Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/gcrKvTj8QR7ohtZFNLBlZ-0Rsao.roa
File: gcrKvTj8QR7ohtZFNLBlZ-0Rsao.roa (raw, json)
Hash identifier: wUXlPwKGKZvW9MaqeQHcCJYMCQRTCfPOMzERiBOkbtE=
Subject key identifier: 81:CA:CA:BD:38:FC:41:1E:E8:86:D6:45:34:B0:65:67:ED:11:B1:AA
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 01917F050B39280F4C14E8C71410B48E3358
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/gcrKvTj8QR7ohtZFNLBlZ-0Rsao.roa
Signing time: Fri 23 Aug 2024 11:35:22 +0000
ROA not before: Fri 23 Aug 2024 11:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206596
IP address blocks: 45.11.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 10:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7f:05:0b:39:28:0f:4c:14:e8:c7:14:10:b4:8e:33:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: Aug 23 11:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81cacabd38fc411ee886d64534b06567ed11b1aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d1:94:92:a2:35:b6:54:b0:a8:35:82:b4:3b:
12:74:46:e9:77:63:34:a8:43:6e:1e:77:44:23:c4:
2f:4e:ec:f1:ee:b2:af:ee:88:9d:2b:3c:f1:ca:28:
13:8d:9e:ef:09:f6:32:d3:5c:6f:f0:34:35:75:d7:
26:f4:74:3b:3d:63:d4:49:3b:f3:fe:ac:c2:5b:ef:
2a:31:88:75:8f:f5:37:64:58:0f:08:dc:cd:95:c5:
d5:c4:82:66:52:af:01:4f:48:6b:4f:fe:70:43:0e:
2d:c3:fb:be:48:38:04:2a:6e:f7:40:3b:bb:15:cf:
da:79:0d:c0:95:db:16:48:16:92:ba:d5:b1:42:b8:
2b:96:9a:7b:46:ed:2b:a8:1f:7f:80:bd:09:a3:68:
67:89:a2:6e:bb:e4:12:7f:98:7e:48:1a:3e:77:aa:
89:e6:03:1a:3d:1a:75:0d:40:4d:4a:7c:ad:e7:44:
3e:56:2f:59:5c:95:38:88:44:3e:7c:e5:bc:af:10:
ae:b1:8f:21:2f:0c:51:08:ca:43:02:b3:2f:a9:55:
05:2a:28:29:6c:2d:1a:56:09:72:59:db:e1:d9:4d:
f1:64:ed:dd:be:65:5b:40:0d:22:75:c1:c2:1e:0b:
0b:cd:35:a4:69:7d:29:4b:62:c2:4e:a0:b7:29:71:
e3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CA:CA:BD:38:FC:41:1E:E8:86:D6:45:34:B0:65:67:ED:11:B1:AA
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/gcrKvTj8QR7ohtZFNLBlZ-0Rsao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.185.0/24
Signature Algorithm: sha256WithRSAEncryption
04:d0:77:03:7e:0b:e0:16:31:89:80:da:d2:50:e8:55:c5:4e:
08:5c:9f:51:db:4b:1f:53:9b:a0:77:c7:bc:fe:b5:dc:70:b0:
e1:c5:22:fe:a9:d1:dc:f3:ca:a3:2a:78:7b:58:f3:a4:72:11:
b9:04:47:17:1e:8b:26:6f:9d:a0:4e:d0:46:3a:4f:66:94:c0:
e6:bd:e3:af:8e:fd:c4:34:ff:5f:da:f6:20:76:54:aa:8a:8f:
9b:88:9e:7e:7f:f8:28:40:74:1b:b9:1f:4a:bf:f5:8f:81:1a:
c9:7e:dd:de:94:50:cb:04:31:63:13:79:c3:78:fa:34:5b:f7:
11:72:31:49:2c:fa:b5:71:ac:b4:c8:1d:ba:6e:7f:d2:c8:97:
df:68:6a:4c:77:9b:12:46:44:a3:66:21:05:68:1c:fe:82:36:
5b:e8:3f:c1:18:e0:fd:15:7a:c0:cd:52:c6:84:14:f8:df:0e:
8f:e5:97:7e:c4:7f:ae:cc:e1:54:ce:8c:68:74:b6:42:c5:d4:
3e:eb:10:44:74:1c:70:d7:c6:48:ad:ff:06:df:1d:aa:12:57:
68:58:8d:1b:2f:1c:17:37:d7:7c:6f:67:67:dd:23:a9:31:12:
92:be:b6:a8:84:be:da:fc:7e:3e:bf:47:ef:b1:d7:2d:9c:c9:
7d:4b:dd:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 14:26:46 2024 by rpki-client on console-ams.rpki-client.org