Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/gsftVq5RkqE7c_8-wMP3tTMSwdg.roa
File: gsftVq5RkqE7c_8-wMP3tTMSwdg.roa (raw, json)
Hash identifier: aORp2ka3cBEIXH6ZYhfRLbaduGck3ExXXq/oCkCHno0=
Subject key identifier: 82:C7:ED:56:AE:51:92:A1:3B:73:FF:3E:C0:C3:F7:B5:33:12:C1:D8
Certificate issuer: /CN=01626ffd800eafa336bdf343141f03f7c393c364
Certificate serial: 0187A35F9248296886256459A7E205B847F8
Authority key identifier: 01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/gsftVq5RkqE7c_8-wMP3tTMSwdg.roa
Signing time: Fri 21 Apr 2023 10:32:42 +0000
ROA not before: Fri 21 Apr 2023 10:32:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47632
IP address blocks: 194.153.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a3:5f:92:48:29:68:86:25:64:59:a7:e2:05:b8:47:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01626ffd800eafa336bdf343141f03f7c393c364
Validity
Not Before: Apr 21 10:32:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82c7ed56ae5192a13b73ff3ec0c3f7b53312c1d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9c:d0:3c:a0:c9:bc:54:8f:49:6f:90:5a:67:
6c:95:b4:b1:be:c3:8b:8f:3e:39:b1:35:ff:0f:51:
9b:d2:9e:82:28:89:3a:07:61:c4:ab:5e:79:b3:56:
19:35:6d:0c:59:5c:59:6e:0c:ba:bb:6f:64:f0:1b:
69:75:8d:97:84:12:20:c5:50:25:4d:df:47:3a:3a:
ea:58:d6:05:3e:7e:e0:31:6d:79:98:fb:60:a4:87:
44:cd:7d:6d:05:f3:2c:3f:a9:16:22:8a:86:35:a1:
47:a7:6c:88:25:43:2e:ac:3c:8d:21:9d:ea:85:1c:
77:07:77:b8:6c:85:1b:a9:3a:c9:fa:47:cf:ac:44:
2b:80:d5:d6:87:82:e1:4f:f9:6c:08:ec:c2:c8:50:
51:57:ba:36:0d:35:ee:26:85:b9:2f:d8:8e:a2:3b:
72:3d:c7:c4:b7:3a:09:cf:18:96:25:ff:19:a1:03:
36:97:ea:bf:aa:ec:dd:14:56:1e:bf:24:20:79:8d:
b5:5d:27:4d:93:6c:b2:79:e5:45:0d:96:1a:4b:59:
da:4e:cb:79:94:3c:01:a5:fb:f5:8c:bc:7f:84:9f:
a7:b3:f8:e3:9d:17:aa:e7:b9:70:3a:ea:99:2f:d4:
79:d3:91:df:ee:46:18:89:b9:db:f9:41:57:69:85:
d4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C7:ED:56:AE:51:92:A1:3B:73:FF:3E:C0:C3:F7:B5:33:12:C1:D8
X509v3 Authority Key Identifier:
keyid:01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/gsftVq5RkqE7c_8-wMP3tTMSwdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.78.0/24
Signature Algorithm: sha256WithRSAEncryption
58:80:b5:a8:a6:73:56:00:54:f9:e8:dd:a4:a4:c6:e7:31:4a:
94:f7:cf:07:2e:18:86:5b:62:9e:ae:cb:47:71:b5:dd:a6:18:
cd:c5:79:42:8f:7b:0a:bf:c0:79:d2:94:03:1a:1e:27:d1:9a:
a3:9b:39:8c:84:82:9b:07:52:99:80:6e:ea:f4:64:4a:49:b7:
c3:5e:18:e0:0b:0b:2d:97:18:72:85:eb:02:c4:1b:7f:e5:26:
45:7d:3c:a1:40:8a:5c:eb:1b:01:e7:b1:34:77:61:2b:36:47:
56:4b:55:db:c5:0e:48:11:0f:4f:e4:66:3c:e9:fb:c2:52:7e:
04:d7:3b:bc:30:35:1f:8b:1e:39:b6:87:7f:3e:8b:b6:70:ef:
1f:c6:45:c7:79:c9:6b:f9:ee:09:6f:11:43:fe:82:40:49:c2:
ef:3b:41:00:78:84:b7:72:95:ca:8a:44:cf:89:48:e7:15:4f:
3f:84:d8:d1:5d:d6:21:90:75:8d:21:18:81:64:d3:51:19:5f:
62:e5:d0:eb:8b:de:e0:01:30:6e:a4:37:bd:c8:a3:d3:b2:bc:
ce:6c:00:ea:2f:59:42:79:ea:54:88:ab:71:c0:17:bb:04:0b:
24:03:04:a2:26:dc:23:1a:9d:84:47:da:e6:f3:63:2f:72:13:
1a:97:c4:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:42 2024 by rpki-client on console-ams.rpki-client.org