Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/gINvGmcVrvLjh4s0BX5NGI2gGsI.roa
File: gINvGmcVrvLjh4s0BX5NGI2gGsI.roa (raw, json)
Hash identifier: q0Nx0V9wYxt1KYqbB1i/7zeFoJfAIXYG1S7XWKCYf14=
Subject key identifier: 80:83:6F:1A:67:15:AE:F2:E3:87:8B:34:05:7E:4D:18:8D:A0:1A:C2
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 018B2FB77BF5852AAE7AAE996EAAED29983F
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/gINvGmcVrvLjh4s0BX5NGI2gGsI.roa
Signing time: Sat 14 Oct 2023 19:43:55 +0000
ROA not before: Sat 14 Oct 2023 19:43:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 185.155.234.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 22 Oct 2023 22:15:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2f:b7:7b:f5:85:2a:ae:7a:ae:99:6e:aa:ed:29:98:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Oct 14 19:43:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80836f1a6715aef2e3878b34057e4d188da01ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:68:84:94:21:1b:ac:74:ab:b3:fe:ca:99:2c:
60:64:1d:46:37:a9:5d:c5:d5:17:1a:b8:c1:fd:e7:
6e:ac:89:14:20:38:bf:10:4d:1a:23:d7:e7:69:5e:
56:b4:5f:93:22:39:69:e9:3b:62:b6:a3:c5:1c:c5:
77:a9:c3:b8:52:59:d3:7b:57:31:d2:1f:da:a2:e1:
ae:d2:93:cc:c7:0f:49:cc:77:aa:a5:ca:89:94:e7:
49:d7:53:3f:b0:ed:9c:99:6b:3a:fa:cd:45:ed:17:
90:25:34:79:72:d2:1f:24:38:5f:c7:3f:45:dc:e6:
07:c9:19:59:aa:42:2a:5a:e0:84:83:af:4c:ae:e9:
a4:5a:8d:7f:e1:8a:35:d4:2f:c1:c7:0b:37:e9:b7:
72:d8:0e:06:f7:2c:8b:ad:28:e6:53:86:36:10:f2:
5f:b4:fd:43:d4:13:6a:de:25:f2:29:b0:8d:80:4b:
5f:ba:be:03:51:07:3b:1b:16:a9:01:a9:e0:1a:94:
2f:c0:77:12:ea:30:a3:82:8e:e6:a3:35:99:ef:9d:
c3:16:09:ba:bf:9c:c0:d1:e1:86:42:8f:a6:fe:06:
d3:c7:c5:b6:38:9c:33:cc:83:cd:9f:c2:5b:99:a5:
88:da:92:e1:94:ed:9b:c8:ae:e0:d9:36:a5:e0:9d:
e5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:83:6F:1A:67:15:AE:F2:E3:87:8B:34:05:7E:4D:18:8D:A0:1A:C2
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/gINvGmcVrvLjh4s0BX5NGI2gGsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.234.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:34:e2:5d:84:e8:73:6d:96:42:f0:fb:cd:31:c7:6b:5f:9b:
94:db:b5:f6:84:65:eb:8e:93:e1:9d:85:4b:6b:77:63:99:d8:
cf:07:0b:bc:a5:69:ec:cb:61:b1:56:9f:50:27:58:e0:11:bc:
b4:5f:92:14:28:eb:cb:ef:97:a9:e4:06:cd:79:ab:8a:1c:49:
59:14:66:c9:bb:2a:72:0a:9e:27:a3:e4:30:28:7f:b8:4f:d7:
08:66:dd:07:22:fb:c0:87:27:57:4b:3c:e3:2f:b3:95:39:ab:
4b:fb:f8:cb:b5:aa:7e:cc:98:c0:a2:10:67:d7:aa:1b:ed:51:
cc:c6:67:fd:17:c6:3f:ec:3e:10:9f:b9:b4:f7:18:ce:2a:36:
21:49:16:bf:2e:99:df:a2:fa:a9:45:9e:5e:14:e4:2b:8c:70:
d1:48:7d:a7:74:de:7e:7b:33:9a:f1:c1:ed:fd:88:10:a4:47:
77:f7:16:65:84:fd:37:b2:e9:07:fa:17:7b:2c:72:3a:fe:12:
33:b4:b9:10:d3:43:69:25:5d:00:a2:5d:13:ca:62:41:ec:39:
48:eb:77:89:ab:f7:44:d8:68:06:cb:af:04:57:de:49:a9:7b:
59:e3:8d:73:70:77:fa:94:31:8f:70:b9:56:94:38:09:35:b6:
6e:16:ee:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:51 2024 by rpki-client on console-fra.rpki-client.org