Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Gxchhi3oiDP71UdoWn-HUa4F2jo.roa
File: Gxchhi3oiDP71UdoWn-HUa4F2jo.roa (raw, json)
Hash identifier: Qpbk/2bi1mBa84gJsa/ZKVamTqPaL6mUoAfdGFGo1AQ=
Subject key identifier: 1B:17:21:86:2D:E8:88:33:FB:D5:47:68:5A:7F:87:51:AE:05:DA:3A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AAEA25C2B161651F6D5777F187921C3C7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Gxchhi3oiDP71UdoWn-HUa4F2jo.roa
Signing time: Tue 19 Sep 2023 18:09:50 +0000
ROA not before: Tue 19 Sep 2023 18:09:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203758
IP address blocks: 185.36.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ae:a2:5c:2b:16:16:51:f6:d5:77:7f:18:79:21:c3:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 19 18:09:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b1721862de88833fbd547685a7f8751ae05da3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a0:d0:f7:00:47:29:ed:d2:3d:f4:c4:92:4d:
2a:25:fa:32:c0:61:98:1f:7b:9a:7d:fe:c0:eb:cc:
22:b0:e0:94:68:a4:11:61:d9:01:a6:3f:aa:1a:85:
55:f2:b6:ef:80:55:e1:26:34:18:3c:a7:f9:b6:9d:
f1:47:77:12:b2:5d:b4:10:ae:30:0d:e3:54:ab:50:
c5:de:32:84:80:9b:87:fd:af:69:6f:90:c5:b0:b1:
2a:33:6c:b3:e9:d7:2e:94:78:9d:05:c1:6b:25:59:
0a:c6:d6:0d:1d:26:4a:89:28:bf:95:10:b2:b1:b9:
79:e0:6a:0d:1e:b7:fe:48:4e:dc:0e:b2:e3:92:b9:
d8:63:6c:73:9d:85:68:d8:79:36:0a:bd:f5:1b:75:
66:08:db:13:f3:8f:c0:b8:43:77:49:ef:75:c1:72:
47:91:9c:c8:86:45:0d:9f:c9:8c:4c:cc:81:e9:27:
41:9a:96:47:6c:c6:b3:60:4d:67:74:46:df:3f:dc:
e1:0e:81:fe:c2:3e:de:22:7c:cf:27:77:da:6c:98:
78:6f:b8:67:1e:32:9d:a3:7c:5f:02:80:4e:b1:62:
d5:48:47:ee:aa:23:11:a3:1b:ca:82:c3:30:08:0a:
2f:a5:99:5e:15:37:f1:63:d5:17:5b:68:8a:76:7d:
d6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:17:21:86:2D:E8:88:33:FB:D5:47:68:5A:7F:87:51:AE:05:DA:3A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Gxchhi3oiDP71UdoWn-HUa4F2jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.205.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:eb:1e:b3:de:44:24:fc:2f:6e:cc:57:40:cf:8f:51:15:39:
be:6d:79:29:09:da:e0:37:91:d2:22:b6:1d:a1:34:d4:2c:39:
74:3e:d7:83:c6:7c:b7:bc:4d:27:fc:77:49:8b:7b:12:28:33:
9a:01:87:b6:e9:d9:97:33:ab:0b:cb:96:ed:2a:05:f8:5f:d1:
b3:c6:9d:44:1c:05:33:69:8f:e4:dc:1b:c6:5a:00:a2:d6:10:
cf:7a:be:a1:3b:67:83:64:2e:fe:87:f1:8c:7c:0e:9c:ed:dd:
04:c2:2f:73:23:13:47:1b:31:ae:8d:6f:42:5f:93:a4:64:63:
7b:ed:a6:f9:96:cd:ee:5a:48:5b:60:f4:c9:e8:c6:30:3a:26:
41:68:b0:08:f4:47:13:fd:dd:ee:a2:04:a7:73:ba:38:8b:41:
79:73:f2:07:f2:f6:34:cd:5b:e6:1d:76:8e:4e:47:d4:0a:61:
cc:50:72:a9:18:dc:3f:a7:22:f4:13:3f:71:f8:cb:d6:df:06:
73:cf:13:c5:66:9f:44:af:b2:7b:36:e2:4c:8e:35:99:f7:87:
69:04:03:43:ce:47:df:28:1c:8d:a0:54:43:d7:18:59:e2:76:
50:12:5f:80:0c:4d:e5:b8:69:ae:d2:de:e0:ae:81:1f:0b:0f:
3a:dc:19:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org