Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gXjsW_bPYEzMzodU6Y4Ma9GsVHY.roa
File: gXjsW_bPYEzMzodU6Y4Ma9GsVHY.roa (raw, json)
Hash identifier: UdlZ8tGnG/PNhXmvKDXAGRVe/O1I2+26OZZgD8Nh1go=
Subject key identifier: 81:78:EC:5B:F6:CF:60:4C:CC:CE:87:54:E9:8E:0C:6B:D1:AC:54:76
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0187E8A26F87F1D5EC7CB0D4B1CC8FA4C2BF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gXjsW_bPYEzMzodU6Y4Ma9GsVHY.roa
Signing time: Thu 04 May 2023 21:19:32 +0000
ROA not before: Thu 04 May 2023 21:19:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 272611
IP address blocks: 185.238.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e8:a2:6f:87:f1:d5:ec:7c:b0:d4:b1:cc:8f:a4:c2:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 4 21:19:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8178ec5bf6cf604cccce8754e98e0c6bd1ac5476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:89:84:78:72:61:35:17:ca:a5:0c:9c:56:f4:
88:b7:71:c3:f5:16:b2:53:10:3f:e0:31:fe:58:a8:
74:0a:82:47:ee:b0:28:16:34:01:72:50:bb:40:b2:
e6:47:af:35:e9:e3:bc:56:f7:83:8d:08:fb:d1:cd:
16:bb:03:0a:17:e7:3f:b7:f5:e3:f8:67:cd:4e:32:
87:9c:0d:05:9d:42:49:2b:f8:54:4a:cb:4a:ed:61:
78:47:d0:24:26:e0:dd:62:5d:d4:f8:0f:e8:ea:d4:
d8:7e:8d:c2:4c:a5:e4:91:6f:01:9c:f3:29:f6:3a:
c0:eb:22:ce:d1:b1:a4:2f:ef:6f:f3:64:89:92:c8:
b2:43:25:5b:c4:d3:6d:2c:6f:6b:eb:ab:c1:61:e5:
a0:a5:37:29:15:7e:43:b8:f8:50:c8:e8:8d:22:36:
36:1e:45:1d:21:61:f2:c2:a9:ea:9c:d9:ab:ea:db:
4f:75:4a:ee:3b:f7:f1:7d:97:e7:c7:0e:98:7f:f2:
4b:bc:6b:ba:33:99:b4:d6:05:f3:3f:a0:7c:fb:ae:
92:85:b2:b5:70:45:87:e0:d7:87:93:59:e4:fc:c0:
5d:ef:21:e5:46:ed:83:11:3a:6e:08:85:f1:92:1b:
fe:b8:8e:5c:e3:ae:be:de:ed:57:4a:b7:ea:fc:a8:
3a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:78:EC:5B:F6:CF:60:4C:CC:CE:87:54:E9:8E:0C:6B:D1:AC:54:76
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gXjsW_bPYEzMzodU6Y4Ma9GsVHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.230.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f8:62:c0:d6:1c:9d:74:4f:94:54:86:34:d3:77:b4:a8:f5:
55:ff:fb:fe:85:dc:4b:df:92:82:78:a2:93:fe:f5:39:34:2a:
bb:c8:be:6e:bc:f6:b6:55:98:85:60:79:30:4b:6e:1c:3f:1f:
8c:ac:b1:21:be:2f:92:04:53:91:fc:9c:58:af:a1:df:b8:91:
29:a3:a8:cf:52:74:b8:0a:14:c1:c7:4b:26:45:d7:04:f7:ac:
9c:f1:5a:9c:63:e8:35:d8:26:78:42:5e:71:c8:26:17:28:5a:
d7:66:1c:cc:97:a8:55:7b:55:e6:a6:d2:3b:74:7b:35:ed:47:
c4:b1:c6:7b:75:bf:b6:72:31:77:85:71:d4:a0:2c:1c:3b:c0:
3c:c8:84:6c:75:b8:ca:8e:29:a0:17:1d:f2:e0:4a:74:8f:b0:
70:4f:50:d3:b1:b5:ee:e6:ba:87:9f:94:e9:52:77:9b:65:2e:
cd:7d:e1:50:fb:cb:cc:92:c5:f0:52:07:36:cd:71:5a:20:01:
e0:a7:ea:44:ca:20:a1:0b:62:08:24:fd:4d:db:85:e1:b0:67:
82:5a:56:01:cf:19:5e:67:0c:d9:63:06:98:21:ce:a0:fb:96:
23:6d:00:ea:be:51:1c:b6:a7:12:cd:3b:5d:d3:b0:f2:58:4f:
45:c5:8f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org