Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/G-sg_lMyJf4aefQl6YfwJPSTzro.roa
File: G-sg_lMyJf4aefQl6YfwJPSTzro.roa (raw, json)
Hash identifier: lw3RiiA5+t+phUV0vyCRnWwrxblcVbCAU50ZyauNd0Y=
Subject key identifier: 1B:EB:20:FE:53:32:25:FE:1A:79:F4:25:E9:87:F0:24:F4:93:CE:BA
Certificate issuer: /CN=0dd441c3ffae829842249e944b03851081f4d9e0
Certificate serial: 018C64C421FA477053853EB562C65EA5A06C
Authority key identifier: 0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/G-sg_lMyJf4aefQl6YfwJPSTzro.roa
Signing time: Wed 13 Dec 2023 20:00:24 +0000
ROA not before: Wed 13 Dec 2023 20:00:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63339
IP address blocks: 193.23.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:64:c4:21:fa:47:70:53:85:3e:b5:62:c6:5e:a5:a0:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd441c3ffae829842249e944b03851081f4d9e0
Validity
Not Before: Dec 13 20:00:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1beb20fe533225fe1a79f425e987f024f493ceba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:80:ef:b8:ff:d7:f3:f9:3b:8c:d0:54:30:d5:
df:5f:34:08:19:35:a5:62:f5:9d:74:50:da:14:56:
1f:5e:e8:c4:b0:b4:e7:b7:9b:94:4e:99:9e:6f:a3:
33:47:f2:2d:15:09:c4:9d:f9:64:7e:6f:8a:ee:9d:
e9:b9:dc:96:b7:fe:42:78:6b:96:c6:1d:6c:e8:84:
1c:89:4d:cc:f7:f1:87:45:31:03:76:b5:01:ef:fb:
47:5a:e8:e0:fd:6a:d3:bf:f3:c8:68:5c:d3:00:ee:
e9:d0:14:47:86:55:0b:5d:bc:f9:21:5d:9b:e7:b7:
c2:e3:35:45:b8:9e:03:16:24:ab:51:bd:eb:21:2e:
c6:c3:3a:db:d6:ec:d3:12:81:fb:13:5d:47:ae:26:
63:fa:98:d0:52:81:64:d6:f6:9d:fd:a7:c1:9f:c3:
60:c8:ff:64:58:d0:18:21:30:9e:66:dc:32:9e:95:
fc:87:09:94:33:bc:28:14:47:ef:18:09:c8:5d:a1:
ab:1e:75:66:59:84:8b:96:6a:07:60:e3:d1:84:97:
fb:41:08:95:49:00:4c:39:bb:2c:9d:7e:5e:27:a4:
43:7d:3a:0c:1f:e4:7d:9f:7a:68:69:87:fc:dd:36:
17:45:ce:82:89:58:c3:fd:e8:7f:7a:91:93:f4:5c:
2d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:EB:20:FE:53:32:25:FE:1A:79:F4:25:E9:87:F0:24:F4:93:CE:BA
X509v3 Authority Key Identifier:
keyid:0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/G-sg_lMyJf4aefQl6YfwJPSTzro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/DdRBw_-ugphCJJ6USwOFEIH02eA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.118.0/24
Signature Algorithm: sha256WithRSAEncryption
50:60:ad:5e:54:8e:66:be:bf:5f:da:b1:03:72:2b:40:2a:95:
60:c7:2a:25:41:53:83:87:49:f5:92:75:46:c7:ef:d3:b8:ae:
9a:3b:4c:2d:c9:34:cf:00:25:5a:f9:36:31:4c:fc:5e:bf:e4:
72:25:cd:9a:38:a0:b6:f1:bc:65:df:82:04:3f:3b:94:22:c6:
2e:fb:ec:37:30:f6:44:28:58:96:9f:3d:82:0b:7d:72:10:0c:
e8:91:aa:f1:91:eb:c1:da:57:c1:f9:2d:03:6d:ae:2a:41:f6:
fd:23:8a:97:41:43:f6:d0:79:e5:cb:20:5f:cb:f4:c5:82:e1:
39:70:8e:5d:49:6b:a7:56:3b:f6:0c:a8:be:bb:be:0c:d8:d2:
11:8e:0a:e1:9d:44:74:81:54:f2:bf:fa:7a:08:06:70:d2:eb:
5e:b8:42:c7:8a:85:9e:49:61:33:30:15:86:66:5c:aa:9b:9a:
9d:c7:e0:fd:de:2c:9d:e2:71:1c:19:06:c1:13:63:74:ec:3e:
90:98:ba:79:2f:bb:3e:15:37:2e:3d:02:32:23:92:f5:74:bb:
ee:56:88:cd:b2:d6:6a:0f:02:7f:54:4d:9d:9e:15:67:05:ea:
56:4c:b2:b9:36:f0:f0:21:21:25:d0:71:da:cf:9b:1c:95:2c:
ba:3a:f6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:38 2024 by rpki-client on console-fra.rpki-client.org