Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/G9hQUQU31tMV8lBbo0pnGfUHzVA.roa
File: G9hQUQU31tMV8lBbo0pnGfUHzVA.roa (raw, json)
Hash identifier: KUOLFHQHmru+XB86NQI13yDB689DJK632D48rHTgaRM=
Subject key identifier: 1B:D8:50:51:05:37:D6:D3:15:F2:50:5B:A3:4A:67:19:F5:07:CD:50
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 018570FBAC4F344DB0B6ADB79D2034EACF30
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/G9hQUQU31tMV8lBbo0pnGfUHzVA.roa
Signing time: Mon 02 Jan 2023 05:36:59 +0000
ROA not before: Mon 02 Jan 2023 05:36:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202085
IP address blocks: 185.160.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:ac:4f:34:4d:b0:b6:ad:b7:9d:20:34:ea:cf:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Jan 2 05:36:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bd850510537d6d315f2505ba34a6719f507cd50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1a:af:54:df:36:47:65:52:ee:cc:1c:60:37:
7c:15:22:28:28:7f:9c:19:29:b4:c9:61:85:c1:32:
0b:3f:c6:91:5a:09:b7:e3:44:bf:dd:2f:94:89:7e:
64:e5:38:c7:93:e4:67:ce:80:d6:03:b3:b3:c7:08:
d8:84:cb:21:96:80:e9:ab:da:71:b4:f0:b5:86:8a:
f2:36:6b:17:09:43:91:be:6e:df:a2:89:55:db:28:
86:c4:99:8b:bc:eb:19:0a:b1:97:d5:cd:92:cd:97:
e1:a1:b8:ad:5c:e8:a2:b0:89:20:cb:5f:01:ce:eb:
10:32:f8:b4:aa:fd:dd:e2:9c:94:11:50:c3:92:1b:
2a:36:01:d5:83:f9:b7:70:a1:3a:57:7c:4f:3c:2d:
17:58:d8:1a:fa:cb:8d:6f:6a:b3:69:85:c9:27:f8:
9b:8b:dd:f1:78:ef:d4:a0:39:07:ab:8b:18:e7:f9:
98:85:e9:f5:50:70:52:d3:fb:d6:d0:4d:ed:2f:22:
31:04:7f:5b:aa:c0:ad:2a:d2:ad:ca:ce:19:30:bf:
f7:02:ca:fa:0b:4a:cd:cd:75:fa:a5:7c:74:ab:f3:
03:a2:45:e8:6c:5d:7d:4a:f2:9c:b2:ba:e5:1b:c1:
a1:4f:70:ac:38:84:88:31:4c:ba:39:56:ef:c7:5b:
d5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D8:50:51:05:37:D6:D3:15:F2:50:5B:A3:4A:67:19:F5:07:CD:50
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/G9hQUQU31tMV8lBbo0pnGfUHzVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.140.0/24
Signature Algorithm: sha256WithRSAEncryption
93:bb:62:25:7f:e9:89:d2:63:12:b5:09:a4:3d:dd:79:6b:1d:
9e:20:e4:60:0f:44:1f:a9:84:d7:f1:86:83:f9:8c:2f:b7:73:
88:24:c6:1b:60:54:4b:79:bc:73:95:f5:43:01:96:89:7f:40:
cc:c3:00:94:1c:b8:95:09:dd:b7:8c:cb:8c:5a:f2:02:ab:48:
7e:47:65:94:1b:66:3d:44:24:38:e1:2a:94:25:79:8f:50:9b:
e9:c1:17:d1:59:35:6d:77:4e:94:e3:7f:42:95:2d:49:ac:6b:
27:77:21:a4:3b:be:80:e6:33:e8:3c:95:d4:ec:ef:8d:cb:51:
14:29:bc:cf:bb:ae:06:d6:71:86:a3:a3:4d:e9:50:63:1a:59:
b8:67:95:95:44:16:53:86:ea:d1:aa:8c:d6:26:d0:1e:7d:ae:
5d:58:7e:ed:e3:11:13:2b:dd:d7:83:37:18:8c:bc:c4:e4:bc:
9a:58:5e:31:39:f5:02:c8:74:28:d4:3c:3c:1d:1d:a7:ea:d2:
8f:3b:27:5a:16:3d:c0:71:7c:a5:ad:62:2b:ce:ec:d1:ac:d9:
a6:55:8d:76:7f:95:15:8a:0c:cd:9c:d5:d7:19:83:13:00:e5:
4f:2a:fb:18:c1:41:48:7a:4d:02:a0:e5:53:a8:2d:86:f2:d9:
86:b8:8e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:39 2024 by rpki-client on console-ams.rpki-client.org