Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/gnBm4LQlsYG8C9ydqXjrJ5Hel_A.roa
File: gnBm4LQlsYG8C9ydqXjrJ5Hel_A.roa (raw, json)
Hash identifier: L/ltUhFQZim8R+FQ5A4hahGur5bC9H7irOIYdrEmWsU=
Subject key identifier: 82:70:66:E0:B4:25:B1:81:BC:0B:DC:9D:A9:78:EB:27:91:DE:97:F0
Certificate issuer: /CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Certificate serial: 0185719E6FD4731D071BCEB289DA91148B37
Authority key identifier: C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/gnBm4LQlsYG8C9ydqXjrJ5Hel_A.roa
Signing time: Mon 02 Jan 2023 08:34:46 +0000
ROA not before: Mon 02 Jan 2023 08:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36385
IP address blocks: 185.25.30.0/24 maxlen: 24
2a00:79e0:101::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:6f:d4:73:1d:07:1b:ce:b2:89:da:91:14:8b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Validity
Not Before: Jan 2 08:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=827066e0b425b181bc0bdc9da978eb2791de97f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:eb:b1:6f:9d:72:44:ca:78:a7:e8:ee:80:12:
97:ed:78:d0:c5:c2:98:78:2c:f0:8d:07:80:93:da:
dc:db:d4:02:7f:58:b4:47:73:00:7f:30:a6:25:29:
98:4b:da:ee:fb:7e:3e:96:ad:89:89:31:47:34:e4:
12:99:3f:96:d4:cd:58:c3:b0:06:52:6b:f9:6c:e7:
73:f2:f9:18:5a:13:1c:77:f6:a3:7d:63:d8:08:51:
c6:2b:0a:34:9b:39:1f:14:7f:4e:ff:06:47:15:5b:
65:07:a8:a8:54:2f:44:4f:c6:da:f9:59:cd:df:b4:
54:ab:d4:79:94:2b:d8:15:bd:30:91:61:80:cf:fa:
3e:ef:1d:c1:e6:21:34:bc:79:83:8f:a3:75:ce:79:
4d:1d:81:5b:d0:02:0d:9f:a1:5c:45:3d:3e:ea:3a:
c2:53:34:a5:83:0d:cd:23:6e:d9:3f:c0:ea:b0:60:
07:28:53:f0:ff:7f:ba:89:5b:2b:22:24:09:78:c4:
70:3a:9e:84:00:2e:31:62:b7:af:fb:6e:db:73:34:
af:c7:65:3d:12:59:44:66:bd:b7:bf:5f:de:a7:2b:
c4:2e:a1:ef:a5:f5:ae:5f:36:ec:08:f2:35:7f:6f:
ac:35:0e:15:55:2e:33:cd:47:46:9b:17:14:97:69:
b5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:70:66:E0:B4:25:B1:81:BC:0B:DC:9D:A9:78:EB:27:91:DE:97:F0
X509v3 Authority Key Identifier:
keyid:C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/gnBm4LQlsYG8C9ydqXjrJ5Hel_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.30.0/24
IPv6:
2a00:79e0:101::/48
Signature Algorithm: sha256WithRSAEncryption
a4:b8:c4:6a:08:8d:9f:e6:e9:0e:89:82:1a:de:5e:a1:9a:d7:
3c:f9:c1:7b:2e:b8:de:01:5f:bf:fe:8f:f0:5b:4e:54:c5:cf:
0d:88:4c:3d:8c:6e:a2:3e:2e:fb:9e:54:f4:9d:35:2c:4b:f0:
43:73:c0:3a:d5:ba:ee:ad:f2:fe:63:b4:a8:ad:c6:42:90:84:
e6:9f:8e:5e:cc:68:e1:47:00:7e:1e:be:9f:0c:00:d0:f1:8c:
f6:14:b6:c8:75:b2:18:3e:de:8b:b1:36:91:01:71:a6:70:a5:
99:42:54:98:c0:4a:13:b3:99:c7:79:8c:1f:81:b3:96:46:a9:
a8:23:13:c4:11:3b:e5:45:89:bc:84:4e:a8:70:dc:44:17:7b:
2f:40:e5:f7:c9:48:e1:74:54:ee:d0:d1:24:1b:eb:10:d5:8c:
2e:5c:0a:bb:07:4b:b8:3b:ef:d0:4e:ec:6c:32:65:61:de:92:
8e:f6:f1:96:95:6e:44:fe:10:0b:1f:7d:63:12:8f:34:67:52:
5b:a4:35:ef:2a:50:9a:16:33:c2:5f:14:e1:42:2e:53:bc:6a:
ec:0c:78:c8:73:47:96:9b:2a:08:31:94:b0:85:1c:6c:34:f6:
0a:19:ae:e0:3b:1c:f7:7d:3d:58:81:25:34:d8:e9:98:ee:4d:
88:7b:46:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:55 2024 by rpki-client on console-fra.rpki-client.org