Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/CGN3ZGjcQ4eeGD0l_8a6zgoCRSo.roa
File: CGN3ZGjcQ4eeGD0l_8a6zgoCRSo.roa (raw, json)
Hash identifier: vUcE59TvgAf0aIXFk44m9+ZMSLUolgBqDokPqo8FJyE=
Subject key identifier: 08:63:77:64:68:DC:43:87:9E:18:3D:25:FF:C6:BA:CE:0A:02:45:2A
Certificate issuer: /CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Certificate serial: 01856FF97A8428C92CC55E702C3FFE976D53
Authority key identifier: 2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/CGN3ZGjcQ4eeGD0l_8a6zgoCRSo.roa
Signing time: Mon 02 Jan 2023 00:54:58 +0000
ROA not before: Mon 02 Jan 2023 00:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211735
IP address blocks: 185.242.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:7a:84:28:c9:2c:c5:5e:70:2c:3f:fe:97:6d:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Validity
Not Before: Jan 2 00:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0863776468dc43879e183d25ffc6bace0a02452a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:cc:31:41:ad:ec:3b:48:af:a1:b1:0f:64:
cf:47:17:7a:8d:58:08:50:81:14:c1:ab:00:c9:7c:
4c:54:35:5e:6d:9b:5c:51:74:8f:66:36:7c:ba:a8:
0d:dd:de:8f:37:84:fb:c2:39:7f:1a:1f:ba:f6:2f:
e1:8f:3d:03:86:2d:00:08:b5:d2:ce:c4:ec:52:a0:
5a:18:94:d4:e0:4c:d7:f0:4d:25:f8:be:eb:8b:91:
81:48:09:a8:d8:07:cc:0e:7a:3b:3f:b1:5f:6f:0c:
03:a9:a2:50:cc:ab:f0:65:70:ad:8a:57:ca:3e:88:
b8:ad:46:2b:c9:3f:7c:84:92:44:2c:76:df:ab:d0:
26:de:b4:69:8b:55:44:33:b4:5d:4d:00:61:10:3c:
9f:84:9b:0e:7f:33:d9:11:4a:ce:55:27:52:38:a3:
2a:6b:b6:fd:a7:e4:4a:d5:70:b3:cd:2f:96:de:a3:
ab:8e:58:ea:60:cb:3b:fe:c0:b8:6d:4e:fe:4c:ea:
15:9c:56:21:b9:22:6b:be:f6:61:d5:68:aa:39:93:
54:16:14:a4:20:fa:22:8e:69:02:82:02:f7:76:ff:
83:47:9c:ca:c6:43:ac:e0:e4:1b:24:fb:f2:1e:cc:
8b:3d:84:96:a7:88:d4:2d:a8:41:bd:2c:a0:1d:7b:
ab:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:63:77:64:68:DC:43:87:9E:18:3D:25:FF:C6:BA:CE:0A:02:45:2A
X509v3 Authority Key Identifier:
keyid:2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/CGN3ZGjcQ4eeGD0l_8a6zgoCRSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.176.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:59:b0:b0:d9:00:8c:00:a3:65:1a:f3:44:68:8c:e3:d7:b0:
e7:3d:6a:3d:9d:11:ac:cc:78:90:0b:f6:1c:f2:5a:65:cb:43:
67:b5:bc:51:83:f7:c6:ec:e0:4c:57:87:72:e8:f9:24:4d:4c:
f3:c4:8b:d1:8b:ab:d9:f1:a5:fb:08:f7:2b:8e:76:06:53:ba:
86:85:c0:07:da:72:99:8e:0f:fa:a7:2e:e8:fb:0a:27:25:e8:
b5:a7:d6:33:3d:0c:78:e0:47:51:e7:6f:af:dd:b7:7f:68:55:
72:0f:b6:cb:11:4e:8a:5f:52:ee:61:eb:d2:bf:84:55:f2:0d:
ad:87:38:f5:1d:0a:24:56:38:8b:e9:fb:73:e3:db:bd:5d:59:
01:01:c1:3a:0d:87:74:67:2f:6b:e3:7f:b8:da:7b:ba:50:0e:
5a:f4:dd:81:f3:bc:23:c4:5b:b0:ec:88:ee:39:72:c1:4b:31:
df:80:96:5c:88:99:07:97:f8:ba:b8:20:dd:3d:a8:ca:64:c6:
27:75:ae:bb:43:ef:bb:85:8a:92:60:4b:a3:24:87:52:96:88:
92:85:3b:64:50:41:40:a2:4c:9f:6a:3d:98:65:92:95:4e:69:
0b:f6:da:ae:83:e7:50:c3:0c:7f:62:ca:88:38:b2:0c:24:f8:
9a:ac:89:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:19 2024 by rpki-client on console-fra.rpki-client.org