Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c3d220-4985-4d19-8200-608097f18d83/1/1gLBS-8ku_spskbUgYBbktwWDoA.roa
File: 1gLBS-8ku_spskbUgYBbktwWDoA.roa (raw, json)
Hash identifier: 80A7Gm26FZzjUAcAdgM0FMZFHYchDsfH1rggBGBfvfk=
Subject key identifier: D6:02:C1:4B:EF:24:BB:FB:29:B2:46:D4:81:80:5B:92:DC:16:0E:80
Certificate issuer: /CN=734c3511cbff092816418be477cb553d66b5b84f
Certificate serial: 01856EC20A3559209191FD3F51475FAF99A2
Authority key identifier: 73:4C:35:11:CB:FF:09:28:16:41:8B:E4:77:CB:55:3D:66:B5:B8:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c0w1Ecv_CSgWQYvkd8tVPWa1uE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c3d220-4985-4d19-8200-608097f18d83/1/1gLBS-8ku_spskbUgYBbktwWDoA.roa
Signing time: Sun 01 Jan 2023 19:14:48 +0000
ROA not before: Sun 01 Jan 2023 19:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31463
IP address blocks: 109.71.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:0a:35:59:20:91:91:fd:3f:51:47:5f:af:99:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=734c3511cbff092816418be477cb553d66b5b84f
Validity
Not Before: Jan 1 19:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d602c14bef24bbfb29b246d481805b92dc160e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b5:56:a5:08:74:9d:13:8e:24:39:eb:97:2a:
d6:8f:dd:ea:5f:55:c2:26:c3:3c:9b:22:d0:29:d6:
11:47:9c:78:a4:b2:86:23:ed:c8:a7:4f:b2:59:3f:
fc:b2:dc:ff:62:c8:38:f0:b2:f7:a6:6e:32:13:4a:
e2:25:33:5c:f8:b2:e9:f8:03:05:22:8b:61:0f:11:
53:f7:b8:0a:9f:ec:47:69:12:2c:e3:60:f3:a2:ac:
2e:da:fe:84:a3:2c:da:ec:ce:4f:01:35:7e:42:70:
aa:99:6e:c3:75:85:9e:dc:d4:98:7d:36:65:b4:44:
30:9d:9f:f4:c6:34:9e:70:9d:1c:a8:6c:3f:ca:59:
65:8a:9b:71:29:59:1c:51:1c:f3:6b:60:a0:2e:28:
4f:bc:8e:ac:c3:b0:b4:8f:1a:89:d4:69:65:02:f8:
d3:72:19:7d:fc:29:d1:04:54:7f:3a:4a:ac:20:1a:
c1:18:cf:3e:03:88:e1:ce:c3:45:39:1c:99:67:8e:
5a:d8:6d:42:68:20:a0:9f:74:fb:15:64:e6:2c:7f:
36:23:fc:be:a7:85:5f:74:69:6b:1a:16:88:b3:6d:
ff:3c:35:9d:b4:34:b8:5c:b3:98:0d:97:0a:3d:d4:
8b:6c:fd:b2:45:a5:ca:7c:ef:dc:e5:9c:6b:20:2a:
61:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:02:C1:4B:EF:24:BB:FB:29:B2:46:D4:81:80:5B:92:DC:16:0E:80
X509v3 Authority Key Identifier:
keyid:73:4C:35:11:CB:FF:09:28:16:41:8B:E4:77:CB:55:3D:66:B5:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0w1Ecv_CSgWQYvkd8tVPWa1uE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c3d220-4985-4d19-8200-608097f18d83/1/1gLBS-8ku_spskbUgYBbktwWDoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c3d220-4985-4d19-8200-608097f18d83/1/c0w1Ecv_CSgWQYvkd8tVPWa1uE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.78.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:78:07:38:c2:23:a2:ee:1f:fe:4d:86:d3:5d:b1:4c:e4:79:
91:07:d0:95:58:39:af:5e:9d:f0:0a:a3:82:ce:9f:8c:7c:55:
8e:59:98:4d:77:64:18:db:c9:69:62:91:e3:83:94:33:e1:3a:
af:e2:76:dc:12:5c:67:4b:75:07:db:60:aa:fd:d9:2e:8a:c7:
38:03:4a:13:8a:74:06:6c:b8:00:e6:53:d1:be:8e:f8:1e:fc:
61:da:6d:36:2d:10:1b:ae:ff:4f:62:8e:f6:44:4d:bc:07:d5:
b2:f2:e2:47:97:f9:a3:45:02:49:30:24:91:68:ca:14:df:0f:
e2:0b:e3:dc:cc:1d:ce:6d:55:00:98:c4:19:c5:71:52:34:15:
19:d4:98:13:46:5d:1e:3a:e0:62:58:14:49:e9:96:3e:25:e8:
18:3e:13:28:2a:cd:aa:30:fb:a6:80:fc:55:20:65:0a:94:f7:
56:68:dc:80:0f:7f:05:00:54:47:20:aa:91:6c:3b:79:65:b1:
fd:53:37:0f:3a:b7:ad:e0:82:28:a9:79:a7:5d:84:7b:8c:ab:
b9:c5:5c:58:28:15:4f:30:9a:70:e9:c4:52:f5:bd:8f:c6:64:
eb:c8:24:ac:14:c9:52:70:04:b7:1f:0d:f4:d7:d6:18:53:0a:
f7:c4:4e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:54 2024 by rpki-client on console-fra.rpki-client.org