Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/guGxrAfBKbxG7TYUzgYmA15lYWg.roa
File: guGxrAfBKbxG7TYUzgYmA15lYWg.roa (raw, json)
Hash identifier: wqUyjGsdrCPY0sMHng6D80hEmJ1Duo/75r03rf6KzsY=
Subject key identifier: 82:E1:B1:AC:07:C1:29:BC:46:ED:36:14:CE:06:26:03:5E:65:61:68
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189442AEFDFFF03E4B9FFFEF8D4DD45EA2F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/guGxrAfBKbxG7TYUzgYmA15lYWg.roa
Signing time: Tue 11 Jul 2023 08:56:51 +0000
ROA not before: Tue 11 Jul 2023 08:56:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209043
IP address blocks: 185.209.38.0/24 maxlen: 24
45.90.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 08:45:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:2a:ef:df:ff:03:e4:b9:ff:fe:f8:d4:dd:45:ea:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 11 08:56:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82e1b1ac07c129bc46ed3614ce0626035e656168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:67:20:18:85:54:d3:84:a0:28:2c:2f:e0:8b:
9f:cf:96:98:61:ff:2c:36:a3:13:25:bf:97:68:d8:
2a:82:f6:db:6d:9b:03:e5:94:60:be:9c:e1:0a:3d:
68:9c:d6:95:40:a3:0b:c0:c0:f3:6f:3d:20:6c:98:
f1:0e:7f:d3:71:8e:96:10:64:f8:d3:c9:ec:36:e9:
f2:6c:4d:13:52:45:3a:85:91:07:24:37:a0:34:15:
73:07:4e:21:7d:80:67:97:f6:b1:c6:de:10:d8:a0:
d3:4a:a0:f6:fe:fb:5f:c2:da:2f:dc:6f:bb:74:87:
47:2d:80:9d:5a:1c:79:a9:9f:37:6a:09:46:92:e0:
06:2d:01:52:c7:d8:79:f3:18:b1:30:80:3e:68:52:
b0:79:6b:00:aa:1e:55:6f:2e:c9:49:dd:fa:44:16:
7f:4b:3f:f8:5e:c8:7f:d1:33:bc:5c:de:e5:2c:cc:
37:74:6a:30:6f:b4:17:00:aa:df:6e:0d:a5:cc:a1:
f1:80:6c:c3:87:13:fa:44:08:e5:96:4d:fb:7f:e1:
60:c6:88:95:b6:93:08:67:38:7c:e9:e6:38:f9:36:
05:5b:29:f1:63:6c:38:9d:c6:10:5f:a5:7f:5d:fb:
99:fb:b2:17:03:3a:48:73:eb:f7:25:8b:5e:98:12:
05:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E1:B1:AC:07:C1:29:BC:46:ED:36:14:CE:06:26:03:5E:65:61:68
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/guGxrAfBKbxG7TYUzgYmA15lYWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.16.0/24
185.209.38.0/24
Signature Algorithm: sha256WithRSAEncryption
82:68:e0:3e:66:8f:f4:a5:85:cf:c7:a2:50:bb:4a:dd:d6:11:
4a:ed:a3:5b:4f:30:48:f6:ca:ae:46:e1:9b:8a:fb:f1:df:c3:
88:d5:ad:c8:db:2d:7b:4c:90:e7:7f:cd:1c:01:94:c0:82:0b:
99:8c:b8:2e:79:34:2c:43:13:6d:ef:ef:c2:f8:59:0d:be:96:
6c:44:75:16:29:bc:30:ab:79:e3:0d:43:cc:ce:14:ea:33:29:
bd:8e:c0:88:67:e6:f6:ac:d7:1c:78:b6:d3:8f:9a:d0:05:df:
b6:d4:30:f0:2e:bc:b6:94:93:a8:6d:c4:41:25:19:cf:3f:12:
22:57:f6:80:39:00:45:88:e8:cb:9e:4c:67:a6:5f:f3:26:87:
87:9c:76:97:8a:5a:02:4d:85:17:ea:0e:7f:a0:d2:bd:83:c6:
7c:db:ce:71:3b:ec:63:0d:f1:80:19:df:4e:48:66:7c:81:51:
64:4f:87:ef:29:c2:4e:02:80:d2:9f:c6:d5:84:2f:d3:8e:28:
8d:eb:ed:45:03:c9:51:3c:b1:4b:64:ce:7c:02:c4:21:77:e8:
ad:ac:d7:42:1f:4e:c5:58:d8:62:b9:9b:bb:a4:72:0b:9d:9f:
b2:ad:a1:a8:1c:15:89:8e:f9:4f:d5:0d:13:70:79:cf:55:69:
da:b2:31:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org