Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/f01f9a-cdea-4d03-aa8a-85b65bacd4fb/1/GBoIKmgHk5ryKj8AWq7NB6k7bcs.roa
File: GBoIKmgHk5ryKj8AWq7NB6k7bcs.roa (raw, json)
Hash identifier: zdRcpw/ouZNS5tf893gEUqLHyAqx0o6rmT99svhdn80=
Subject key identifier: 18:1A:08:2A:68:07:93:9A:F2:2A:3F:00:5A:AE:CD:07:A9:3B:6D:CB
Certificate issuer: /CN=a76a90e716530f15f7399b7ac3e0d2939a21a210
Certificate serial: 018BA54E54FD1A698DFAFC1A14D2623BFE58
Authority key identifier: A7:6A:90:E7:16:53:0F:15:F7:39:9B:7A:C3:E0:D2:93:9A:21:A2:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2qQ5xZTDxX3OZt6w-DSk5ohohA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/f01f9a-cdea-4d03-aa8a-85b65bacd4fb/1/GBoIKmgHk5ryKj8AWq7NB6k7bcs.roa
Signing time: Mon 06 Nov 2023 15:44:16 +0000
ROA not before: Mon 06 Nov 2023 15:44:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204586
IP address blocks: 185.218.72.0/22 maxlen: 22
185.218.74.0/24 maxlen: 24
185.218.75.0/24 maxlen: 24
185.218.72.0/24 maxlen: 24
185.218.73.0/24 maxlen: 24
2a0b:d440::/29 maxlen: 29
2a0b:d440:72::/48 maxlen: 48
2a0b:d440:73::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:4e:54:fd:1a:69:8d:fa:fc:1a:14:d2:62:3b:fe:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a76a90e716530f15f7399b7ac3e0d2939a21a210
Validity
Not Before: Nov 6 15:44:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=181a082a6807939af22a3f005aaecd07a93b6dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ef:c2:24:40:af:23:9b:57:e6:5b:20:73:58:
88:8e:05:ca:e0:93:dd:87:7b:4a:83:4e:4a:e5:62:
5a:4b:91:01:0b:18:c7:90:9a:73:91:89:0c:e1:d7:
43:40:75:6a:94:6e:70:f1:2a:0c:98:53:d4:2f:3e:
df:5e:63:7b:88:b4:a1:d6:b5:3a:a1:29:c0:b1:5d:
96:32:51:a7:1f:76:ee:7e:1c:6a:25:51:86:30:2d:
dd:c4:40:74:5e:c5:21:02:04:80:c3:ce:2a:b7:bf:
21:6a:57:0f:2c:a1:12:78:9e:07:4b:2c:31:f5:61:
dc:b0:46:b9:bd:04:42:4f:be:6b:2a:6e:b2:80:46:
84:c3:69:bb:70:5c:b1:36:02:fe:97:9a:26:f7:11:
ea:87:a4:8b:77:9c:3f:55:c4:c6:bf:40:5e:02:7e:
66:d7:f1:17:49:fb:ad:c7:d1:23:0f:96:f9:6b:c1:
a0:f4:64:53:75:0c:46:d4:96:35:ec:f6:ca:84:1c:
1c:b4:d4:89:46:ca:b4:99:3b:5b:02:34:ac:64:b7:
2c:8a:8f:b3:ce:33:52:43:ca:4b:95:f6:ec:cf:fa:
f0:56:2c:1b:0e:28:57:cd:10:6c:69:28:38:74:0f:
df:e6:7b:0d:69:ad:e9:c4:be:f9:ed:61:c5:98:92:
80:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1A:08:2A:68:07:93:9A:F2:2A:3F:00:5A:AE:CD:07:A9:3B:6D:CB
X509v3 Authority Key Identifier:
keyid:A7:6A:90:E7:16:53:0F:15:F7:39:9B:7A:C3:E0:D2:93:9A:21:A2:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2qQ5xZTDxX3OZt6w-DSk5ohohA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f01f9a-cdea-4d03-aa8a-85b65bacd4fb/1/GBoIKmgHk5ryKj8AWq7NB6k7bcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f01f9a-cdea-4d03-aa8a-85b65bacd4fb/1/p2qQ5xZTDxX3OZt6w-DSk5ohohA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.72.0/22
IPv6:
2a0b:d440::/29
Signature Algorithm: sha256WithRSAEncryption
22:51:b1:2b:f9:e9:f7:cf:c6:b9:45:d5:18:f5:84:d2:9f:ef:
b4:c7:d0:c0:dc:4d:21:84:0a:2e:3c:f5:f2:0d:71:90:59:0b:
69:93:cb:04:62:4b:a5:85:90:9f:16:25:08:73:bf:db:36:18:
fe:00:96:7a:71:41:01:53:f7:b7:c3:0b:51:97:e5:e0:8b:0c:
7f:8d:58:b1:55:85:6c:29:32:70:f2:00:f2:0b:38:a0:ef:7c:
63:d7:a5:ae:42:b1:73:92:43:f5:8e:c6:f1:11:5b:61:6b:5e:
3e:fe:6d:f6:b7:83:70:cf:c9:12:29:2c:d4:21:cd:4d:5f:01:
74:87:11:0a:8d:e0:cc:30:e3:25:bb:5a:d3:e0:d6:ef:fa:69:
7f:03:50:76:8a:8d:0f:3c:73:5e:19:9c:20:b1:db:a2:a8:d4:
40:58:21:d9:aa:b2:95:79:88:ab:22:25:40:8b:59:d7:f7:96:
8b:ce:3c:ab:1b:e3:da:4a:8c:88:cb:0f:37:54:8b:af:37:b5:
98:9a:4d:04:0b:28:a3:fd:92:6c:c8:f6:d7:bb:1b:bd:77:60:
f3:d6:74:3b:72:5a:a8:b8:9b:be:83:f3:fe:96:b7:57:19:63:
35:9d:04:ce:e1:7f:b3:f3:6b:a9:14:d7:0d:c1:bd:41:b5:54:
54:cd:90:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:35 2024 by rpki-client on console.sobornost.net