Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/gFsxCokWI4cK2mNyLSjqHhsA4is.roa
File: gFsxCokWI4cK2mNyLSjqHhsA4is.roa (raw, json)
Hash identifier: rjVAMvZRaZxxuUCWOqa42xJpnhrxCrWBfDytyvj8zEs=
Subject key identifier: 80:5B:31:0A:89:16:23:87:0A:DA:63:72:2D:28:EA:1E:1B:00:E2:2B
Certificate issuer: /CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Certificate serial: 018B8A64FEAFFCA5DF868293E88BF48AECFA
Authority key identifier: 8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/gFsxCokWI4cK2mNyLSjqHhsA4is.roa
Signing time: Wed 01 Nov 2023 10:19:16 +0000
ROA not before: Wed 01 Nov 2023 10:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 195.222.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 04 Nov 2023 22:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:64:fe:af:fc:a5:df:86:82:93:e8:8b:f4:8a:ec:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Validity
Not Before: Nov 1 10:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=805b310a891623870ada63722d28ea1e1b00e22b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d1:d6:f2:43:37:96:0e:ce:fb:b6:94:a8:ec:
e0:e6:bb:32:69:2f:b1:3c:8f:67:5f:03:9a:9b:4d:
26:a4:2c:d7:a7:cb:8d:4f:19:03:33:89:d1:00:7d:
95:7f:29:5d:74:d3:2a:14:cd:a9:32:28:c5:5f:2b:
2c:84:5f:3f:6c:6e:db:67:9a:94:09:bc:f2:ad:63:
e3:f6:a1:25:17:2b:6d:b6:6d:c8:9d:88:10:72:0b:
fd:8f:b9:a9:9e:8f:37:30:e3:d1:6a:ae:68:1d:c0:
66:e7:90:0e:4b:f2:0d:f0:63:1f:04:88:2a:58:a0:
b2:07:7b:81:32:ce:11:58:f8:a6:a1:78:e8:95:39:
3c:58:b0:ec:4f:cd:b6:7a:73:27:1d:64:f5:11:cd:
6b:59:76:5d:e2:39:b5:a4:6c:b0:42:34:70:f7:cb:
90:84:c2:32:25:94:51:4a:5d:8d:8e:d2:56:32:58:
f4:e4:ef:a0:04:49:c3:49:60:67:38:00:1c:53:f0:
5f:0b:35:b3:fa:a7:42:50:83:e5:27:2a:90:4c:b5:
d3:90:00:f3:56:80:3f:30:3a:5f:ff:f2:0c:ce:75:
8d:1f:58:49:07:e2:ed:1d:29:d3:4d:05:cf:59:2c:
e2:87:2a:11:2b:1d:05:18:5b:b8:97:b8:cb:e2:51:
93:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5B:31:0A:89:16:23:87:0A:DA:63:72:2D:28:EA:1E:1B:00:E2:2B
X509v3 Authority Key Identifier:
keyid:8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/gFsxCokWI4cK2mNyLSjqHhsA4is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.222.124.0/22
Signature Algorithm: sha256WithRSAEncryption
98:8b:d0:c1:54:99:36:f8:84:57:72:2e:71:97:5b:32:10:7e:
51:d3:e4:8c:7e:16:dc:8b:7b:e5:1f:ed:91:0c:bb:ec:d0:96:
16:35:21:0c:af:0f:4c:1b:29:a4:5e:94:73:fe:26:98:58:f1:
25:fe:f5:11:b6:3c:5e:8a:5e:d5:f3:f5:a8:ad:a5:db:75:d9:
fb:98:4f:07:8e:12:3d:4b:ec:18:d8:bf:73:f6:7e:71:08:ce:
19:fc:d2:96:34:96:91:24:d0:72:f7:e1:6d:4e:f6:6f:1a:1c:
1e:0d:35:ce:d7:89:a6:fb:4f:ed:fc:69:0e:0d:8f:d6:62:9e:
a0:e8:de:b9:7d:40:8f:ce:7c:54:18:33:17:78:e9:85:87:e4:
e3:a9:9d:41:0f:03:0a:26:19:05:7c:77:45:84:cb:80:91:78:
ed:be:d3:d7:f4:d9:ee:3a:5a:ae:aa:27:75:2f:aa:22:b9:19:
48:36:c0:9b:12:5e:09:c6:fe:ab:60:d3:f1:ec:ac:11:44:8e:
46:52:6a:dc:7f:ef:22:f1:79:88:55:a1:11:62:18:54:ff:6b:
30:fc:0a:16:45:d2:7c:f7:f4:a3:e4:f5:e5:23:19:a2:b2:c1:
f7:71:cd:8e:ce:ca:78:67:50:ba:ba:5f:61:a7:74:30:28:c8:
6c:33:d5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:50 2024 by rpki-client on console-fra.rpki-client.org