Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/c920da-1df8-4927-8831-ab0664e63fb6/1/gX54bljWzpD2llhzNzhfoQDKZ-8.roa
File: gX54bljWzpD2llhzNzhfoQDKZ-8.roa (raw, json)
Hash identifier: mJVt7nJiRJGCohE7AqEggFqfn2KkQEkiA9qGENbCOsU=
Subject key identifier: 81:7E:78:6E:58:D6:CE:90:F6:96:58:73:37:38:5F:A1:00:CA:67:EF
Certificate issuer: /CN=99252ff7f4dcf62234d22f86a1135b344923daab
Certificate serial: 0187B99BA4F2A2E25B610707B41C101AFD61
Authority key identifier: 99:25:2F:F7:F4:DC:F6:22:34:D2:2F:86:A1:13:5B:34:49:23:DA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSUv9_Tc9iI00i-GoRNbNEkj2qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/c920da-1df8-4927-8831-ab0664e63fb6/1/gX54bljWzpD2llhzNzhfoQDKZ-8.roa
Signing time: Tue 25 Apr 2023 18:09:57 +0000
ROA not before: Tue 25 Apr 2023 18:09:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209538
IP address blocks: 193.107.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b9:9b:a4:f2:a2:e2:5b:61:07:07:b4:1c:10:1a:fd:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99252ff7f4dcf62234d22f86a1135b344923daab
Validity
Not Before: Apr 25 18:09:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=817e786e58d6ce90f696587337385fa100ca67ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e8:7e:df:2e:b4:96:c4:31:62:bc:33:24:0c:
f0:5f:e4:3f:65:81:e5:10:0c:e0:70:9e:7d:39:62:
4b:2a:32:39:53:d0:db:45:dc:32:74:e1:5c:66:d7:
80:e1:a2:8c:71:4c:a8:5a:98:e6:ac:e6:67:7a:9d:
a5:dd:b8:09:0b:1a:44:bb:fa:8e:fd:4d:8e:60:b4:
d7:f5:90:f1:29:77:dc:ba:51:3a:96:56:88:08:dd:
bd:39:55:13:e9:7a:9a:b2:61:cf:60:9a:b3:89:92:
ef:7a:c0:e5:99:7f:5f:bd:dc:cc:1f:1c:01:69:86:
bb:50:df:81:fa:93:65:1a:f4:5c:90:ed:7c:a6:e6:
25:57:c8:6f:41:50:18:ca:b4:56:f6:1a:41:0f:0c:
6d:b8:c8:c4:ba:b8:16:85:07:21:32:fe:ee:69:b6:
b7:f5:83:4b:da:43:e3:a2:e0:84:64:51:66:d4:27:
a6:b5:d3:5c:f7:65:64:d7:e4:cd:20:80:af:05:3b:
f7:85:e2:c7:92:c9:74:61:77:61:6e:c3:b7:e0:6e:
2a:d5:c2:64:cc:06:95:5a:00:2c:64:a0:06:19:41:
23:17:08:f1:47:c3:9a:3b:87:ea:af:40:0f:e0:21:
8a:70:57:eb:37:22:4e:76:19:16:be:92:ff:09:07:
4f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:7E:78:6E:58:D6:CE:90:F6:96:58:73:37:38:5F:A1:00:CA:67:EF
X509v3 Authority Key Identifier:
keyid:99:25:2F:F7:F4:DC:F6:22:34:D2:2F:86:A1:13:5B:34:49:23:DA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSUv9_Tc9iI00i-GoRNbNEkj2qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/c920da-1df8-4927-8831-ab0664e63fb6/1/gX54bljWzpD2llhzNzhfoQDKZ-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/c920da-1df8-4927-8831-ab0664e63fb6/1/mSUv9_Tc9iI00i-GoRNbNEkj2qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.49.0/24
Signature Algorithm: sha256WithRSAEncryption
53:a6:01:3a:13:49:21:b6:df:96:32:8e:be:6f:78:2d:ab:3e:
40:35:27:a0:b5:e5:be:1d:a7:0e:7b:f9:e3:d3:e8:cf:0f:34:
47:3c:f5:25:f8:9b:4c:00:34:15:aa:b0:88:b1:b1:96:1e:3f:
f1:01:9e:d2:8f:b0:36:4a:6e:52:97:4e:85:d1:a0:fe:be:9c:
44:04:74:0d:bc:e7:00:16:bc:12:1b:26:3f:75:b9:d8:43:8b:
8b:98:1b:d3:6a:ed:9d:62:2a:6d:09:4a:a3:f2:75:d1:42:eb:
ef:ae:01:63:07:65:39:7b:da:d0:32:39:a1:b9:21:62:e5:15:
6e:44:7e:9e:63:cb:c3:d2:39:e6:32:b4:45:64:fe:52:3b:bb:
5c:47:5e:52:40:43:44:4f:13:26:28:65:4f:68:d1:14:20:18:
21:cb:6a:aa:92:57:e4:a6:65:6a:b0:15:d7:51:65:e6:8f:8d:
32:b9:b5:e3:9e:08:61:9f:64:2a:ea:b3:a7:24:40:b6:4f:2b:
92:d7:da:c9:d5:22:1b:61:23:f0:73:60:d5:de:47:8b:1a:c1:
77:8e:c5:03:81:09:8e:60:31:3b:e7:3d:47:b3:3d:e4:c2:1d:
60:3e:b2:fa:52:ff:5b:14:da:59:9b:dd:60:22:7b:5c:d6:8b:
26:29:33:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:33 2024 by rpki-client on console-fra.rpki-client.org