Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/gv41iXk6WpAlpPNlfA9HXq74Nas.roa
File: gv41iXk6WpAlpPNlfA9HXq74Nas.roa (raw, json)
Hash identifier: 7aXqAIPmliExAZHrUK2PJ0LDKG2uHl1gTqI3Fz/356E=
Subject key identifier: 82:FE:35:89:79:3A:5A:90:25:A4:F3:65:7C:0F:47:5E:AE:F8:35:AB
Certificate issuer: /CN=5dd23c7ac6e682fbc53be1a0e9318f6ccae7193d
Certificate serial: 018B95D3EDCA9E07FB94B231F89771A5541B
Authority key identifier: 5D:D2:3C:7A:C6:E6:82:FB:C5:3B:E1:A0:E9:31:8F:6C:CA:E7:19:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdI8esbmgvvFO-Gg6TGPbMrnGT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/gv41iXk6WpAlpPNlfA9HXq74Nas.roa
Signing time: Fri 03 Nov 2023 15:36:16 +0000
ROA not before: Fri 03 Nov 2023 15:36:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216313
IP address blocks: 185.129.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:95:d3:ed:ca:9e:07:fb:94:b2:31:f8:97:71:a5:54:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd23c7ac6e682fbc53be1a0e9318f6ccae7193d
Validity
Not Before: Nov 3 15:36:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82fe3589793a5a9025a4f3657c0f475eaef835ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:86:d2:eb:56:d7:ca:8b:ce:bb:85:0a:a6:ab:
e2:fb:af:7e:b6:0f:9b:6f:aa:2d:e8:92:4f:e0:50:
df:21:81:ba:7d:ae:40:c3:f0:4c:0f:94:f1:92:f8:
89:94:b5:b0:38:76:12:31:f2:3d:4b:5c:49:a7:8c:
b9:a5:a9:63:09:3c:41:56:11:25:d1:fc:9f:5a:33:
7f:29:19:1a:c1:41:da:73:60:96:a0:9b:89:92:fd:
d6:c4:89:b6:2f:33:22:c8:53:b6:df:3b:9d:d4:cf:
55:3c:31:dc:75:d3:af:a9:16:df:fa:1d:b9:f9:08:
cb:94:03:a9:33:4a:90:18:b0:7e:37:a0:5f:01:fa:
d8:45:0d:03:f5:f5:67:83:87:fe:ee:fe:9b:09:45:
ec:ef:57:99:b2:c4:f9:04:f4:7e:47:66:3b:6a:34:
14:2f:ff:f9:fd:a3:28:92:fa:33:bb:3a:41:d5:83:
93:9e:50:0d:3b:20:1a:29:ed:e1:b6:6f:47:f5:24:
f0:9a:4e:4e:a5:b2:1f:b9:f5:3a:2f:b2:6f:9f:e4:
5f:3e:1c:3b:c7:c1:36:c5:c1:03:56:67:b6:18:fd:
a2:2b:39:73:0d:8b:d9:2c:68:20:b7:14:09:cf:b7:
9e:33:79:79:97:6f:17:c9:39:b2:8d:ba:d8:02:40:
c4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FE:35:89:79:3A:5A:90:25:A4:F3:65:7C:0F:47:5E:AE:F8:35:AB
X509v3 Authority Key Identifier:
keyid:5D:D2:3C:7A:C6:E6:82:FB:C5:3B:E1:A0:E9:31:8F:6C:CA:E7:19:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdI8esbmgvvFO-Gg6TGPbMrnGT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/gv41iXk6WpAlpPNlfA9HXq74Nas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/XdI8esbmgvvFO-Gg6TGPbMrnGT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.60.0/24
Signature Algorithm: sha256WithRSAEncryption
73:91:e9:1a:aa:5c:5e:82:ad:10:0a:38:ed:ed:34:6b:09:33:
bd:ec:0c:66:44:ac:43:5f:34:40:db:d3:ef:11:97:75:13:4b:
b2:75:c5:91:09:c8:ab:3e:d9:8b:58:85:ca:c7:cd:3a:b3:a1:
14:b5:c3:45:f7:a3:49:c5:ff:eb:39:94:75:1b:2e:ac:3c:ff:
35:98:36:15:d3:ce:eb:96:c4:1e:6c:e2:03:43:cf:44:11:2b:
13:ce:89:0b:f5:f2:d1:56:ac:f4:a7:81:98:0d:48:1a:04:5c:
f9:6f:39:04:c7:7a:6a:b0:37:96:aa:05:c6:48:e8:23:74:7b:
3e:30:66:de:1b:71:87:e9:38:af:70:62:9b:8e:05:e2:91:38:
d9:9d:d4:59:e9:b7:9b:82:16:64:11:6d:c5:e2:7e:63:db:81:
d0:8b:35:15:03:bb:50:6e:8a:93:b1:d3:ff:1b:c9:7e:6b:4c:
94:d1:fb:bc:79:ce:6a:08:cf:77:1a:45:b4:2b:12:c8:31:e2:
21:5d:a5:24:97:c3:e6:76:25:cd:67:42:11:3d:8b:2d:79:44:
d0:93:7c:86:09:56:7c:7d:ec:c4:50:7d:b2:a3:0e:8c:79:1b:
d1:95:d9:6e:66:4c:3b:c7:89:48:d9:88:62:ba:41:58:31:39:
9f:74:03:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:31 2024 by rpki-client on console-ams.rpki-client.org