Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/GL6waaL6BClAQUOSRcY5FA8vuDY.roa
File: GL6waaL6BClAQUOSRcY5FA8vuDY.roa (raw, json)
Hash identifier: cmjelQR9KAMpbJsJUltO0Bh5Rebb4/wJwlGN6/oaqww=
Subject key identifier: 18:BE:B0:69:A2:FA:04:29:40:41:43:92:45:C6:39:14:0F:2F:B8:36
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB83338061A66BA6B4F12A60D3531DB
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/GL6waaL6BClAQUOSRcY5FA8vuDY.roa
Signing time: Sun 01 Jan 2023 09:44:49 +0000
ROA not before: Sun 01 Jan 2023 09:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2286
IP address blocks: 193.251.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Mar 2023 10:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:33:38:06:1a:66:ba:6b:4f:12:a6:0d:35:31:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18beb069a2fa04294041439245c639140f2fb836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3f:09:fb:ac:fc:23:fc:b5:f8:90:fc:81:60:
e5:8c:51:26:49:ff:58:be:33:94:53:0e:41:7c:a7:
5f:48:87:5d:68:10:4f:cb:b7:2d:2c:05:2a:c9:41:
84:1c:bf:b7:a6:3e:0a:47:f1:88:01:4e:5b:f5:87:
fc:a3:f0:60:e8:58:44:38:2c:45:db:27:3c:98:d6:
e5:ef:d9:49:93:4d:62:7c:3e:01:09:60:43:f2:cc:
e5:0d:dc:5d:c3:e6:28:7f:0a:81:c3:26:01:0d:ba:
d5:92:4a:e1:da:32:cc:e5:2a:a4:be:17:3b:ad:64:
1b:ff:c8:47:f2:32:b0:a9:ab:0e:5a:a2:41:98:43:
c8:f9:2a:aa:23:d9:4b:a4:3e:86:c3:61:0c:07:b7:
ad:9a:7c:d8:89:0d:14:ab:8a:3b:d5:5a:e9:26:84:
3f:51:a7:3d:f7:f1:58:44:a9:e5:27:97:c0:f6:4c:
aa:16:6d:9f:a3:64:19:19:fd:db:8c:40:d4:08:80:
8e:aa:89:04:1e:40:2c:16:fc:6e:6e:06:3b:94:1e:
18:5d:f6:aa:75:a9:24:ea:7a:d4:ad:d3:1c:84:6f:
38:95:49:ae:91:7c:29:14:83:24:fb:5a:2f:c8:73:
1b:2d:f0:4a:81:e5:27:29:92:76:e2:51:ef:ee:8b:
65:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BE:B0:69:A2:FA:04:29:40:41:43:92:45:C6:39:14:0F:2F:B8:36
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/GL6waaL6BClAQUOSRcY5FA8vuDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.251.224.0/22
Signature Algorithm: sha256WithRSAEncryption
77:55:40:bb:5c:b4:52:3f:8e:c9:d2:0b:c0:aa:ef:99:8a:9d:
3e:98:41:5b:91:26:d6:b3:7c:f5:85:07:91:c5:52:08:5b:e8:
a0:9b:44:4e:90:7a:9b:fb:ed:2a:6f:b0:e2:12:d2:03:e9:8b:
a4:9d:37:d1:c7:94:29:fe:5a:52:d9:8d:be:69:72:2d:bb:44:
0e:fc:45:ff:8b:e0:31:76:bd:a4:cb:ca:82:6e:c0:f7:8f:b3:
3f:7b:e8:fb:8b:e6:7b:23:43:47:5e:89:f8:6a:47:72:db:96:
ae:43:9a:93:e7:dc:88:41:ed:00:af:c0:e7:63:88:1f:5c:7e:
4f:3a:10:0a:7f:76:ec:b5:5b:92:fa:19:25:d8:5c:65:4f:59:
25:b2:05:70:79:68:5b:76:f9:b1:dd:2a:f4:74:d3:54:fd:c2:
b2:cc:3a:7a:12:e2:6f:31:55:a2:07:a2:0c:6a:a9:54:e6:f7:
34:7d:36:60:22:c5:13:e0:07:21:db:83:a1:4a:19:07:57:20:
2b:7b:0e:7d:13:c6:68:60:8a:91:0c:ab:3d:c8:b7:63:80:83:
38:7a:03:7d:8d:9f:2b:8c:d0:60:c2:03:fc:5b:5e:d7:f1:e4:
bd:c6:11:8e:45:4c:4e:bb:32:89:8c:db:92:e5:52:02:8f:d2:
99:98:8c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org