Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GOzdZxS95vMhKv9y85z0H8Juk9U.roa
File: GOzdZxS95vMhKv9y85z0H8Juk9U.roa (raw, json)
Hash identifier: mFTiH0/7krPEfGnjszPVGB+DPUe93FkPc+cBbUhR+go=
Subject key identifier: 18:EC:DD:67:14:BD:E6:F3:21:2A:FF:72:F3:9C:F4:1F:C2:6E:93:D5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D2BDA6DF5D60559141F5E6D31BB79E35C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GOzdZxS95vMhKv9y85z0H8Juk9U.roa
Signing time: Sun 21 Jan 2024 11:49:11 +0000
ROA not before: Sun 21 Jan 2024 11:49:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 194.87.73.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 09:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2b:da:6d:f5:d6:05:59:14:1f:5e:6d:31:bb:79:e3:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 21 11:49:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18ecdd6714bde6f3212aff72f39cf41fc26e93d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:75:cd:76:b4:12:ab:4d:b6:c0:12:3f:1d:58:
99:06:64:fb:2f:65:f0:1c:99:44:1e:e1:3c:50:39:
76:f1:63:9e:52:48:f1:34:be:80:4f:a8:fd:a1:ae:
e4:07:16:0a:fe:11:ea:8f:c8:1d:bf:16:4a:d0:0c:
19:d1:11:61:22:7d:db:66:8c:41:cc:28:67:5d:22:
42:8a:11:5a:f8:b6:de:bd:94:b9:f3:9a:27:e7:79:
32:8c:b1:32:44:c1:55:8a:bb:a9:60:cb:3a:cc:00:
0d:9e:30:6e:72:1a:24:20:6f:fa:c1:f7:89:ba:48:
bb:a5:8e:17:d7:70:b9:c3:15:94:f3:b9:1a:af:da:
00:19:c1:8c:83:a6:4b:21:a3:5a:fe:46:02:72:f7:
d0:ab:67:01:40:50:dc:43:67:6a:c0:0f:85:3f:48:
64:fd:5f:0e:96:83:d5:fd:75:73:de:d6:4e:e5:33:
83:a2:73:72:e9:88:27:d1:a0:75:47:c0:75:91:45:
f3:ee:8e:c9:3b:36:a3:87:f5:98:e3:e8:95:f4:28:
f4:1a:8f:b0:0b:dd:9c:a9:65:81:90:7a:47:b5:90:
6b:e2:d2:48:00:d1:22:a3:61:d5:f2:a3:68:02:50:
4b:cc:c5:c6:64:dc:60:b8:5e:d0:cf:e3:26:63:e8:
0b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:EC:DD:67:14:BD:E6:F3:21:2A:FF:72:F3:9C:F4:1F:C2:6E:93:D5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GOzdZxS95vMhKv9y85z0H8Juk9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.73.0/24
212.193.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:16:aa:89:24:21:32:ee:9f:2d:b3:09:d4:75:0e:14:4b:04:
ac:ab:0d:95:ec:37:3d:23:b7:01:3d:69:f8:a1:73:ad:ba:93:
e5:26:15:20:f2:53:c3:3f:7e:44:80:43:79:05:a4:14:0a:37:
a7:b5:15:46:09:33:ac:86:93:38:2c:06:dc:7d:7c:d1:81:24:
51:20:a9:4e:8c:0f:d0:71:5f:9a:1b:1a:b1:94:e3:dc:02:f2:
5b:fa:a7:38:04:5d:ec:95:69:48:90:a8:a7:f1:78:17:2c:7b:
c8:a7:14:2f:47:b4:70:e8:f5:a0:c2:f4:0a:17:5c:f0:3e:46:
19:87:f3:28:28:35:59:32:c7:39:f0:f2:ca:b8:58:d5:e7:f4:
43:6b:3a:72:58:97:e1:6e:c0:d8:3f:70:4e:b8:21:a5:d7:78:
4e:82:e1:ef:a7:9b:04:61:38:df:90:d0:ff:df:26:14:b9:b5:
b6:91:3d:7a:3a:f6:11:aa:e2:70:2e:d7:8e:22:f4:29:9c:f5:
ed:2b:21:c4:03:6a:96:b9:f2:ea:b1:6a:c9:90:72:e8:50:ca:
d9:46:0c:6e:94:e9:d6:22:9a:26:11:a1:b9:b2:b1:b5:aa:79:
3a:05:ab:a1:f4:44:2e:67:b9:32:13:a8:a8:c9:11:36:51:49:
4a:63:8e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:11 2024 by rpki-client on console-fra.rpki-client.org