Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/GxLG2o1zCRKE0smPyCcxcOHXjtQ.roa
File: GxLG2o1zCRKE0smPyCcxcOHXjtQ.roa (raw, json)
Hash identifier: OdYbNZs0aTpszLRILdTIf7/TpX8POBaIMSxRilCZQes=
Subject key identifier: 1B:12:C6:DA:8D:73:09:12:84:D2:C9:8F:C8:27:31:70:E1:D7:8E:D4
Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Certificate serial: 018F82E6A4802A6ECA39FC2B7C7934D38B16
Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/GxLG2o1zCRKE0smPyCcxcOHXjtQ.roa
Signing time: Thu 16 May 2024 19:35:04 +0000
ROA not before: Thu 16 May 2024 19:35:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2559
IP address blocks: 198.217.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 May 2024 18:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:82:e6:a4:80:2a:6e:ca:39:fc:2b:7c:79:34:d3:8b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Validity
Not Before: May 16 19:35:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b12c6da8d73091284d2c98fc8273170e1d78ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2d:79:d5:ae:f7:15:2f:82:63:9e:b9:7a:48:
58:78:db:39:fc:5f:83:65:37:40:4a:66:99:ee:36:
f1:db:85:97:60:18:0f:ff:90:50:35:d8:cf:14:46:
b8:9f:14:1e:be:9d:5a:30:2b:78:54:70:5a:27:dd:
55:12:99:74:02:d7:ce:e2:94:c6:6c:ff:8b:67:a0:
3d:bc:18:d6:17:27:0c:f8:bd:af:0b:82:d8:e6:2e:
f3:36:11:70:e6:5e:52:b2:1f:80:85:cf:24:50:f6:
f2:a9:52:d0:b6:ea:75:55:24:71:3b:25:0c:56:09:
b4:5b:01:aa:e3:77:34:76:b2:4d:91:fe:be:0e:be:
0a:bd:87:21:60:f3:4c:6e:7f:92:04:cf:42:72:fc:
0b:d5:87:37:aa:1f:56:31:a8:b6:87:10:08:98:93:
a1:06:04:0d:4f:a9:f4:53:45:d3:61:a8:96:18:14:
27:bf:7a:26:e6:60:02:e4:2b:a2:30:1b:30:70:52:
14:4c:dc:44:eb:d8:f4:3e:dd:a6:a9:b6:4b:59:f7:
ae:97:a8:33:f0:16:3b:b0:b9:c1:59:6c:a5:18:2b:
20:2a:a8:db:88:10:3e:38:a6:8d:de:13:f3:97:15:
3c:66:66:74:0b:a1:71:83:29:c8:d2:57:e6:9f:a4:
04:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:12:C6:DA:8D:73:09:12:84:D2:C9:8F:C8:27:31:70:E1:D7:8E:D4
X509v3 Authority Key Identifier:
keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/GxLG2o1zCRKE0smPyCcxcOHXjtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.217.240.0/24
Signature Algorithm: sha256WithRSAEncryption
30:a9:dd:b4:22:b7:76:71:26:11:aa:38:a8:b5:bf:71:73:a2:
35:a2:a7:b9:06:23:db:3a:bd:c4:85:90:ae:3d:d0:31:56:c4:
5f:51:78:ee:5a:80:43:ba:8a:05:00:ce:a3:5d:93:1b:18:cf:
53:02:44:92:be:6d:22:4a:b0:4e:e5:a9:39:a3:f5:4c:6e:c7:
65:84:ee:31:23:6e:60:8f:b2:d7:f5:ff:85:68:55:f5:a1:c4:
24:c5:87:1c:73:de:a8:20:e0:b7:4c:26:b9:b6:8d:99:09:fa:
6d:b7:d5:bc:48:80:98:dc:87:38:30:11:ee:db:ca:1b:6e:cf:
bf:c7:8f:a9:7e:21:97:a3:e4:8f:30:00:27:6a:ef:23:7a:29:
e7:e0:78:7c:9e:de:ff:59:80:ee:a4:88:8f:db:d1:42:2b:59:
56:d1:ab:98:03:e1:48:1d:47:02:12:02:86:e8:17:9b:40:b5:
da:da:58:4c:6a:c6:0f:6e:a3:91:97:f8:bb:10:4b:dc:30:9d:
a1:11:b8:be:55:5c:a6:06:b1:c4:27:d1:d8:6b:12:07:c1:21:
79:38:1a:59:8a:fe:8a:31:44:94:9c:98:25:96:7a:f0:56:e6:
b5:11:82:48:be:67:3e:2b:1f:34:28:2a:fc:b8:1c:3e:dd:4d:
89:0b:87:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 20:56:48 2024 by rpki-client on console-fra.rpki-client.org