Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/GXI2D0ZDpX0_DMnUZBYOpkocaX4.roa
File: GXI2D0ZDpX0_DMnUZBYOpkocaX4.roa (raw, json)
Hash identifier: u7/etpZdV8EiHk8RHDIUviICQ5jtPbM7hP8cKrDjC2Y=
Subject key identifier: 19:72:36:0F:46:43:A5:7D:3F:0C:C9:D4:64:16:0E:A6:4A:1C:69:7E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B6506C0A9FB29A969BC9F8D11DC4BF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/GXI2D0ZDpX0_DMnUZBYOpkocaX4.roa
Signing time: Mon 02 Jan 2023 09:00:51 +0000
ROA not before: Mon 02 Jan 2023 09:00:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397423
IP address blocks: 185.234.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:50:6c:0a:9f:b2:9a:96:9b:c9:f8:d1:1d:c4:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1972360f4643a57d3f0cc9d464160ea64a1c697e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:19:97:f3:55:12:20:93:88:2a:f1:26:15:98:
5e:45:57:09:51:45:28:5d:c0:5e:36:1e:ba:37:75:
70:ac:cc:98:a4:98:32:68:69:60:a7:fb:c4:8b:98:
69:40:85:b9:f5:43:80:4e:2e:d0:e9:17:05:09:b3:
13:2c:63:2e:62:21:27:c9:a5:46:4a:a0:4a:a2:f7:
f0:ce:bd:a7:8b:04:82:7b:d7:fc:26:36:5e:c7:9e:
ce:8b:db:6e:a1:21:7e:69:ee:33:02:33:cb:e2:ca:
cb:81:4a:10:a5:e0:8e:c1:cc:4b:6a:98:97:aa:fe:
e3:10:59:d8:8d:54:ce:90:d3:1c:82:90:67:be:2f:
c9:a7:0c:c5:30:f2:83:5b:26:de:cc:f6:c4:f7:11:
54:68:45:af:5a:89:73:66:81:c1:99:4e:c0:e8:4c:
e7:27:fd:3d:12:f9:0c:52:67:75:c3:45:c5:66:42:
aa:0b:b5:da:f0:44:1b:9d:bd:c8:80:0b:cf:7c:bd:
e8:2f:d6:24:fd:16:e4:c8:ab:a9:30:c8:ab:e7:71:
5d:93:e0:d0:27:89:e8:14:dc:6e:43:55:3d:96:d3:
1f:01:c9:52:d0:aa:85:d3:30:96:15:44:a8:f9:42:
63:18:2c:27:5f:c1:b9:59:5d:04:5c:60:36:7c:05:
3a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:72:36:0F:46:43:A5:7D:3F:0C:C9:D4:64:16:0E:A6:4A:1C:69:7E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/GXI2D0ZDpX0_DMnUZBYOpkocaX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.21.0/24
Signature Algorithm: sha256WithRSAEncryption
86:cf:d2:59:1f:41:55:28:05:6c:5d:7a:ff:5c:39:4f:61:cc:
e3:b4:77:5f:19:6c:9f:d1:d5:a8:f7:c6:5d:bd:44:4c:d7:02:
6a:29:0f:99:6d:05:f4:57:8c:f3:1a:e5:c5:0b:0c:3e:5e:99:
c8:50:ef:89:1c:14:ec:a8:fc:05:6f:2c:8f:de:59:a8:98:eb:
af:56:f0:9d:fb:a0:eb:d8:21:3b:da:9c:25:6f:fb:38:08:10:
fa:8b:a5:fc:4f:62:3c:84:ab:32:38:7b:2b:4c:ce:89:73:ac:
df:8c:55:3e:50:a2:96:51:44:b5:c4:87:c9:25:e3:6f:50:61:
f4:4d:00:a6:10:f4:4f:98:97:3d:eb:33:81:dc:e7:89:af:fa:
f5:11:cc:ac:66:83:2b:6b:9e:83:2b:86:d5:01:ab:4f:41:e8:
9f:ed:22:3b:9d:9b:7a:7e:9d:4d:6e:e8:2e:19:2c:53:50:8a:
65:76:7f:85:6b:14:df:cc:bd:3a:c6:cc:40:e6:e0:13:10:4a:
25:39:2e:00:71:79:75:e7:d5:c5:5f:d0:c3:16:a3:1d:a5:81:
a0:b6:35:61:61:78:01:71:f8:5b:8e:85:b3:ad:1c:64:61:36:
1b:23:8c:31:eb:98:b4:2c:6d:50:1d:2a:0a:dc:46:de:c1:f9:
9a:c1:98:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org