Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gbMSJkq5xaXXR0Xi1-74vDdQ790.roa
File: gbMSJkq5xaXXR0Xi1-74vDdQ790.roa (raw, json)
Hash identifier: uBJRyZD5Xb1TfLQPEbndFO9K78FizdiZZVG2wDIBkKQ=
Subject key identifier: 81:B3:12:26:4A:B9:C5:A5:D7:47:45:E2:D7:EE:F8:BC:37:50:EF:DD
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018577221BF7C547898980A79727D557AF77
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gbMSJkq5xaXXR0Xi1-74vDdQ790.roa
Signing time: Tue 03 Jan 2023 10:16:42 +0000
ROA not before: Tue 03 Jan 2023 10:16:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 185.251.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Feb 2023 08:21:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:77:22:1b:f7:c5:47:89:89:80:a7:97:27:d5:57:af:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 3 10:16:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81b312264ab9c5a5d74745e2d7eef8bc3750efdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:98:dc:cf:3e:85:3b:d8:09:ec:3a:33:5c:fe:
96:1a:dc:cd:4a:75:85:da:b6:ef:9d:5b:9e:18:c0:
a4:f5:bc:6e:ff:1f:99:08:00:63:c1:ec:02:46:31:
91:d9:95:bf:34:0b:bf:64:6d:e1:49:7c:ab:4c:25:
9b:48:96:73:e0:b0:9b:fc:44:4d:e6:b9:c5:ed:db:
e7:e7:dd:82:4a:14:5b:25:8f:fd:67:a0:c6:e6:39:
f0:b0:e1:15:15:bd:91:34:d0:92:15:33:4b:08:e1:
fe:67:40:5d:4a:74:92:eb:28:d4:9f:28:26:5e:40:
0d:d5:b2:4b:fd:62:03:69:42:a0:07:4b:e5:e2:32:
40:98:12:8e:63:08:26:d7:31:9a:35:c6:d5:85:2a:
ff:c7:be:f4:94:1d:75:21:b4:60:f6:f1:4d:87:ea:
47:ce:b5:e9:59:ab:e5:f6:b8:6b:66:42:40:69:c2:
95:11:ea:28:c1:d5:9a:c4:71:d9:67:25:d3:6d:13:
3c:9b:9b:35:c7:d8:8f:e9:22:d4:34:e4:8c:3d:23:
41:fe:76:5d:4e:cf:17:78:73:a7:b6:27:2e:fb:92:
6b:7a:b5:c9:c9:0a:ed:7e:25:82:13:e7:0b:e3:cd:
27:a5:d9:f3:b3:91:a5:77:5b:5e:4d:31:92:1b:32:
28:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B3:12:26:4A:B9:C5:A5:D7:47:45:E2:D7:EE:F8:BC:37:50:EF:DD
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gbMSJkq5xaXXR0Xi1-74vDdQ790.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.229.0/24
Signature Algorithm: sha256WithRSAEncryption
45:dc:3e:70:5a:7a:72:58:d5:85:23:1e:33:8e:46:7d:ad:b6:
7a:89:29:e6:77:e0:30:f6:ef:db:6c:c1:00:d7:c4:c8:d1:cb:
cf:2d:13:da:13:41:4c:e7:6d:fe:b9:96:d8:3c:58:ca:e8:60:
8c:20:9c:a6:0a:dd:48:a7:3d:55:d8:64:f3:ea:5a:d3:1e:8c:
ae:27:e9:20:c8:79:d2:cb:bd:0a:27:ef:42:17:72:87:45:22:
4c:e4:bd:e8:39:3b:25:5c:74:55:f3:b1:1d:ba:89:93:80:1d:
77:f1:de:c3:03:dd:fe:2a:cd:25:1a:76:9b:44:fb:33:a4:8f:
4d:67:42:95:ca:cf:80:97:66:3a:8c:2c:d1:d8:30:b9:4c:11:
d2:ad:e1:69:a2:a3:97:fb:45:f0:d8:34:ff:9b:d6:06:a4:0a:
f9:61:b1:e1:c6:57:7e:03:ab:a2:e3:3b:7f:b4:90:aa:4c:db:
dc:b6:0c:e4:e6:c7:cf:1d:d5:86:2a:2a:8f:00:0b:c2:8a:3c:
08:5d:94:a9:00:56:9f:a3:fe:03:7d:cc:32:bc:0f:17:1c:1b:
af:b7:a6:b4:e0:57:db:59:62:be:f4:d2:2a:ac:b7:29:b3:ee:
df:f0:5b:fb:e1:95:05:9e:dd:19:f2:ab:53:2b:10:bb:1e:1c:
bd:6a:74:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org