Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/gRNtQJ5Wq8sdZSe5ZpxLNzMDjkw.roa
File: gRNtQJ5Wq8sdZSe5ZpxLNzMDjkw.roa (raw, json)
Hash identifier: LfGb07TraB/IS+oG2j9lxDhVR99fwaUTuLMpaqTLV2Y=
Subject key identifier: 81:13:6D:40:9E:56:AB:CB:1D:65:27:B9:66:9C:4B:37:33:03:8E:4C
Certificate issuer: /CN=ec65d31440bf75d25c606f7915c236ca614464a2
Certificate serial: 0185707068D32228EE756C55C8A131A28116
Authority key identifier: EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/gRNtQJ5Wq8sdZSe5ZpxLNzMDjkw.roa
Signing time: Mon 02 Jan 2023 03:04:53 +0000
ROA not before: Mon 02 Jan 2023 03:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197704
IP address blocks: 185.80.35.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:68:d3:22:28:ee:75:6c:55:c8:a1:31:a2:81:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec65d31440bf75d25c606f7915c236ca614464a2
Validity
Not Before: Jan 2 03:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81136d409e56abcb1d6527b9669c4b3733038e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d6:06:75:77:fa:39:cb:f3:f7:e4:1c:e1:fa:
bd:94:37:40:a5:e8:43:3f:fc:97:82:58:ef:4a:20:
49:25:ed:f1:de:ff:a0:a2:90:00:79:30:4c:9a:0d:
02:73:e6:a8:9a:8e:c8:ae:42:81:34:d8:d2:28:8b:
64:de:9a:c8:b0:4e:dd:af:64:51:5d:00:70:cf:3c:
82:c6:db:55:70:45:3a:d5:d0:8f:94:64:a4:8f:84:
aa:96:5c:99:5c:df:ab:68:a5:38:32:fa:94:05:83:
5f:d1:0f:e8:4c:eb:cf:d3:c2:c4:34:36:3f:2d:50:
1c:43:3a:93:34:d7:6b:33:e6:86:be:4c:47:5c:01:
ca:92:47:f4:d3:24:ad:d9:ea:8e:ae:d3:aa:2e:0f:
1a:16:b0:64:2f:ac:34:b3:5e:b0:21:81:cf:b6:4b:
49:a8:b5:be:91:5e:6f:65:92:7f:92:7f:9c:f7:04:
78:2a:23:2e:56:37:ac:d5:33:49:65:ee:9e:3e:f0:
54:67:d3:40:cf:d7:05:e9:b5:7b:5c:79:89:c2:df:
b2:97:0c:45:6f:71:9e:f0:b6:aa:31:91:4f:7d:80:
af:5b:48:ce:c5:fc:33:a3:95:a5:03:bc:f0:c1:7f:
5e:c6:8a:90:96:c9:a5:6d:bb:73:a9:82:62:ca:72:
65:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:13:6D:40:9E:56:AB:CB:1D:65:27:B9:66:9C:4B:37:33:03:8E:4C
X509v3 Authority Key Identifier:
keyid:EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/gRNtQJ5Wq8sdZSe5ZpxLNzMDjkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/7GXTFEC_ddJcYG95FcI2ymFEZKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.35.0/24
Signature Algorithm: sha256WithRSAEncryption
58:5a:e2:3c:fe:91:02:d3:ee:f8:0f:86:70:b8:66:b1:3a:c3:
71:cb:c0:fc:9e:74:c0:74:8a:68:29:4f:d4:9c:59:25:40:2e:
ee:7f:58:b5:3c:f5:df:bc:30:e6:c2:a6:de:fd:b6:85:66:e7:
40:27:51:3c:86:c8:3d:d5:12:40:21:28:e0:af:35:f7:f2:de:
26:da:6c:78:1d:2a:54:69:ae:47:3f:cf:9a:56:fc:9a:30:e1:
1a:77:09:02:03:83:f1:f9:cb:9f:76:75:a2:1d:73:2a:f5:ff:
24:87:c0:3e:56:bf:20:70:45:e1:c0:3a:ae:1f:3c:e3:0c:55:
ba:ad:21:7b:3d:51:f0:9e:dc:ef:ba:c2:b5:6d:bd:a7:74:0c:
98:e3:e2:c9:9a:fe:27:1a:de:6f:1b:f0:28:3e:a8:d1:6d:90:
01:2a:5c:e4:f7:bd:7e:41:10:5b:50:2e:1b:82:7f:cb:ba:10:
7c:30:dc:6d:d4:dc:d6:00:c5:09:9e:54:b9:e4:bf:25:d5:71:
0c:1e:ee:fe:2d:b6:24:c2:8f:52:c0:b5:a0:dc:72:b9:6e:a5:
13:19:6d:91:87:91:84:11:2e:68:7c:b4:66:3c:75:6b:eb:21:
8d:3a:95:71:85:a1:7d:93:74:dc:16:96:a0:61:dd:6e:f1:61:
26:29:b2:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:04 2024 by rpki-client on console-ams.rpki-client.org