Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/861937-99fe-4b48-99b2-dd907b774f22/1/gLwiUKsb2jU41Rg5Hu37bG_ZZBk.roa
File: gLwiUKsb2jU41Rg5Hu37bG_ZZBk.roa (raw, json)
Hash identifier: vpTySbZQYiw2XOvfPv48y5G4ClcMa3/Ms/f0YkLvPPU=
Subject key identifier: 80:BC:22:50:AB:1B:DA:35:38:D5:18:39:1E:ED:FB:6C:6F:D9:64:19
Certificate issuer: /CN=776564fc206c4bc5db58f7efbbb1e8f88499e233
Certificate serial: 01856B9367F7C9BE091A82F959EC76C98590
Authority key identifier: 77:65:64:FC:20:6C:4B:C5:DB:58:F7:EF:BB:B1:E8:F8:84:99:E2:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2Vk_CBsS8XbWPfvu7Ho-ISZ4jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/861937-99fe-4b48-99b2-dd907b774f22/1/gLwiUKsb2jU41Rg5Hu37bG_ZZBk.roa
Signing time: Sun 01 Jan 2023 04:25:00 +0000
ROA not before: Sun 01 Jan 2023 04:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203462
IP address blocks: 185.134.68.0/22 maxlen: 24
2a06:eb00::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 24 Apr 2023 12:47:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:67:f7:c9:be:09:1a:82:f9:59:ec:76:c9:85:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776564fc206c4bc5db58f7efbbb1e8f88499e233
Validity
Not Before: Jan 1 04:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80bc2250ab1bda3538d518391eedfb6c6fd96419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:96:5b:fe:af:84:9a:9c:79:ee:ba:fc:94:f2:
87:3b:e7:ab:cc:3e:50:cb:00:a8:e8:41:9c:ce:b8:
db:c1:4c:98:d3:fb:36:c4:1d:2d:aa:5c:58:67:ab:
40:9f:76:f6:fe:7e:bc:75:43:94:36:4b:cd:33:68:
79:38:5e:17:5e:08:80:ba:0b:6e:66:be:99:37:9b:
14:bb:39:cd:5b:20:a6:df:ba:11:c7:b1:a6:2e:87:
d9:db:8c:fe:90:6c:ed:7b:2d:f6:5a:eb:e6:f2:c8:
f4:70:a9:49:a0:1d:5d:2b:49:31:30:28:39:33:78:
80:e2:8f:55:a9:01:a2:a7:37:11:1d:5c:86:f0:89:
8c:ed:64:62:84:10:f6:79:96:ac:de:74:02:36:dc:
0a:0f:9c:80:7d:93:c2:18:ac:75:d0:09:ff:65:b4:
fb:ea:f5:f2:aa:2e:de:19:ca:22:97:49:76:99:f1:
ae:a8:18:c0:85:97:35:b2:d0:f5:5a:3f:d4:a9:d9:
04:e7:6a:cc:03:85:97:43:09:2d:02:50:1f:42:60:
47:d6:53:ca:bd:48:0f:1e:b4:d5:2f:48:9c:a5:bd:
59:7a:79:09:67:4e:82:37:41:e7:4d:49:7e:a8:11:
68:e7:c5:85:74:22:5f:28:aa:d6:26:60:6a:17:ca:
b1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BC:22:50:AB:1B:DA:35:38:D5:18:39:1E:ED:FB:6C:6F:D9:64:19
X509v3 Authority Key Identifier:
keyid:77:65:64:FC:20:6C:4B:C5:DB:58:F7:EF:BB:B1:E8:F8:84:99:E2:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2Vk_CBsS8XbWPfvu7Ho-ISZ4jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/861937-99fe-4b48-99b2-dd907b774f22/1/gLwiUKsb2jU41Rg5Hu37bG_ZZBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/861937-99fe-4b48-99b2-dd907b774f22/1/d2Vk_CBsS8XbWPfvu7Ho-ISZ4jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.68.0/22
IPv6:
2a06:eb00::/29
Signature Algorithm: sha256WithRSAEncryption
5c:e1:44:42:ff:68:e4:c4:0e:9e:33:53:15:f4:7a:85:dd:b8:
0c:37:28:65:46:b4:02:52:6b:40:7a:c4:09:8a:3f:84:20:0c:
bf:a0:f4:80:d6:ec:d0:36:50:06:e6:df:c8:0c:75:d5:a8:47:
f1:7a:af:f1:b6:38:2b:1d:46:2a:53:ce:3d:cf:bb:a3:ca:7f:
f3:85:d5:ff:09:87:b0:a3:dc:7b:de:9f:c6:b6:ad:a4:91:74:
89:08:f8:6c:ca:c8:58:92:dc:db:93:c1:5f:42:3a:5f:13:99:
b6:2d:97:bc:e6:e4:06:f1:b3:e4:e4:02:72:81:9c:f1:11:a6:
53:1c:09:a1:99:43:91:46:51:97:94:04:5d:df:7e:0c:b4:07:
e3:28:9d:e8:ad:37:e5:81:a2:07:c4:32:75:60:ad:50:4c:6e:
48:04:31:65:9e:22:fd:b0:f1:90:f4:f7:2e:9a:97:5d:d3:29:
fd:44:2f:79:36:49:38:cd:76:6a:8d:1c:9c:ec:f5:1a:44:a9:
b5:64:5c:6e:7e:25:5a:99:4a:2a:ce:ff:c3:d5:62:e3:67:d8:
1d:fe:c2:d4:14:f2:bf:78:8a:54:17:21:b7:12:66:91:4b:21:
d7:f8:9b:cf:8b:2c:d0:43:0e:9f:83:c5:43:0b:60:43:90:f8:
83:e5:f7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:33 2024 by rpki-client on console-ams.rpki-client.org