Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/G2rxhvyocJbRaydsjeo4JcuGeMU.roa
File: G2rxhvyocJbRaydsjeo4JcuGeMU.roa (raw, json)
Hash identifier: R3Kz9qk1Jt+biY8EuMThUCTpNYy3NksJOA4SwobB1qU=
Subject key identifier: 1B:6A:F1:86:FC:A8:70:96:D1:6B:27:6C:8D:EA:38:25:CB:86:78:C5
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 0185708CC81EF57DACC2F61F61D045B728C7
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/G2rxhvyocJbRaydsjeo4JcuGeMU.roa
Signing time: Mon 02 Jan 2023 03:35:52 +0000
ROA not before: Mon 02 Jan 2023 03:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39124
IP address blocks: 185.206.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:c8:1e:f5:7d:ac:c2:f6:1f:61:d0:45:b7:28:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Jan 2 03:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b6af186fca87096d16b276c8dea3825cb8678c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:31:92:2d:d5:af:73:dd:f7:e5:60:97:4b:e2:
32:fd:08:0d:25:17:64:55:47:6b:48:8d:e2:39:25:
fb:b5:72:80:66:94:27:92:d5:69:0f:b4:e0:cc:05:
10:07:48:67:90:71:29:85:01:0c:77:25:2b:f6:12:
93:0a:70:56:f3:54:79:c8:aa:a0:b6:89:4b:b0:d6:
28:81:c1:e8:5e:c5:0c:5f:a7:b2:af:e4:b6:37:49:
37:75:07:bd:ec:c5:ca:c0:6a:46:f7:35:6f:8e:ff:
db:40:e0:cc:d4:d4:de:22:2b:88:02:64:70:5c:69:
05:92:0e:5d:43:11:96:6f:c9:11:34:88:90:ef:49:
49:1b:a3:e6:7d:65:8f:35:5e:bd:f6:42:32:ee:35:
26:b8:c8:f4:8d:8d:61:9c:e5:a6:b2:78:d7:7b:01:
72:79:ea:26:dd:67:19:7a:12:0f:83:51:6a:d2:ea:
36:b6:36:e5:28:9a:9c:4d:8c:34:3a:f8:23:1a:f1:
a8:2e:b8:27:2e:1e:00:52:c1:82:94:26:e2:e7:1d:
dd:c7:a8:0a:ab:5b:4e:0d:4c:70:c1:f5:3e:57:b5:
45:8b:65:10:8d:29:c7:43:4b:7e:9b:ca:9a:cb:43:
60:f8:43:55:07:28:78:3d:be:fc:ab:b0:6f:c7:d3:
05:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6A:F1:86:FC:A8:70:96:D1:6B:27:6C:8D:EA:38:25:CB:86:78:C5
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/G2rxhvyocJbRaydsjeo4JcuGeMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.54.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:7c:b5:04:57:0b:d1:df:85:26:74:bf:15:57:dc:3e:de:03:
e4:24:83:05:23:68:ea:3e:9e:cc:82:e2:d4:b6:9f:18:c2:10:
ad:ad:c9:22:0d:58:59:49:df:97:11:e5:82:00:6a:86:10:9b:
ac:f5:c9:d9:2a:9e:e9:cd:56:44:8f:38:b3:e2:ca:8a:12:36:
59:13:ed:0d:cc:93:e8:3e:d0:10:02:76:d8:39:4b:4c:b7:fb:
d8:e0:dc:bb:09:c5:9a:db:7c:62:8c:ca:66:6a:d3:30:93:83:
52:ae:66:15:01:37:97:a2:4a:1f:83:36:d5:87:90:c8:ed:9f:
9c:1e:e4:35:88:2a:42:2c:d0:b9:dd:a4:78:a6:12:50:e1:a3:
95:0b:c6:45:d4:fd:15:2d:ed:18:e8:a9:a9:22:9f:db:63:6e:
3d:27:ae:e2:8e:b5:22:91:15:44:01:5a:45:85:74:8f:e7:c6:
31:76:b0:6d:a0:2a:c4:11:8f:4a:1f:be:37:bc:be:55:3a:eb:
c1:d0:3f:d0:60:07:6a:de:7d:67:15:6e:51:7b:6f:7e:30:1d:
7a:b6:4c:8b:a3:40:78:ef:c6:33:1f:50:82:54:9a:6c:e9:6b:
83:85:4d:33:a5:b1:a5:08:97:d4:8b:81:dd:74:48:83:31:c9:
98:51:16:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:59 2024 by rpki-client on console-ams.rpki-client.org