Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a8f471-c243-4cc6-970d-ff7dc04ba385/1/Gs8R1yZyDHHWuJ701bFreroVTEk.roa
File: Gs8R1yZyDHHWuJ701bFreroVTEk.roa (raw, json)
Hash identifier: MmV/xfntiho1RpeAqgxMx8NyAsb8qfsCPd/GG8v60OA=
Subject key identifier: 1A:CF:11:D7:26:72:0C:71:D6:B8:9E:F4:D5:B1:6B:7A:BA:15:4C:49
Certificate issuer: /CN=80e506fcf1d7cf649d388e975ca26252e219fc7c
Certificate serial: 01856F022660E902E2FB6626034E6BDFBD4C
Authority key identifier: 80:E5:06:FC:F1:D7:CF:64:9D:38:8E:97:5C:A2:62:52:E2:19:FC:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOUG_PHXz2SdOI6XXKJiUuIZ_Hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a8f471-c243-4cc6-970d-ff7dc04ba385/1/Gs8R1yZyDHHWuJ701bFreroVTEk.roa
Signing time: Sun 01 Jan 2023 20:24:49 +0000
ROA not before: Sun 01 Jan 2023 20:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205495
IP address blocks: 185.216.82.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:26:60:e9:02:e2:fb:66:26:03:4e:6b:df:bd:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e506fcf1d7cf649d388e975ca26252e219fc7c
Validity
Not Before: Jan 1 20:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1acf11d726720c71d6b89ef4d5b16b7aba154c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0c:90:44:57:cf:d0:47:6c:d8:83:70:91:f8:
94:be:84:51:e8:29:5a:6c:e9:3b:08:c7:0b:06:33:
47:b5:03:89:02:84:48:de:6f:87:93:c0:f0:5d:e1:
66:69:3d:3b:ff:97:1b:3a:44:7c:c8:6c:f8:4a:1d:
5e:e7:31:5c:e7:28:95:d7:8a:65:e3:85:62:62:02:
14:28:b2:e0:c5:b7:da:bf:de:34:69:bc:52:2a:e3:
57:2a:17:3e:6e:b4:08:98:23:b6:aa:2e:d7:10:92:
92:e4:d5:9b:2f:4e:02:8f:fd:b5:b4:aa:0e:a8:43:
2a:31:70:b4:29:de:27:22:62:98:eb:bd:05:99:8c:
68:a9:69:54:87:e7:d3:0e:a1:3e:f5:e3:e6:f9:b2:
9f:08:1f:b4:5a:a8:1d:9b:0e:39:06:3b:f2:37:49:
d7:c3:95:7d:35:e7:2d:83:1c:7d:86:16:d9:c3:ea:
e1:f4:ba:c0:19:6f:38:dc:ac:e8:b6:57:5b:6f:69:
9a:fa:13:0c:55:a2:2d:01:28:1c:38:71:5d:b1:85:
e5:9c:1a:1f:a1:f9:cc:db:ad:7e:a6:e7:3b:6b:bc:
71:28:42:bc:2b:29:dd:6d:ac:3e:92:c7:65:68:10:
77:9e:62:ea:6d:d9:bd:38:fe:41:60:a4:7c:98:a0:
1c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CF:11:D7:26:72:0C:71:D6:B8:9E:F4:D5:B1:6B:7A:BA:15:4C:49
X509v3 Authority Key Identifier:
keyid:80:E5:06:FC:F1:D7:CF:64:9D:38:8E:97:5C:A2:62:52:E2:19:FC:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOUG_PHXz2SdOI6XXKJiUuIZ_Hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a8f471-c243-4cc6-970d-ff7dc04ba385/1/Gs8R1yZyDHHWuJ701bFreroVTEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a8f471-c243-4cc6-970d-ff7dc04ba385/1/gOUG_PHXz2SdOI6XXKJiUuIZ_Hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.82.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:aa:7f:ba:0f:0a:70:a2:80:3f:3f:6e:b1:b4:23:0a:6d:b6:
11:63:8f:c5:27:82:7b:8e:9b:e9:d3:74:61:04:7a:8a:ef:c5:
f5:01:ec:2e:85:0c:c8:64:e3:df:08:74:e5:92:99:ee:02:52:
18:5f:27:0a:ea:9d:3c:36:b5:ea:f1:fe:74:58:4b:89:94:6a:
14:bd:aa:70:a0:3f:0d:40:b5:4f:fd:26:95:ce:34:c7:45:ca:
d1:c3:1c:8e:0f:52:61:ff:fb:05:29:69:da:ba:21:89:88:e3:
50:e3:35:7d:98:c0:4c:8d:d5:bd:96:c9:9c:e6:ad:f1:b4:f1:
bb:c3:76:2a:73:75:aa:bd:88:24:5a:d2:4a:f3:d3:78:67:f5:
d3:2d:15:61:27:b8:53:24:ff:ae:cf:4b:06:17:13:bb:9a:a1:
12:b0:97:39:d9:51:d1:9e:b9:59:bf:36:6e:3d:00:b7:db:96:
c0:7d:49:6b:b1:a5:3f:a1:0d:86:c3:df:23:21:7e:d1:1f:da:
49:f8:ee:e6:4a:d0:2e:df:3c:9d:b7:65:18:99:e8:d5:88:91:
40:4e:bf:68:8e:58:63:aa:de:3e:41:9d:13:89:15:8d:7b:50:
78:6f:5f:45:24:66:7c:28:35:be:60:aa:80:1a:82:58:d7:f1:
df:40:c8:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:13 2024 by rpki-client on console-ams.rpki-client.org