Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/GCILKt0wQy41vEx2gdJCfpPdBZc.roa
File: GCILKt0wQy41vEx2gdJCfpPdBZc.roa (raw, json)
Hash identifier: XSA+bGT1RrvXQnU7RQiPcZtWQfhb449XIAKeEjC9fvg=
Subject key identifier: 18:22:0B:2A:DD:30:43:2E:35:BC:4C:76:81:D2:42:7E:93:DD:05:97
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 018CC56EB1D549681B401A27B3617A7828D3
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/GCILKt0wQy41vEx2gdJCfpPdBZc.roa
Signing time: Mon 01 Jan 2024 14:30:15 +0000
ROA not before: Mon 01 Jan 2024 14:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.249.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 17:32:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:b1:d5:49:68:1b:40:1a:27:b3:61:7a:78:28:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Jan 1 14:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18220b2add30432e35bc4c7681d2427e93dd0597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:39:8f:36:9d:2a:e2:d8:35:5a:99:4c:8b:a3:
43:28:80:d4:00:1b:d4:49:0e:ef:23:7e:44:1b:79:
c4:49:d5:c4:f0:7a:b7:ee:4c:8a:5b:f7:b6:d7:44:
6d:57:22:d8:72:df:bf:5d:72:6a:8c:bd:a1:8f:c8:
9a:1f:a9:be:70:4a:2b:2a:f1:88:a9:f6:b7:c6:23:
86:58:21:f0:fc:cf:3c:b4:59:10:57:3b:29:93:57:
3e:7a:81:af:97:00:77:87:a2:cd:ae:ec:4f:d2:02:
12:70:7d:d5:87:a6:5d:00:4b:35:bb:f3:0e:2a:dd:
07:fa:11:29:d1:47:6c:ce:c1:1f:ae:bf:af:00:d1:
77:54:73:aa:2e:0e:50:2f:78:91:79:82:bb:0a:f0:
b4:7f:29:9b:5c:b7:db:7c:d1:51:80:c4:9c:a2:f2:
63:5b:c0:51:4c:56:26:b6:a0:de:36:ab:f2:e7:b7:
f1:a4:93:44:2c:1a:23:30:64:ca:90:c0:4c:4e:84:
a8:f3:b4:51:47:04:c7:4f:b5:03:d3:a3:a5:5b:fc:
7a:36:8f:bd:3b:48:a3:d5:9b:0e:da:9c:a1:dd:52:
68:89:0f:13:7c:b5:64:f5:7e:c4:dc:47:7b:06:74:
8a:d3:f8:17:b7:f7:cf:7b:42:6a:fa:5f:40:40:91:
dd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:22:0B:2A:DD:30:43:2E:35:BC:4C:76:81:D2:42:7E:93:DD:05:97
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/GCILKt0wQy41vEx2gdJCfpPdBZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.184.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:d0:5f:ca:e7:fe:b5:d0:c9:3a:fe:6a:d5:84:d3:bd:9b:f3:
45:0c:92:dc:20:f2:e2:1a:fc:1e:73:09:d6:ef:f6:83:f8:85:
3c:74:ef:a2:ea:da:d6:2f:8e:8b:4b:1e:20:59:85:6d:57:5d:
c8:f9:a2:18:e5:05:b1:00:ee:d1:87:68:2d:e8:c0:c4:2a:96:
bf:37:52:07:bc:90:8d:19:5b:40:5f:21:57:25:d2:92:af:1c:
24:1a:50:86:b9:c2:10:60:14:38:f5:8b:e0:ca:d2:2f:50:b8:
34:5a:39:7b:80:20:ed:eb:c4:84:e5:52:ee:52:d6:26:0e:2c:
00:59:bd:cd:1a:7e:11:60:47:7c:89:f1:1b:8f:d2:1e:be:7e:
ca:03:9c:1c:ab:72:ea:25:94:2d:39:a0:71:b1:60:97:8d:c7:
4e:55:29:b6:ce:d2:73:4a:1d:9a:c5:f5:bb:4d:ac:ce:4b:5e:
99:ae:02:fe:89:c9:8a:23:fc:8e:33:78:1a:74:b3:c5:74:5d:
36:d2:2d:44:85:0c:6e:28:ed:d8:46:74:1d:4f:47:9f:72:cd:
5a:40:09:25:3a:1b:9f:56:94:52:cf:58:8a:e8:32:17:a6:25:
20:25:1f:9d:9c:c9:83:3e:52:9c:09:96:12:4b:7b:ff:ba:54:
2e:57:63:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-fra.rpki-client.org