Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kgeVlLNC6ARgOq77oHfce_Bt-gs.roa
File: kgeVlLNC6ARgOq77oHfce_Bt-gs.roa (raw, json)
Hash identifier: 6bObm9xnroChd258ExRP2QdwAMlOlIjhRqcAKIgkJ5Q=
Subject key identifier: 92:07:95:94:B3:42:E8:04:60:3A:AE:FB:A0:77:DC:7B:F0:6D:FA:0B
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018B5BAE5FFDA285090B770EC5D69841F25D
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kgeVlLNC6ARgOq77oHfce_Bt-gs.roa
Signing time: Mon 23 Oct 2023 08:37:16 +0000
ROA not before: Mon 23 Oct 2023 08:37:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216167
IP address blocks: 2.56.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5b:ae:5f:fd:a2:85:09:0b:77:0e:c5:d6:98:41:f2:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 23 08:37:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92079594b342e804603aaefba077dc7bf06dfa0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:13:91:3b:ad:d4:d6:75:50:e4:16:95:f6:90:
5d:55:ab:53:c4:bc:f1:09:d9:66:fe:77:ec:06:63:
b2:cc:3e:c0:8e:75:00:e0:ad:79:70:a7:46:20:93:
f0:fb:1b:81:19:1d:23:a5:da:c8:4c:3f:5e:72:bc:
8d:b8:92:f3:0e:68:c0:8d:4a:ed:b7:e1:79:75:0e:
ef:f1:2f:dd:fe:1b:5c:eb:cb:b2:1c:5e:30:f0:4b:
fd:e0:07:9a:b0:b1:ab:98:2d:7e:27:b6:51:61:6b:
ed:de:b7:93:22:34:8e:86:c7:7c:44:35:ff:50:78:
16:da:62:43:75:e7:67:ae:00:6c:bf:60:e5:76:e4:
12:91:c9:56:33:81:7f:0f:b6:3e:45:9c:e9:77:7e:
31:85:9e:94:48:0e:27:f3:89:58:9f:d8:c1:5a:ff:
ec:23:6c:1a:7c:2a:c6:f9:84:6f:0c:35:f7:16:d3:
ec:89:12:af:96:34:ba:f3:67:b2:51:fd:06:fa:01:
86:89:e8:d6:ee:81:de:09:fc:4e:50:03:8a:e2:26:
e9:e7:28:86:d9:d2:3c:51:c4:c5:cd:2b:c0:07:03:
59:fe:22:99:18:80:55:9a:66:df:fa:8e:e9:74:f9:
fb:56:41:bd:e5:61:ec:62:e9:fc:b6:11:9b:a1:32:
1c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:07:95:94:B3:42:E8:04:60:3A:AE:FB:A0:77:DC:7B:F0:6D:FA:0B
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kgeVlLNC6ARgOq77oHfce_Bt-gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.247.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:aa:a3:5e:27:fb:8f:c9:15:c1:ae:77:89:ca:48:33:1f:68:
97:db:0e:68:72:3e:4d:7c:0a:2e:01:c8:a4:94:62:7f:f6:6e:
60:59:89:1a:b4:77:fa:4b:65:4d:6e:4e:98:67:f5:b9:43:e3:
dd:69:68:43:69:18:8a:c3:cc:45:4b:b1:26:a9:4b:5c:83:de:
b7:18:f3:54:6a:6a:8a:50:39:be:fb:a2:12:c7:cd:7f:d8:9d:
df:3b:8f:92:be:82:ec:ee:3e:61:7c:ea:40:b4:dc:c8:a7:31:
04:34:cd:90:75:c2:3e:94:56:63:55:99:a2:9a:6c:d9:d1:1f:
2e:d8:70:f4:10:55:24:71:0f:87:0c:4b:cb:68:13:29:37:55:
2b:67:96:df:1e:c4:2e:41:8b:08:9c:11:ce:16:c1:d3:b6:e5:
4c:fb:9f:6f:0e:04:a3:de:69:13:eb:e4:bd:71:11:f6:4a:bb:
a8:e9:ed:18:4e:21:f4:4e:16:89:92:05:1c:08:91:0b:f0:8d:
7d:5f:d6:24:4e:15:57:ba:59:70:e6:75:6c:54:2d:9e:02:8b:
36:ae:fa:d4:d4:81:02:88:f7:8f:15:e0:85:09:76:e5:46:55:
84:7c:32:80:20:09:02:e5:65:23:1c:75:02:2c:96:74:ed:2f:
59:42:b5:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:13 2024 by rpki-client on console-fra.rpki-client.org