Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/GUr0mLeeU4tvL62QXKqQeyfPAY0.roa
File: GUr0mLeeU4tvL62QXKqQeyfPAY0.roa (raw, json)
Hash identifier: KYbDL+8qtV6hX9IwCk47l7ejMAX4aQ2YG5aWsfUL2sg=
Subject key identifier: 19:4A:F4:98:B7:9E:53:8B:6F:2F:AD:90:5C:AA:90:7B:27:CF:01:8D
Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Certificate serial: 018D1BE6421E0F70E87A415BB6E8FCE1A113
Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/GUr0mLeeU4tvL62QXKqQeyfPAY0.roa
Signing time: Thu 18 Jan 2024 09:28:11 +0000
ROA not before: Thu 18 Jan 2024 09:28:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51088
IP address blocks: 92.249.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 10:37:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1b:e6:42:1e:0f:70:e8:7a:41:5b:b6:e8:fc:e1:a1:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Validity
Not Before: Jan 18 09:28:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=194af498b79e538b6f2fad905caa907b27cf018d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f9:66:ee:02:a2:74:3c:13:c0:7b:5d:7e:59:
ef:6e:39:7a:23:3b:19:8e:96:6f:45:a4:c1:14:0c:
fe:e3:b8:fa:ae:17:dd:50:ab:84:c6:6c:76:d3:e5:
73:08:c6:3a:00:e3:f0:c6:df:d1:b5:f1:df:2f:5c:
de:39:32:a1:fb:e6:4b:0b:0d:ba:23:14:b4:7e:bc:
2a:63:dd:a8:e7:b4:37:c7:45:fb:a8:e0:58:64:83:
48:47:6c:65:93:70:d2:af:75:bd:e7:d7:0f:0e:47:
6f:b2:01:7c:b4:13:28:18:86:70:66:7e:c1:3a:58:
fb:2b:1d:45:8c:f8:99:9b:cb:88:fb:de:31:4a:df:
b8:f1:d2:de:58:2b:44:97:b3:6d:88:5f:c5:a6:fc:
aa:08:d0:fa:7d:27:d5:b2:5e:ed:7f:cb:17:20:a7:
25:62:e9:48:71:fe:9e:07:cc:53:a7:1c:bd:46:13:
a0:36:23:32:1c:0c:90:cd:fa:50:79:27:52:cb:09:
b3:28:42:21:69:41:3c:2a:68:08:e7:60:b8:74:61:
38:ff:03:f4:7a:42:02:44:5f:bb:7f:c2:b5:58:d4:
6b:ab:76:ad:d3:64:11:30:85:c0:09:b4:0e:29:90:
30:9d:c4:ff:e7:9b:54:1b:66:43:2a:b1:6e:1c:4b:
7b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4A:F4:98:B7:9E:53:8B:6F:2F:AD:90:5C:AA:90:7B:27:CF:01:8D
X509v3 Authority Key Identifier:
keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/GUr0mLeeU4tvL62QXKqQeyfPAY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.7.0/24
Signature Algorithm: sha256WithRSAEncryption
74:d0:3b:8b:dc:5f:66:a1:eb:d2:d2:1e:99:39:c5:8e:56:dd:
39:25:43:ad:a5:68:db:88:ba:4b:6a:e6:a4:3a:ea:ce:19:29:
27:cc:29:8c:2a:ce:2a:0d:e1:cf:6b:3a:f5:68:2b:eb:a3:b3:
2b:f5:db:21:b6:2d:15:4a:bd:3e:73:96:14:e6:d0:53:b9:51:
ee:b5:cc:d1:c1:bc:69:ec:5f:fb:f4:b0:4a:88:a1:91:db:bb:
ce:d4:fc:a5:cf:e4:17:72:eb:d1:ca:34:e1:f5:2c:45:d0:12:
89:b9:91:e0:59:28:9f:5a:ee:a7:83:23:58:72:7b:a5:56:6e:
98:00:82:e0:98:14:bf:a7:61:e9:8b:41:27:f7:95:b8:55:fe:
da:4a:e4:50:b4:94:a0:96:3a:99:89:8d:ca:87:3e:49:14:54:
da:c6:67:48:00:1f:32:52:f2:b4:bb:3a:6f:3d:85:6a:a4:2f:
b1:12:44:54:86:ed:b1:4c:fd:ea:dc:fe:08:14:9e:f9:af:16:
f4:7a:1a:57:2a:14:3d:e0:a5:25:b3:be:c1:13:fe:25:8f:8a:
e4:44:34:51:09:ef:73:47:40:19:6e:19:c1:b1:c2:2a:46:ca:
4a:1b:ff:3b:37:ea:61:43:de:e8:c2:f7:d8:0c:a0:41:43:1f:
5f:cc:e5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:18 2024 by rpki-client on console-ams.rpki-client.org