Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/g6206-fIBYUSPmmnPVmvVXlAxDo.roa
File: g6206-fIBYUSPmmnPVmvVXlAxDo.roa (raw, json)
Hash identifier: Zv059wT2CDBR95frQ1wPP8xUKtRGG3O6BQHGQXtTdUY=
Subject key identifier: 83:AD:B4:EB:E7:C8:05:85:12:3E:69:A7:3D:59:AF:55:79:40:C4:3A
Certificate issuer: /CN=af73ff1ec55f49296dd734039fa0284cc400eb26
Certificate serial: 018CC348A2A827939DDF00CCE8B8CA3FB005
Authority key identifier: AF:73:FF:1E:C5:5F:49:29:6D:D7:34:03:9F:A0:28:4C:C4:00:EB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3P_HsVfSSlt1zQDn6AoTMQA6yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/g6206-fIBYUSPmmnPVmvVXlAxDo.roa
Signing time: Mon 01 Jan 2024 04:29:26 +0000
ROA not before: Mon 01 Jan 2024 04:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24864
IP address blocks: 193.110.28.0/22 maxlen: 24
217.13.176.0/20 maxlen: 24
89.188.64.0/21 maxlen: 24
185.159.56.0/22 maxlen: 24
195.234.157.0/24 maxlen: 24
2a02:7c8::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 16 May 2024 12:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:a2:a8:27:93:9d:df:00:cc:e8:b8:ca:3f:b0:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af73ff1ec55f49296dd734039fa0284cc400eb26
Validity
Not Before: Jan 1 04:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83adb4ebe7c80585123e69a73d59af557940c43a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:63:86:91:ae:d0:99:70:da:92:24:33:af:8e:
0c:15:36:79:c0:24:7d:f1:53:08:86:f4:94:22:38:
75:04:61:3d:86:da:41:c9:57:f1:15:4e:81:6f:58:
31:61:8c:b4:3b:eb:0e:64:87:8f:ea:ba:3d:e1:23:
2a:a6:11:4b:82:02:c1:5d:91:0b:11:f5:75:a0:ce:
c6:1f:05:05:61:86:28:2f:ff:c6:1a:6b:8f:20:c4:
40:3b:30:0b:d1:6d:42:d5:0f:17:e9:b1:ac:8f:1e:
e1:9a:82:41:5b:fb:07:89:da:ef:8a:fc:39:6d:be:
fc:9f:13:2c:b3:db:ed:a3:b6:8e:b8:ef:c9:29:d9:
85:d2:f2:7b:f6:77:17:87:5f:a3:1c:41:8b:87:cb:
a9:d1:33:29:bb:b3:4b:3e:2b:ea:7f:2e:8e:be:84:
4d:76:38:a6:e9:07:28:d0:fa:f5:8e:e7:3c:30:32:
4e:c8:12:8f:7b:b2:ed:fd:7a:f1:de:b9:66:88:f9:
75:7a:55:ab:6e:d3:16:7b:bc:76:4a:9b:61:30:69:
4a:93:f5:d8:ef:77:57:fa:d2:17:5c:91:4a:89:c4:
fa:b2:d4:a9:ad:04:c4:31:19:ab:4b:ca:fa:df:1d:
b0:7a:d2:3e:72:39:ce:67:cf:b0:c1:f8:75:6a:a7:
b4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AD:B4:EB:E7:C8:05:85:12:3E:69:A7:3D:59:AF:55:79:40:C4:3A
X509v3 Authority Key Identifier:
keyid:AF:73:FF:1E:C5:5F:49:29:6D:D7:34:03:9F:A0:28:4C:C4:00:EB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3P_HsVfSSlt1zQDn6AoTMQA6yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/g6206-fIBYUSPmmnPVmvVXlAxDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/r3P_HsVfSSlt1zQDn6AoTMQA6yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.188.64.0/21
185.159.56.0/22
193.110.28.0/22
195.234.157.0/24
217.13.176.0/20
IPv6:
2a02:7c8::/32
Signature Algorithm: sha256WithRSAEncryption
1c:91:b0:63:58:4b:51:0b:89:14:fb:a8:99:8c:df:e5:7e:55:
05:36:e4:f6:b8:82:bd:7f:41:d8:11:36:f2:10:dd:b7:29:51:
82:4f:f3:7e:19:f5:78:64:fe:7e:37:9d:1c:66:d6:2a:df:3d:
c5:94:65:af:2a:3a:25:af:ae:6a:1b:84:1b:14:28:91:77:ff:
48:51:af:34:25:c1:eb:5a:fe:3a:99:ff:08:97:56:35:c8:19:
ee:49:d0:26:f4:63:f8:f4:db:db:a9:37:ea:58:70:78:51:66:
e8:d8:2d:c6:03:d6:7e:a8:35:42:4b:af:91:b6:cc:14:f0:65:
8d:1f:e5:9d:8c:25:bd:69:02:76:c1:50:d8:62:8e:8b:06:d6:
2f:c0:1f:d7:e7:3f:08:52:fc:6f:00:a1:68:ab:ff:0a:f5:ab:
ac:2e:0b:c1:b5:a2:36:f0:3d:d4:5c:59:ef:dd:9d:62:2c:0e:
72:3d:32:a1:f5:56:9c:56:4a:9c:7d:0b:4c:4e:87:fe:f6:35:
67:8c:6e:3f:12:b1:42:c8:57:f8:05:f3:29:6f:92:37:64:5a:
28:bb:0c:9d:2f:92:4c:5f:02:5e:83:a6:09:ab:1f:f2:26:94:
d2:c5:ce:7b:f5:e9:ee:00:63:21:9a:ca:d7:b0:11:4a:5f:06:
4a:eb:b0:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 18:59:46 2024 by rpki-client on console.sobornost.net