Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/gIw-0dHqjU5CJlAt1dZ9XtBOw3c.roa
File: gIw-0dHqjU5CJlAt1dZ9XtBOw3c.roa (raw, json)
Hash identifier: 33Gr6Brebl8MD2xwdKlYuz8W34wMPa/Ya8ia4TZY0ok=
Subject key identifier: 80:8C:3E:D1:D1:EA:8D:4E:42:26:50:2D:D5:D6:7D:5E:D0:4E:C3:77
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018572CC9A1063FF9ACB94B5FB14B8849388
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/gIw-0dHqjU5CJlAt1dZ9XtBOw3c.roa
Signing time: Mon 02 Jan 2023 14:04:49 +0000
ROA not before: Mon 02 Jan 2023 14:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32727
IP address blocks: 85.203.54.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:9a:10:63:ff:9a:cb:94:b5:fb:14:b8:84:93:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 14:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=808c3ed1d1ea8d4e4226502dd5d67d5ed04ec377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:57:a4:b4:7d:8c:9b:a2:10:50:fc:c9:3f:78:
8d:29:eb:5c:66:60:40:bd:5c:79:0d:f6:24:4b:63:
74:8b:e2:45:44:3e:e1:48:b6:0e:a8:7c:90:f4:8b:
e3:0c:14:ab:46:7f:ab:37:a1:6c:a3:cc:49:b5:ae:
a3:18:a3:04:6d:52:32:1e:1c:b9:ad:2e:f4:1c:20:
58:71:f3:8a:b8:a5:ae:b0:ee:eb:20:f2:50:18:98:
c1:e7:cd:0f:7e:89:e9:68:84:87:fa:54:a8:14:d4:
4a:bf:c6:1a:17:d6:06:ae:be:b5:cd:62:20:ce:31:
5a:b4:25:b9:e3:12:5e:cc:e0:56:18:d7:b0:a0:bb:
94:1b:11:e3:12:73:48:34:d7:17:ae:31:68:ce:bc:
91:6f:17:f5:de:b0:f9:b3:f7:e8:7f:57:3f:1c:ca:
bc:82:d9:e9:be:1b:dd:f0:4c:31:57:3b:78:07:b9:
c8:82:e5:69:61:2b:91:8a:e8:fa:99:8a:b2:00:de:
42:8d:34:44:e7:32:73:ad:4e:fa:26:fd:39:3a:a8:
b2:47:d1:35:77:00:88:82:e8:cd:ed:45:6d:c7:a1:
d6:a4:7e:7f:1d:54:7b:d2:55:65:d9:bc:dd:6b:41:
3f:7d:ea:d2:5c:30:e8:25:6f:9f:bf:9d:fd:fc:4f:
67:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8C:3E:D1:D1:EA:8D:4E:42:26:50:2D:D5:D6:7D:5E:D0:4E:C3:77
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/gIw-0dHqjU5CJlAt1dZ9XtBOw3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.54.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:eb:fd:d8:ac:6e:2d:01:58:e3:8d:5e:c1:fd:3c:5d:6f:2c:
ee:24:f0:88:5f:75:ce:3e:70:40:4a:9a:0e:e9:ef:25:3f:5f:
45:c9:a4:b6:47:3d:de:fc:31:2c:13:d8:5d:f2:c6:86:8a:bf:
5e:2b:55:58:99:25:a3:63:0b:62:46:15:9b:90:83:ed:ec:fe:
29:35:71:5c:7a:16:59:c3:a2:96:fd:d2:f7:6d:77:2b:e9:56:
c2:7b:f7:8e:91:d0:74:8b:c0:c9:b5:77:78:87:56:a6:2a:b6:
68:e1:e0:9c:f0:69:ff:05:6b:2d:35:48:58:6b:b5:8d:88:23:
e8:e7:4c:fa:2d:dc:4f:67:f4:92:65:5e:4e:93:49:f4:8a:1f:
17:7d:f5:fa:12:4e:3a:dc:e3:53:bb:b2:dc:37:52:f4:e8:d8:
a3:ff:af:22:c1:d3:c6:d0:40:ed:29:eb:88:fa:6d:f7:3e:85:
90:01:9b:11:30:fa:57:2b:18:7e:d1:a3:dd:ea:30:e4:8f:34:
54:c2:10:ce:51:f0:82:73:26:85:e7:1c:9c:4d:66:da:2c:19:
17:ac:4c:ab:ce:ff:69:25:00:99:cd:f6:21:4c:c7:01:90:17:
79:26:39:d7:5c:ff:02:4f:9a:24:74:26:2d:60:f5:de:4a:df:
a0:d6:14:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:15 2024 by rpki-client on console-fra.rpki-client.org