Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G2KNlpH2cnzxf-GG1uN04nd5t1Q.roa
File: G2KNlpH2cnzxf-GG1uN04nd5t1Q.roa (raw, json)
Hash identifier: EfbsylT5A7IlW+f2GqT4+AS6g4cU1LQsFwumUG3HUls=
Subject key identifier: 1B:62:8D:96:91:F6:72:7C:F1:7F:E1:86:D6:E3:74:E2:77:79:B7:54
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018C6271ADB744222AE0D19071BA81F72B68
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G2KNlpH2cnzxf-GG1uN04nd5t1Q.roa
Signing time: Wed 13 Dec 2023 09:11:06 +0000
ROA not before: Wed 13 Dec 2023 09:11:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60117
IP address blocks: 194.87.54.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:71:ad:b7:44:22:2a:e0:d1:90:71:ba:81:f7:2b:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 13 09:11:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b628d9691f6727cf17fe186d6e374e27779b754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9c:84:26:cb:d3:09:32:50:bc:a7:d5:4b:3c:
77:47:99:fd:51:90:b2:a9:e0:ca:fc:35:37:92:30:
07:ff:81:75:37:f9:0e:5a:ed:73:f3:13:ff:a3:05:
9f:6f:69:f4:c5:94:1f:2b:f9:f3:05:4b:1d:50:ae:
e4:64:ac:8b:bd:4c:10:f0:03:75:e9:42:52:fd:c7:
c9:1d:a8:6a:c4:41:9b:55:b5:cf:78:50:85:0b:18:
e5:05:ec:17:3c:08:f9:51:f7:74:59:8d:7b:1b:0f:
c0:1e:ad:69:41:3f:53:1d:91:3a:32:20:aa:cf:e0:
b8:00:fa:2e:82:86:0d:83:8a:e9:40:29:a9:e0:86:
79:3d:46:cf:da:4f:ae:84:cd:82:5d:66:5f:ac:96:
88:23:da:14:3e:11:1b:59:2a:97:4c:75:2f:d8:fd:
ed:e9:eb:80:3f:48:af:93:bb:a0:9d:72:fb:d7:41:
ea:19:ca:24:4c:d5:c3:f3:0b:b5:b1:10:c6:fe:ed:
5e:96:fb:71:94:74:6f:9a:36:91:2b:af:15:78:0f:
73:dc:97:d4:c8:0a:b2:b5:33:9c:76:5a:18:c2:cf:
09:39:8a:f1:2c:90:0d:db:39:4a:23:48:da:31:77:
ae:98:7a:6f:1f:f8:5c:4b:22:86:e8:8f:ac:45:73:
6e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:62:8D:96:91:F6:72:7C:F1:7F:E1:86:D6:E3:74:E2:77:79:B7:54
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G2KNlpH2cnzxf-GG1uN04nd5t1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.54.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f5:46:63:80:c4:6c:5f:38:24:86:0a:bf:cb:76:53:98:2a:
18:1d:86:7b:66:ba:3e:9a:ed:5d:40:bb:23:46:c5:de:49:96:
97:c5:d4:11:58:46:f2:83:dd:b4:92:4d:ec:07:61:1f:c9:87:
47:7d:f7:9d:24:dc:6f:a7:c7:14:11:3f:f4:a6:52:fd:32:37:
67:4d:4a:74:41:24:2b:36:bc:4a:a5:52:29:bd:38:5f:4c:ba:
ac:1f:49:71:1e:69:00:e1:c8:5e:4c:fe:57:eb:d8:7d:71:1f:
e4:c4:5e:a9:8e:ff:ff:7f:f0:50:1c:60:ac:d2:21:de:e7:af:
e4:b4:73:e1:24:20:b7:7d:9b:c4:00:a6:8c:16:84:6f:ce:f8:
85:6b:b3:f7:d0:be:01:30:f3:71:4c:ef:6d:28:93:37:01:7d:
e6:6d:f8:89:05:07:63:17:e6:16:65:f3:af:27:40:d4:da:c6:
6d:74:60:7c:35:65:a9:a7:e3:36:25:cb:89:c6:14:e2:b7:ca:
2d:a6:9d:4b:0c:5b:bb:18:de:25:53:42:f5:cc:23:b3:f6:79:
56:da:b6:fc:1e:4a:da:e0:3b:c7:5c:62:9c:20:51:63:c4:cb:
ad:a6:26:4b:f0:1f:03:cd:b2:75:5f:51:3b:98:e7:9b:6c:93:
38:e0:c2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 18 13:01:33 2023 by rpki-client on console-fra.rpki-client.org