f:e3:f6:e7:39:36:b2:33:a0:f8:16:34:f4:36:
8a:ef:24:5b:42:17:ce:18:c8:9f:df:dd:83:9f:2e:
1b:72:6f:d6:cf:40:85:60:e5:18:10:e3:0f:8a:3f:
ed:93:9f:a5:80:4c:a3:8b:3e:dc:90:28:4c:9a:cf:
0a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:48:B7:D5:0E:2B:A2:3E:4A:19:FB:79:37:08:64:94:25:AE:CD:DB
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/kUi31Q4roj5KGft5NwhklCWuzds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.217.0/24
Signature Algorithm: sha256WithRSAEncryption
77:9c:29:3f:7f:8a:e5:dc:15:5b:9b:2f:70:ff:ec:6b:59:fe:
ee:87:69:09:f4:ec:22:a8:ca:6a:6f:45:e1:a9:07:d4:57:fe:
28:e9:04:70:7f:40:41:93:a4:af:d2:54:d4:fb:0b:1a:9b:2b:
51:07:40:52:8f:b8:41:7a:e0:d6:f7:bc:04:b3:6c:7a:db:f9:
3c:df:01:69:42:df:86:63:57:b6:44:77:c4:61:c2:60:36:48:
9a:2d:b8:1a:94:d8:a2:d0:c1:22:6c:5a:be:ed:74:bc:f6:4e:
2d:c9:02:c8:64:f0:9f:83:e4:ae:81:45:dd:84:a7:6d:42:50:
83:b8:e9:2e:ca:dc:05:70:55:6a:e5:3e:e6:3a:19:00:9f:27:
94:96:cb:05:1b:bc:aa:ee:a1:73:6d:58:98:a9:e6:dc:36:ea:
84:e1:00:ce:81:cf:5d:69:f3:26:f7:33:c6:5b:fb:74:3f:c4:
19:dc:85:bc:a3:24:04:0d:b2:43:5b:24:86:ae:4c:e9:9c:ea:
89:e2:dc:64:80:97:6d:07:22:d5:ea:99:0c:d6:85:8a:9c:44:
22:73:ab:14:51:1b:b7:5b:67:9f:96:86:8a:26:18:b0:82:e7:
de:bb:0a:da:f7:45:da:7f:f2:cf:8b:f6:60:79:26:86:48:82:
8e:28:10:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org