Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/73e78e-45cf-45f0-82bf-39fd3ca76cd6/1/G2Ic8syJMOnA98WcQf60RMt3daw.roa
File: G2Ic8syJMOnA98WcQf60RMt3daw.roa (raw, json)
Hash identifier: H1uORaLDLjFPfN3exYNho7LinnTWS6yiD+0xmI2fdZE=
Subject key identifier: 1B:62:1C:F2:CC:89:30:E9:C0:F7:C5:9C:41:FE:B4:44:CB:77:75:AC
Certificate issuer: /CN=6dbddca0ab2ebe8b8529a7c9ce1dd6e8ea555c3d
Certificate serial: 01856FCB8A29DD3C3B757ED8D7E9980CBC1B
Authority key identifier: 6D:BD:DC:A0:AB:2E:BE:8B:85:29:A7:C9:CE:1D:D6:E8:EA:55:5C:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb3coKsuvouFKafJzh3W6OpVXD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/73e78e-45cf-45f0-82bf-39fd3ca76cd6/1/G2Ic8syJMOnA98WcQf60RMt3daw.roa
Signing time: Mon 02 Jan 2023 00:04:48 +0000
ROA not before: Mon 02 Jan 2023 00:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211719
IP address blocks: 185.244.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:8a:29:dd:3c:3b:75:7e:d8:d7:e9:98:0c:bc:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbddca0ab2ebe8b8529a7c9ce1dd6e8ea555c3d
Validity
Not Before: Jan 2 00:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b621cf2cc8930e9c0f7c59c41feb444cb7775ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:67:27:0e:21:4c:a4:53:b7:20:69:82:33:11:
92:4a:96:69:79:15:8b:9c:b0:12:4b:b8:bf:21:05:
d5:c9:6f:f4:61:58:f1:3b:31:fb:37:5e:5f:17:9c:
1f:fa:fa:14:7c:14:6c:85:25:a3:ff:d8:1b:95:26:
fa:ad:51:08:39:a1:cf:97:01:f2:9f:0a:16:04:dd:
00:1f:e3:3d:26:77:f0:9e:47:b9:5b:b1:36:35:47:
dc:1c:87:0b:ec:1c:d7:cf:a7:32:cc:c3:7f:4c:e8:
28:31:6c:98:02:54:44:22:0b:61:25:e7:2d:62:76:
3d:5f:28:05:1d:f2:cf:20:84:08:a2:f7:6f:6a:8a:
e6:3b:22:d5:4c:bf:21:51:29:8d:9b:03:b5:35:5a:
d8:98:a6:72:8d:06:78:60:bd:c7:d6:4d:41:76:bd:
e4:d4:e3:58:dd:1b:63:89:2a:b0:6a:06:68:16:78:
73:4f:6c:93:80:31:b7:d1:06:19:34:05:53:5e:9e:
69:c8:6c:c7:f1:83:0b:25:a7:bd:cd:57:b9:69:85:
dc:dd:07:6d:c9:5b:b3:d4:98:80:6c:b3:7c:f2:c9:
50:4b:f9:8d:b3:87:61:4d:8f:c6:82:0b:24:6a:de:
48:3e:35:20:5d:87:63:62:e6:1f:2a:b0:1c:20:ab:
0f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:62:1C:F2:CC:89:30:E9:C0:F7:C5:9C:41:FE:B4:44:CB:77:75:AC
X509v3 Authority Key Identifier:
keyid:6D:BD:DC:A0:AB:2E:BE:8B:85:29:A7:C9:CE:1D:D6:E8:EA:55:5C:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb3coKsuvouFKafJzh3W6OpVXD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/73e78e-45cf-45f0-82bf-39fd3ca76cd6/1/G2Ic8syJMOnA98WcQf60RMt3daw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/73e78e-45cf-45f0-82bf-39fd3ca76cd6/1/bb3coKsuvouFKafJzh3W6OpVXD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.227.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:8a:f1:5a:02:38:13:88:6f:fc:69:18:68:81:3f:3c:e0:08:
8c:cd:3e:00:13:81:8e:98:af:cf:50:ce:ec:9f:47:e5:ea:5c:
1b:70:01:fa:e9:a2:45:ed:33:69:a2:9e:bb:78:4c:10:8d:48:
f9:d5:3c:9f:bc:de:f6:79:4c:b6:cc:e3:dc:b2:df:02:56:dc:
59:74:a9:77:34:2a:49:cb:4a:46:ab:2d:48:c3:db:aa:d8:82:
04:e2:2b:46:a1:9d:20:e3:26:11:e8:a0:13:5e:05:5d:af:67:
09:f7:78:34:b5:1a:23:a2:4c:c1:ff:67:58:94:f2:32:c5:36:
3e:1a:f6:aa:c2:1e:da:eb:7a:98:c9:89:76:80:c8:c3:ef:21:
f4:32:93:f7:f0:63:a5:ed:0b:d5:90:49:09:f2:ae:44:12:67:
eb:7b:c1:c2:8c:b0:b2:63:60:1d:eb:e3:5b:da:b4:76:8a:40:
52:0f:af:c9:85:ba:97:92:fe:45:17:62:c0:c0:84:1b:5f:40:
29:d9:f6:0c:99:31:cf:90:1e:ab:92:24:98:59:c0:dd:26:a6:
00:73:2c:4e:d3:4c:55:0b:19:08:97:af:23:c3:ea:d2:98:78:
29:c9:3e:ae:89:f2:d2:0a:71:9d:79:bc:33:4b:9e:ab:bb:7a:
d9:3b:2c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:51 2024 by rpki-client on console-fra.rpki-client.org