Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/gmr3O-YwoQlHQtxhchBAwC-s1zE.roa
File: gmr3O-YwoQlHQtxhchBAwC-s1zE.roa (raw, json)
Hash identifier: 7IT88kz5g14xrTL7V2fuoh0FzPDcABzxTbmkNxey3HY=
Subject key identifier: 82:6A:F7:3B:E6:30:A1:09:47:42:DC:61:72:10:40:C0:2F:AC:D7:31
Certificate issuer: /CN=86ee201c65d655ee9cfe251f951ea91bba154567
Certificate serial: 018C5F1C6906E47C7D7AC85D741CD2D00C66
Authority key identifier: 86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/gmr3O-YwoQlHQtxhchBAwC-s1zE.roa
Signing time: Tue 12 Dec 2023 17:39:06 +0000
ROA not before: Tue 12 Dec 2023 17:39:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43054
IP address blocks: 185.225.27.0/24 maxlen: 24
193.41.32.0/24 maxlen: 24
193.200.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5f:1c:69:06:e4:7c:7d:7a:c8:5d:74:1c:d2:d0:0c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86ee201c65d655ee9cfe251f951ea91bba154567
Validity
Not Before: Dec 12 17:39:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=826af73be630a1094742dc61721040c02facd731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:1c:ff:f3:0a:b4:ef:dd:18:b1:0f:25:df:5e:
da:2b:6d:e4:36:7f:3e:05:4b:69:3e:97:77:87:09:
1f:2f:fd:33:d6:67:39:a7:eb:e4:5d:b8:30:89:d1:
c1:d8:08:71:ef:3d:bf:d9:b3:98:66:f5:04:44:67:
f6:fb:eb:ec:18:c3:d2:a5:d5:72:bc:20:5e:dd:e5:
19:a6:d7:86:29:8e:ab:00:fd:5d:66:b1:83:35:21:
2e:0c:c2:ac:aa:c1:0d:dd:bf:f1:5a:c1:5b:73:a8:
7a:25:24:60:be:10:34:d7:27:f1:44:e3:f8:55:9e:
5f:71:68:3b:fa:0e:1d:5b:1f:68:a2:8a:30:e6:4c:
00:3d:73:2e:e3:88:fb:c2:51:64:24:03:da:c9:44:
3c:f3:3e:ab:9e:6a:92:86:7c:84:cc:2f:b4:1d:6b:
73:00:18:75:64:00:02:19:3e:24:79:91:60:67:cd:
34:15:41:13:57:21:e6:d1:c0:b1:ec:3a:c8:6c:3c:
05:1c:b4:6f:70:13:cb:d8:35:6a:0d:e3:ff:1b:b0:
3b:de:1a:08:38:3c:8c:35:c2:10:da:aa:15:82:93:
6b:c6:83:d3:68:9c:ca:3b:45:37:f7:d7:28:22:c3:
af:ec:5a:69:01:08:2f:ae:91:e2:e9:3b:71:48:be:
8c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:6A:F7:3B:E6:30:A1:09:47:42:DC:61:72:10:40:C0:2F:AC:D7:31
X509v3 Authority Key Identifier:
keyid:86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/gmr3O-YwoQlHQtxhchBAwC-s1zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.27.0/24
193.41.32.0/24
193.200.214.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b1:32:31:e7:cf:ea:d2:d6:5c:33:4e:0a:95:80:80:8b:86:
3e:49:8d:11:8c:66:7d:00:97:17:2c:42:59:1d:89:72:09:8c:
62:0d:8f:62:7d:b5:a7:4a:d5:2f:ce:45:ed:38:25:d8:61:c8:
d8:d3:bc:08:3c:1e:3b:e3:9d:f1:c7:a5:27:65:b1:28:a6:f7:
f5:c5:20:27:5e:4b:82:1b:6e:94:16:d2:15:14:c4:e9:d1:4e:
1d:62:3a:08:be:44:67:70:6b:c5:28:ee:4f:18:2f:5d:cb:06:
6c:d3:90:ad:23:96:a0:dc:f0:1c:a1:ea:23:bc:fc:7f:de:78:
49:d5:04:b3:3e:cc:6d:f5:0c:55:b2:68:f3:e6:00:ce:2a:13:
32:39:57:71:dc:89:a6:bb:93:27:3e:8b:6e:53:e0:5e:8e:51:
89:a4:45:f9:8e:28:34:c4:97:d5:9f:58:2d:37:3f:22:92:55:
46:eb:96:d9:06:a5:ed:da:dc:bb:cd:3a:09:7f:96:c9:d3:24:
d4:48:69:98:99:40:03:aa:f2:14:04:cd:cf:fd:c1:9a:a2:7f:
fb:67:23:62:17:15:c3:dd:a7:dc:02:d5:bb:38:8e:97:69:4e:
2d:5c:97:23:12:33:2d:a5:68:88:eb:37:d5:8d:09:cd:09:ec:
a4:5e:b6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:18 2024 by rpki-client on console-fra.rpki-client.org