Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c27300-fb95-49d4-8657-099bf7343e2c/1/GZJKbdIH3PQJ4aVaA9CBwU3K4MY.roa
File: GZJKbdIH3PQJ4aVaA9CBwU3K4MY.roa (raw, json)
Hash identifier: 3Nf1EsgfnenLyYuVCvilMMU4aJQ0XINaiNxlbdVJ2gw=
Subject key identifier: 19:92:4A:6D:D2:07:DC:F4:09:E1:A5:5A:03:D0:81:C1:4D:CA:E0:C6
Certificate issuer: /CN=2445ef0cf2e297489d197370f885d59f89e95aab
Certificate serial: 01856CE60565A35304143046EF5D6D141E34
Authority key identifier: 24:45:EF:0C:F2:E2:97:48:9D:19:73:70:F8:85:D5:9F:89:E9:5A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JEXvDPLil0idGXNw-IXVn4npWqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c27300-fb95-49d4-8657-099bf7343e2c/1/GZJKbdIH3PQJ4aVaA9CBwU3K4MY.roa
Signing time: Sun 01 Jan 2023 10:34:52 +0000
ROA not before: Sun 01 Jan 2023 10:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206596
IP address blocks: 185.181.181.0/24 maxlen: 24
185.181.182.0/23 maxlen: 23
185.181.182.0/24 maxlen: 24
185.181.180.0/24 maxlen: 24
185.181.180.0/23 maxlen: 23
185.181.183.0/24 maxlen: 24
185.181.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 08 Nov 2023 06:20:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:05:65:a3:53:04:14:30:46:ef:5d:6d:14:1e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2445ef0cf2e297489d197370f885d59f89e95aab
Validity
Not Before: Jan 1 10:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19924a6dd207dcf409e1a55a03d081c14dcae0c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:49:2f:e0:22:4f:64:d1:61:8e:e7:2b:4e:4e:
29:28:e9:8e:f8:67:4b:4f:a8:1b:22:bd:2f:7e:c1:
da:99:cb:24:52:6a:f3:4c:16:00:a3:f8:c1:7c:57:
c1:1d:b6:f7:61:c9:53:aa:95:41:c7:3e:e0:7f:2b:
a8:5c:84:69:8b:6e:64:25:b6:03:95:54:e8:a9:a3:
6b:e2:c8:b1:65:93:c5:e7:11:75:2e:fc:d3:db:8a:
c5:13:97:01:73:ad:75:b3:47:11:77:78:2f:62:ca:
d7:a2:36:8a:83:67:83:55:43:54:73:27:9f:41:2a:
22:5e:ed:2f:54:d0:6f:d7:ee:6b:3b:44:54:25:46:
ad:e9:d6:78:ec:81:ca:27:2b:c1:4b:61:a8:6c:83:
ba:2c:24:ac:c4:f9:14:42:a4:2b:2e:50:16:96:40:
66:80:49:be:bb:22:ec:28:ad:c6:65:c2:92:a1:8c:
d1:f9:75:11:a1:02:dc:da:19:88:fc:eb:87:b5:16:
c1:8e:c1:db:19:89:6c:f5:e1:e2:ba:dc:9e:8d:ba:
ae:ea:ec:d3:b2:22:ec:85:1b:8a:14:39:8e:d6:59:
83:57:43:fe:22:05:7e:e2:6a:bc:37:93:c6:80:01:
63:83:fd:be:f9:2d:7c:50:cc:d4:64:f9:ac:0d:84:
fe:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:92:4A:6D:D2:07:DC:F4:09:E1:A5:5A:03:D0:81:C1:4D:CA:E0:C6
X509v3 Authority Key Identifier:
keyid:24:45:EF:0C:F2:E2:97:48:9D:19:73:70:F8:85:D5:9F:89:E9:5A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JEXvDPLil0idGXNw-IXVn4npWqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c27300-fb95-49d4-8657-099bf7343e2c/1/GZJKbdIH3PQJ4aVaA9CBwU3K4MY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c27300-fb95-49d4-8657-099bf7343e2c/1/JEXvDPLil0idGXNw-IXVn4npWqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.180.0/22
Signature Algorithm: sha256WithRSAEncryption
55:3e:4e:97:7b:cb:4a:d3:f1:ee:a9:c7:30:7b:b1:0f:d7:ed:
34:19:de:4d:e6:54:f1:af:53:cc:bd:c7:80:73:ed:c7:ac:53:
28:68:e1:31:0b:88:93:4b:cf:2d:ed:17:9c:8c:c5:82:19:83:
45:d3:da:2e:52:63:16:59:0e:6a:64:7f:03:a8:10:74:47:83:
d8:b2:5a:16:27:43:eb:47:10:c1:1c:b1:73:2f:98:bb:ce:e9:
02:36:44:b4:42:1c:f7:2b:e9:00:80:b5:ac:7e:a4:38:a9:3d:
b9:9d:e1:af:80:b2:ab:b8:37:57:05:ee:78:4a:a1:89:47:8e:
d2:05:e3:06:71:70:2f:10:9e:3a:d4:5f:76:c0:9c:ba:6a:e9:
29:74:40:43:cf:64:5d:6a:b5:1e:cb:a7:c0:02:95:f7:3e:3c:
eb:4b:a5:9f:13:b3:70:db:40:3d:fe:70:c6:23:a9:75:e0:fd:
86:08:4c:23:8d:71:ac:7b:2f:eb:16:21:ec:d3:68:4d:d1:21:
3f:87:2d:42:f5:6e:6b:85:33:28:c7:f9:26:07:f2:e0:61:27:
ad:71:1e:d9:5d:8e:4f:a1:83:21:e1:94:2e:70:a2:e0:1f:0f:
77:a2:95:50:b8:93:1c:1f:bd:95:fd:fb:4c:3c:9c:fd:73:3c:
61:22:70:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org