Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/Gwy2lXAe5zFeIOWx7F6mA8JPI7Y.roa
File: Gwy2lXAe5zFeIOWx7F6mA8JPI7Y.roa (raw, json)
Hash identifier: Tl/Yk5qvTm2paKfT/j0WD5G1YbVeV6P424CaWnp4cDQ=
Subject key identifier: 1B:0C:B6:95:70:1E:E7:31:5E:20:E5:B1:EC:5E:A6:03:C2:4F:23:B6
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 0188A3AD1EC00F9BF1B8C5EF320E445D79A1
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/Gwy2lXAe5zFeIOWx7F6mA8JPI7Y.roa
Signing time: Sat 10 Jun 2023 05:00:11 +0000
ROA not before: Sat 10 Jun 2023 05:00:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.20.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jul 2023 20:57:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a3:ad:1e:c0:0f:9b:f1:b8:c5:ef:32:0e:44:5d:79:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: Jun 10 05:00:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b0cb695701ee7315e20e5b1ec5ea603c24f23b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0c:8b:d7:4f:c0:4d:90:36:92:a1:02:ae:1e:
fa:cb:5d:be:b9:92:b9:4b:91:02:ca:b3:14:79:87:
f6:9f:1a:d9:31:d1:9b:2e:76:94:54:83:9a:1f:a1:
47:e6:a7:a7:2d:d2:98:f0:66:82:33:2f:14:a3:bd:
3e:8f:5c:2c:fa:a9:dc:be:67:af:a0:fe:6e:34:b9:
ad:e6:2a:4b:70:a5:b9:b7:0f:5a:0f:7a:8a:21:bc:
6c:c3:f8:5a:ca:c5:f5:84:b2:b3:1a:a5:b1:a5:6c:
f9:cf:c0:fd:d0:2c:c2:5f:9d:35:fa:e2:31:d4:cf:
b3:8b:88:9d:34:1f:d9:71:85:04:f1:0f:86:ab:7a:
11:d6:33:b7:e9:ad:98:2c:8e:81:82:5f:9c:13:2a:
4d:b9:48:cb:0b:d6:45:d1:3b:ce:ad:e9:05:ef:42:
33:0a:8c:32:b1:32:12:0f:c2:a2:c4:01:eb:be:69:
4a:97:bd:4a:b3:1c:42:6f:b3:c9:e5:d2:ae:80:3c:
80:e0:bf:b7:be:67:d8:a1:86:05:9e:b4:17:c4:7a:
e3:0c:36:26:6b:8b:c2:16:34:f1:0f:fb:62:cb:1f:
de:61:6b:b4:3e:fe:92:ee:7d:35:fc:e0:5f:57:9e:
46:69:70:53:15:15:a8:cc:ee:f7:de:06:46:77:60:
04:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:0C:B6:95:70:1E:E7:31:5E:20:E5:B1:EC:5E:A6:03:C2:4F:23:B6
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/Gwy2lXAe5zFeIOWx7F6mA8JPI7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.255.0/24
Signature Algorithm: sha256WithRSAEncryption
72:8a:f0:c5:be:d3:f6:30:5c:45:ee:2f:0b:30:f9:b4:43:d2:
b7:41:e1:a0:12:88:1a:6f:81:7a:79:e9:6f:05:37:2f:1e:63:
1c:31:02:00:66:a9:f9:93:ff:d3:3a:c6:79:c0:a1:8b:61:5f:
ca:25:0a:94:d1:b8:69:4f:47:45:c3:f8:90:7c:00:60:12:59:
58:fb:1d:28:59:bf:fe:5d:f7:f9:84:7c:ae:5e:bd:c6:b0:fd:
9c:62:8e:4f:24:5e:f0:9a:0d:ba:78:f1:ee:89:7e:85:55:bd:
4d:fa:f0:96:42:c4:a8:56:18:0f:35:6b:dc:c0:f8:88:86:1f:
d2:be:d4:ad:98:0c:50:16:bc:9e:7e:1d:58:9b:1a:ad:20:3f:
ca:d9:b6:4b:e1:1f:38:08:ab:50:43:f3:84:3b:b6:91:8a:bf:
df:47:34:e3:74:59:7b:a1:9c:f5:df:5c:ab:3b:4f:76:70:f0:
20:98:12:61:45:bc:61:e4:7b:99:58:e7:05:21:1b:78:90:57:
73:48:02:54:11:b5:4a:c8:23:72:f7:b9:38:b9:c1:b1:d6:ef:
f2:75:b6:34:2c:ab:46:00:5d:85:59:0b:17:28:b8:57:b1:94:
4f:97:20:ac:76:f3:0c:82:39:46:e4:ac:07:1f:f8:48:44:1f:
ca:b7:09:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:01 2024 by rpki-client on console-ams.rpki-client.org