Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gCNZAu8NEQxy1JniUzDcQNgn6h4.roa
File: gCNZAu8NEQxy1JniUzDcQNgn6h4.roa (raw, json)
Hash identifier: ntntb4DlrRQ8n3MXEO4Txm4ppa7NzBNoc2r7CuvZd9w=
Subject key identifier: 80:23:59:02:EF:0D:11:0C:72:D4:99:E2:53:30:DC:40:D8:27:EA:1E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018733326963E35390AFDB93AE0200F535A5
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gCNZAu8NEQxy1JniUzDcQNgn6h4.roa
Signing time: Thu 30 Mar 2023 15:45:54 +0000
ROA not before: Thu 30 Mar 2023 15:45:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 195.58.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:33:32:69:63:e3:53:90:af:db:93:ae:02:00:f5:35:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 30 15:45:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80235902ef0d110c72d499e25330dc40d827ea1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:79:69:56:f7:dc:b9:7e:22:b7:ae:a2:73:2a:
fd:1a:05:16:17:1f:66:26:49:a4:4f:c6:d1:62:d3:
7e:c9:8b:37:55:89:4c:ca:8c:5c:e0:cd:d1:ce:88:
bf:4f:ad:fa:0d:79:b8:5a:00:bd:6a:f0:63:d0:dd:
a3:22:36:09:77:71:ea:9c:d6:b6:cd:bd:e2:c6:84:
c5:58:b1:34:22:96:86:0e:ac:1b:40:23:f8:a2:2b:
0b:5f:c3:ec:f6:f6:27:6d:2d:ec:81:4f:6f:6b:8c:
bc:6b:ba:8e:06:87:0d:06:4f:82:0a:b3:0c:b5:24:
82:fd:20:c1:2c:d0:da:ac:98:76:8f:ed:c9:6b:88:
4d:1b:83:6f:4f:94:3b:c6:ff:17:3e:94:85:49:b6:
78:16:c7:af:12:f2:bd:1b:13:dc:6f:5c:27:48:ab:
32:af:93:29:68:f9:aa:9e:48:bc:2a:62:52:6a:e1:
5d:5d:e6:95:2d:e4:d6:08:2d:87:3e:b0:97:46:30:
43:93:de:1c:32:52:c8:55:59:35:87:92:af:22:e7:
33:19:a9:ce:c2:33:ff:fb:0c:3a:d9:dd:35:41:e8:
a7:76:60:0c:9f:3b:5c:0f:b0:7b:ae:8c:8e:f7:37:
a3:d3:58:e4:f9:be:2f:78:18:49:05:41:58:75:70:
f9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:23:59:02:EF:0D:11:0C:72:D4:99:E2:53:30:DC:40:D8:27:EA:1E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gCNZAu8NEQxy1JniUzDcQNgn6h4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.58.38.0/24
Signature Algorithm: sha256WithRSAEncryption
56:25:69:4d:b0:7f:86:1d:cc:99:b3:7e:72:37:51:be:a8:64:
03:0a:5c:bf:ae:9b:b3:04:e7:78:20:ca:d1:c5:c2:1e:a1:4e:
a5:ef:2b:ff:db:b9:0e:7c:f7:a3:68:ff:b5:36:79:69:28:13:
ff:b8:ae:d2:ce:04:85:a4:22:de:c7:b5:13:c1:fe:5c:dd:60:
84:11:17:b3:68:e2:24:86:9f:d7:d0:70:fe:ee:f3:1f:a1:39:
c0:a5:fe:90:84:4c:cc:86:70:57:22:b6:34:c6:8b:9c:24:35:
5b:04:af:3d:50:e8:f4:f9:c6:3b:18:d9:7f:80:b2:66:59:51:
e8:36:da:60:bd:47:3b:07:f6:0a:2b:6d:d3:33:6b:fd:6a:47:
ae:bb:7a:50:6b:16:37:ae:b3:bf:ae:12:ba:9e:cc:6e:c2:fe:
d6:24:28:e2:1f:94:6c:8e:8a:32:5b:08:c8:20:6e:00:98:58:
11:23:65:4e:29:2f:69:6e:35:8a:24:ee:93:3f:6f:0a:f8:50:
97:dc:29:03:0f:5f:6f:5d:3f:19:5c:9f:91:f7:35:63:e0:61:
3f:22:d4:10:53:24:5f:e9:64:c4:ef:eb:ca:b8:4b:3a:fb:e0:
9c:74:7a:f6:5f:49:54:1c:04:06:dd:8b:a5:93:66:9f:ad:93:
7e:18:d6:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:03 2023 by rpki-client on console-ams.rpki-client.org