Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d994dd-de52-4612-b0fe-14987243ac56/1/GMaSpeU9v8BW3c5CrGZb0006HaI.roa
File: GMaSpeU9v8BW3c5CrGZb0006HaI.roa (raw, json)
Hash identifier: NhGlTblaCfmzOFf2TPpQphqdjZIorE1rTAn1WnQHFHo=
Subject key identifier: 18:C6:92:A5:E5:3D:BF:C0:56:DD:CE:42:AC:66:5B:D3:4D:3A:1D:A2
Certificate issuer: /CN=4d21cb9b2f8c5de9daa30889d9e2394537ba3e38
Certificate serial: 01856E2681507E63B8D043818B2285BE2460
Authority key identifier: 4D:21:CB:9B:2F:8C:5D:E9:DA:A3:08:89:D9:E2:39:45:37:BA:3E:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSHLmy-MXenaowiJ2eI5RTe6Pjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d994dd-de52-4612-b0fe-14987243ac56/1/GMaSpeU9v8BW3c5CrGZb0006HaI.roa
Signing time: Sun 01 Jan 2023 16:24:55 +0000
ROA not before: Sun 01 Jan 2023 16:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57119
IP address blocks: 185.175.148.0/22 maxlen: 22
2a0b:fd00::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:81:50:7e:63:b8:d0:43:81:8b:22:85:be:24:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d21cb9b2f8c5de9daa30889d9e2394537ba3e38
Validity
Not Before: Jan 1 16:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18c692a5e53dbfc056ddce42ac665bd34d3a1da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f7:fd:61:8f:b1:72:63:8b:30:47:aa:28:89:
13:5e:68:f0:a0:cf:1b:44:7a:dd:f8:e3:5e:9e:26:
77:73:89:33:a4:b1:7b:e6:22:c8:17:fb:9b:48:8e:
19:e5:51:33:17:30:e7:23:57:e9:31:a9:53:87:b3:
7e:b6:96:17:e2:cd:a3:d7:9f:59:a3:fe:ff:7b:99:
93:25:85:16:07:12:af:7a:a7:97:5e:d7:9d:94:77:
46:74:3a:92:f3:e2:71:6f:5d:1b:e0:03:c1:8d:95:
72:91:8b:29:dc:6f:ab:32:2e:63:41:a1:b4:98:fc:
6e:7c:63:2c:93:46:df:a0:59:7e:33:86:bd:3c:ff:
2d:23:15:10:a8:63:39:a1:46:0e:1e:9b:75:37:ac:
18:e4:6d:d1:90:55:d8:81:36:df:5e:01:23:74:57:
db:ae:d8:eb:05:ba:f8:27:14:97:4d:ea:3f:ba:33:
0c:83:36:41:2d:d1:28:f8:7e:02:46:c5:8a:90:5a:
d9:da:0e:20:2a:ca:8e:b3:da:46:56:c0:8b:cf:e7:
cc:49:36:d5:13:0a:4c:ad:08:bf:12:a1:47:30:0c:
39:0a:ca:06:6d:81:7d:3e:1b:d0:5b:ea:31:8a:75:
76:49:ef:9b:12:4a:2a:f2:eb:37:e7:4c:14:72:e1:
a3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C6:92:A5:E5:3D:BF:C0:56:DD:CE:42:AC:66:5B:D3:4D:3A:1D:A2
X509v3 Authority Key Identifier:
keyid:4D:21:CB:9B:2F:8C:5D:E9:DA:A3:08:89:D9:E2:39:45:37:BA:3E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSHLmy-MXenaowiJ2eI5RTe6Pjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d994dd-de52-4612-b0fe-14987243ac56/1/GMaSpeU9v8BW3c5CrGZb0006HaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d994dd-de52-4612-b0fe-14987243ac56/1/TSHLmy-MXenaowiJ2eI5RTe6Pjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.148.0/22
IPv6:
2a0b:fd00::/32
Signature Algorithm: sha256WithRSAEncryption
10:6b:84:e6:dc:f0:53:81:6a:ae:04:9e:67:06:6f:60:34:b5:
07:10:1a:be:5e:c3:cf:4a:d6:3c:10:69:11:4b:6b:d9:0b:7d:
c3:bd:0c:23:34:c3:e8:0a:a4:19:83:23:fa:44:09:2d:94:61:
23:2a:5b:7b:64:61:a6:61:a7:f6:c0:dc:7a:1f:9a:4d:2e:5b:
af:b3:2c:f7:85:18:f9:f5:3c:65:cd:fc:df:5b:5e:2e:a7:1f:
ce:aa:31:5e:74:92:da:e9:07:1f:fd:39:9b:1d:05:1a:95:df:
a5:b6:df:7b:04:d4:fd:66:43:8c:34:a3:1a:19:de:32:4c:a8:
c2:84:93:77:a5:42:dc:7c:db:c8:bd:dd:2b:4c:90:06:a8:40:
cf:77:43:c9:0d:29:cd:9f:c7:86:a0:9c:5d:ea:73:31:51:30:
8e:8c:f0:60:96:e1:72:34:37:d4:b0:63:15:9d:fb:87:f4:fd:
fb:ca:46:47:89:34:2d:9b:21:2b:b3:b7:49:eb:23:b4:b8:5c:
26:46:9e:40:8f:38:18:80:91:c3:52:08:af:24:ed:85:a5:3c:
57:8d:6b:0f:e5:73:8d:84:0e:d1:63:bf:e6:67:33:f2:db:58:
62:02:e8:99:2f:55:d1:c0:fb:72:5a:18:04:a3:39:40:c1:3f:
ca:22:69:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:29 2024 by rpki-client on console-ams.rpki-client.org