Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/GdETVs8U0ubsEPeb4JOmV4hMg3E.roa
File: GdETVs8U0ubsEPeb4JOmV4hMg3E.roa (raw, json)
Hash identifier: X1QJS3qTftZOHCuF4mhRK8vDe6N0FctRLz5QEHitKO4=
Subject key identifier: 19:D1:13:56:CF:14:D2:E6:EC:10:F7:9B:E0:93:A6:57:88:4C:83:71
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 0188046E7B9A8F8413D2B681E7D9BFE217DB
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/GdETVs8U0ubsEPeb4JOmV4hMg3E.roa
Signing time: Wed 10 May 2023 06:52:09 +0000
ROA not before: Wed 10 May 2023 06:52:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6939
IP address blocks: 139.28.240.0/22 maxlen: 22
193.32.204.0/22 maxlen: 22
77.241.72.0/22 maxlen: 22
176.53.156.0/22 maxlen: 22
212.87.196.0/22 maxlen: 22
139.28.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 29 Jul 2023 21:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:04:6e:7b:9a:8f:84:13:d2:b6:81:e7:d9:bf:e2:17:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: May 10 06:52:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19d11356cf14d2e6ec10f79be093a657884c8371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ea:ae:85:5b:d1:af:44:db:20:73:dc:cb:70:
e7:4d:39:9d:ae:8f:fc:ba:76:48:81:4d:0c:e9:b8:
ee:34:6d:78:dc:1e:7b:67:fb:37:c9:bf:48:1b:29:
b9:f3:f9:4f:80:1c:ca:44:97:32:67:1e:f7:42:14:
dd:7f:f8:58:69:0e:0f:a2:eb:74:f8:2b:45:83:17:
f9:2f:c6:04:65:29:46:fb:51:63:69:f5:7c:de:fc:
35:08:cf:b9:c6:cc:73:46:19:4e:6d:68:34:8b:b1:
42:90:e0:4b:aa:2a:35:65:87:d8:08:57:73:eb:76:
46:d5:1f:d6:df:96:89:a8:5f:22:cb:91:3b:43:cd:
77:4a:97:02:ef:65:c7:2c:1b:f8:f0:93:a3:91:0d:
72:83:53:c1:72:5a:6c:17:c5:40:f4:64:d2:68:e9:
ff:9a:b5:86:f7:1e:4f:e6:3a:26:7a:04:42:fa:25:
5c:4c:32:05:c7:c8:db:f3:c8:b9:ae:9e:20:2a:4d:
27:26:0e:69:20:d1:c3:2e:6a:50:14:d6:f5:62:b9:
65:81:2f:fc:be:66:81:41:3f:11:c4:aa:6e:83:18:
c1:5f:88:d2:d9:cc:bf:32:18:0d:0b:8d:be:b5:3e:
c2:57:e8:a9:64:1e:11:33:b3:ab:ac:49:1f:10:24:
eb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D1:13:56:CF:14:D2:E6:EC:10:F7:9B:E0:93:A6:57:88:4C:83:71
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/GdETVs8U0ubsEPeb4JOmV4hMg3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.72.0/22
139.28.212.0/22
139.28.240.0/22
176.53.156.0/22
193.32.204.0/22
212.87.196.0/22
Signature Algorithm: sha256WithRSAEncryption
d3:f1:c1:78:f8:30:9f:0d:61:fe:07:47:7d:d0:71:60:b2:c0:
aa:a5:7e:59:dd:d2:ec:cc:46:12:fb:9c:3c:5d:ee:b1:4a:c6:
54:8b:b1:4c:93:1b:4e:12:f6:c1:ff:68:b7:a6:9e:d7:5f:f9:
d8:71:9e:78:74:41:d9:5f:0b:91:ea:c4:28:48:e0:11:14:c6:
9f:0c:b7:fb:6f:e3:be:c2:62:a6:dc:6b:44:54:dc:a3:54:e9:
6d:70:7f:be:ed:06:d4:03:44:72:8c:7e:9d:09:d7:f8:de:1e:
80:ee:77:b2:1b:e6:a5:2a:20:4c:71:5b:28:ee:cf:1f:13:df:
27:69:a7:2d:db:0d:48:f0:b6:0d:4b:c3:49:84:f7:b3:0d:de:
3e:98:f0:8c:6a:e0:f5:af:5c:a6:5c:51:64:63:66:e2:f5:a6:
35:8d:8d:b2:b7:e5:6c:05:b2:17:17:50:2b:ea:45:21:99:c8:
a9:07:bf:a9:da:95:cf:ef:71:e0:fb:10:a1:4a:11:15:c6:67:
b5:17:fa:07:6d:46:18:e0:e2:36:45:16:5b:fc:e5:b7:91:68:
39:e1:ff:78:21:d1:a0:4b:2b:a0:47:33:b0:e6:16:58:6b:e4:
69:83:5d:69:c3:6b:27:b3:82:49:7f:68:37:85:29:65:6a:99:
2e:a1:27:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org