Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/gbVTcGM7tMAriEUZoBwZ0fLKgc8.roa
File: gbVTcGM7tMAriEUZoBwZ0fLKgc8.roa (raw, json)
Hash identifier: YIjXCD5X9JRnHDMBJfdTFKiafbRYcMtYBbZsoRODJFA=
Subject key identifier: 81:B5:53:70:63:3B:B4:C0:2B:88:45:19:A0:1C:19:D1:F2:CA:81:CF
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0185718C16DBDAE8A1BBC066A92255FEA32B
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/gbVTcGM7tMAriEUZoBwZ0fLKgc8.roa
Signing time: Mon 02 Jan 2023 08:14:44 +0000
ROA not before: Mon 02 Jan 2023 08:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 91.235.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Aug 2023 01:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:16:db:da:e8:a1:bb:c0:66:a9:22:55:fe:a3:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 2 08:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81b55370633bb4c02b884519a01c19d1f2ca81cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0c:db:ab:9c:ef:4f:b8:d7:ae:90:7b:fb:26:
85:1f:85:c5:83:8a:5a:d3:fe:ca:2c:4c:b9:d4:c7:
9c:5b:dd:1b:7d:56:b7:d3:ff:fa:76:3d:17:5a:f3:
fd:21:4c:02:63:3c:da:5e:d4:63:a6:f3:2b:63:22:
a0:9a:63:54:0f:59:f9:e8:f6:f1:9d:07:5f:53:92:
2b:6c:98:cc:73:b0:57:1c:60:53:02:da:f1:8f:77:
9f:94:ac:dd:8f:8c:c1:de:8b:86:39:1c:ea:ff:4e:
62:bd:e0:17:d3:f1:d3:80:3e:e3:52:59:5a:90:d7:
ad:eb:c4:6b:4c:c0:94:fc:c8:ca:39:7a:fa:4f:e3:
12:ee:5a:30:ea:e3:9c:14:0a:8a:0a:c2:c7:0d:1a:
12:24:4e:1c:e4:65:7e:09:25:10:0b:95:80:3a:72:
f7:d3:a1:82:55:be:91:e6:df:0c:aa:b2:ca:2b:c7:
c4:49:23:eb:f5:74:34:33:05:d4:59:29:8b:82:13:
f0:f1:55:33:0e:bc:3c:f8:5f:3f:39:86:5c:2c:95:
b8:f7:42:a4:eb:6d:68:e0:45:4b:06:88:28:9b:5f:
ed:58:64:73:4c:6a:09:57:b1:56:79:7b:f6:b3:10:
b5:f2:91:df:b7:b2:8d:c2:f3:77:be:f3:a4:5a:c0:
9f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B5:53:70:63:3B:B4:C0:2B:88:45:19:A0:1C:19:D1:F2:CA:81:CF
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/gbVTcGM7tMAriEUZoBwZ0fLKgc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.2.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:4a:ab:a0:73:de:cd:5a:5f:87:42:50:ee:87:cf:89:b8:0e:
c3:3c:6f:d1:53:40:90:df:c2:1e:15:81:84:87:5c:58:1e:a8:
73:1e:20:46:9e:92:44:d4:cd:24:a1:d5:7d:19:f5:9e:d1:d4:
89:a6:a9:2a:63:0f:02:34:4e:f6:ab:22:16:d3:a2:7d:34:78:
48:13:a2:7a:2d:b7:c2:8d:02:a6:9b:1f:bd:e5:be:0d:fb:bb:
a4:37:c7:78:6c:8c:d6:8b:6e:96:dc:af:ae:57:41:5e:bf:35:
12:d6:e0:c9:8e:5e:5e:0d:18:0f:f9:3c:ef:22:54:10:61:19:
1b:e1:dc:14:08:68:96:88:6a:93:b8:63:7c:ce:f9:13:70:da:
70:13:93:03:e3:f4:f2:66:d5:a2:ae:45:31:36:a6:b6:fb:63:
ec:98:f4:17:95:fb:97:b1:76:f2:57:e6:af:b6:59:8e:7e:98:
1b:b0:6a:9a:7e:b3:74:7b:b9:ee:a5:e5:68:a8:bd:68:47:7d:
c9:62:25:af:e0:27:b7:94:f2:87:54:60:08:01:8b:13:57:b5:
c5:c7:c5:2e:14:2f:34:76:1b:9d:4e:70:84:51:56:fc:26:18:
c7:3d:cc:50:66:3f:a5:ce:97:33:09:75:77:60:41:87:92:47:
ad:7d:6a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org