Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/gf-1IODbV1azhEH8c5hgG0FV0r8.roa
File: gf-1IODbV1azhEH8c5hgG0FV0r8.roa (raw, json)
Hash identifier: qPr24kdZu3Mvkk+l0QeOD1H7BRKxWm/u/bEi+A5IowE=
Subject key identifier: 81:FF:B5:20:E0:DB:57:56:B3:84:41:FC:73:98:60:1B:41:55:D2:BF
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 0185712761C5BB1CFB8DC4141D014950D8A2
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/gf-1IODbV1azhEH8c5hgG0FV0r8.roa
Signing time: Mon 02 Jan 2023 06:24:44 +0000
ROA not before: Mon 02 Jan 2023 06:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 134.255.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Jan 2023 18:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:61:c5:bb:1c:fb:8d:c4:14:1d:01:49:50:d8:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jan 2 06:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81ffb520e0db5756b38441fc7398601b4155d2bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b1:43:3e:78:ec:40:fe:24:74:d6:73:a5:bd:
e2:7a:23:78:69:c6:ad:c8:91:e6:5c:b2:1c:d9:b6:
25:7b:0d:f3:82:ec:c6:0c:61:06:af:6f:bc:73:50:
7b:32:bc:8d:ba:61:24:9d:3d:e9:3f:5f:2d:02:0d:
c0:b4:0d:c6:80:bc:3a:8f:b4:97:ea:bb:d9:6f:82:
54:de:98:07:48:ad:45:50:c4:4a:cc:4c:16:76:ae:
b3:56:c3:b9:ca:1f:92:91:e7:af:50:30:1b:b3:32:
12:48:2c:09:54:0f:30:51:6d:1f:0d:cc:1c:ea:9a:
2f:c6:0a:94:d3:10:9f:a8:83:4e:cd:c7:8b:38:56:
a7:60:0b:75:0b:65:c1:37:85:fa:00:06:6b:0a:1d:
a2:17:d1:d2:38:48:e8:ba:92:30:5f:9f:d5:e8:fd:
0f:0f:4e:b7:78:54:b7:db:09:67:f4:86:2b:bb:5b:
61:f6:98:df:b6:c8:5f:4d:ad:c7:b6:64:28:a2:be:
6c:1d:c6:01:1c:1f:e8:0a:f9:6e:e9:7c:f2:79:d5:
77:0e:ad:04:c8:ac:6c:34:35:ec:01:cf:d8:78:da:
a0:80:b0:74:85:7f:23:b7:9a:d8:31:dc:f3:c6:dc:
fb:08:d7:eb:fc:19:25:17:61:19:12:df:fb:95:f0:
88:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FF:B5:20:E0:DB:57:56:B3:84:41:FC:73:98:60:1B:41:55:D2:BF
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/gf-1IODbV1azhEH8c5hgG0FV0r8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.255.199.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:3f:b7:7a:75:68:96:db:dc:52:8a:f3:dc:d9:15:7b:3a:a4:
c4:9a:71:aa:39:a0:a4:c2:c9:62:60:af:0a:9c:9a:d0:cc:11:
fa:dd:97:49:62:cc:df:0c:99:ce:b6:af:e2:fc:ea:4a:a6:b4:
ba:0f:da:ec:f4:0f:e3:44:f9:c0:a4:08:6a:5f:99:9d:43:d4:
d0:28:e1:55:7f:5e:49:79:ee:28:56:32:e4:1a:3d:f4:50:8a:
c2:7d:eb:4e:e5:61:71:39:e6:68:16:e0:2b:38:48:66:8b:e2:
9f:e8:e4:c2:e4:d4:b0:27:87:1e:43:89:55:f3:f5:0a:cf:ce:
45:ec:62:d5:ea:58:34:fc:a8:b6:bd:42:c0:64:c1:07:45:a3:
d4:1e:d9:68:ad:ad:15:50:6a:68:fb:c7:4f:35:11:60:91:ea:
97:06:28:7e:99:37:71:70:1d:b2:be:c8:c8:86:65:70:71:93:
77:48:30:fb:d5:4a:05:26:4c:7c:bd:b9:06:cb:9c:e2:8f:b3:
1f:af:44:46:66:cd:f2:46:f4:bb:5c:ac:39:05:2f:c1:8c:62:
10:65:e0:7b:9d:ba:9b:c1:a6:37:d2:f7:6e:21:c1:6c:28:ba:
43:3e:3e:b2:d6:74:c2:ab:b2:00:cc:c0:04:47:4f:81:46:a7:
0e:e7:b3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:32 2024 by rpki-client on console-ams.rpki-client.org