Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gpr6vZEvSBXaZkwsp1LYMgVZOLg.roa
File: gpr6vZEvSBXaZkwsp1LYMgVZOLg.roa (raw, json)
Hash identifier: egI1JZM/01F8wOW/BCxtgXVQNGs8OECA0ILjCTQlzl4=
Subject key identifier: 82:9A:FA:BD:91:2F:48:15:DA:66:4C:2C:A7:52:D8:32:05:59:38:B8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018F063A84C16BD3B7250136AC00505447EC
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gpr6vZEvSBXaZkwsp1LYMgVZOLg.roa
Signing time: Mon 22 Apr 2024 14:34:09 +0000
ROA not before: Mon 22 Apr 2024 14:34:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203394
IP address blocks: 194.87.201.0/24 maxlen: 24
212.193.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 15:10:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:06:3a:84:c1:6b:d3:b7:25:01:36:ac:00:50:54:47:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 22 14:34:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=829afabd912f4815da664c2ca752d832055938b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6d:6d:45:1f:90:df:69:ee:f7:ba:f7:38:20:
79:48:b9:50:21:6c:38:e6:86:66:74:c2:c0:fa:da:
bf:2b:43:6b:da:eb:c3:55:5f:3c:c6:6c:14:ff:79:
3b:26:0e:76:15:23:71:de:8c:b9:a6:74:ca:c9:5b:
bb:b1:01:5b:bf:c4:30:d0:61:60:91:a0:32:67:25:
e9:59:c0:27:f9:8b:13:6e:c5:14:fd:a7:8c:71:cf:
8d:0d:a6:d6:84:5b:22:b7:59:db:7f:76:a9:35:e7:
bb:67:d4:f0:6c:e2:13:97:82:d9:b6:73:6e:56:42:
db:b4:63:54:cf:e2:e0:94:5a:65:61:55:63:1b:23:
f3:1f:84:33:33:00:81:47:18:8f:eb:dd:7f:be:40:
2f:10:5f:73:63:de:c8:30:a8:32:69:95:f9:b3:25:
f7:b6:33:f4:62:a8:7f:da:8c:71:93:08:fb:ff:42:
5b:cc:56:66:b4:39:f7:01:47:17:59:21:de:77:5e:
37:2b:eb:8f:d8:02:51:a1:00:71:69:3e:c2:20:ea:
88:b9:50:d2:5e:18:fb:cb:52:c4:6a:0f:0c:ff:7f:
b3:6a:39:1a:5a:b0:d9:4b:a1:8f:de:80:9e:18:8b:
32:db:ad:4d:82:ae:61:0b:25:fe:df:90:21:24:a2:
6f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9A:FA:BD:91:2F:48:15:DA:66:4C:2C:A7:52:D8:32:05:59:38:B8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gpr6vZEvSBXaZkwsp1LYMgVZOLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.201.0/24
212.193.11.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:27:6b:49:4b:e4:3e:07:c5:d2:d8:ec:3b:0a:4f:d8:7c:ba:
2b:d2:b8:55:f3:5f:cb:75:bc:5d:96:df:df:d3:dc:a6:50:d6:
30:0f:4c:8f:3d:2b:81:6d:cb:d5:08:ca:de:49:8c:18:03:a6:
23:2f:2e:11:db:33:ba:eb:c0:8c:50:aa:9b:5b:5d:0e:3c:0e:
35:f8:60:48:03:19:87:ff:26:6a:ff:a6:a4:e6:1f:83:60:e6:
f9:d0:cb:95:51:d6:bc:f2:d9:ca:48:dc:c7:2a:99:06:e3:ee:
03:89:2c:87:90:14:e6:4e:08:75:f4:6b:94:86:97:06:c1:6b:
a5:cf:65:52:23:d7:e6:c9:c9:97:21:de:6b:bb:5f:80:ec:4e:
5c:fd:43:8b:16:df:f6:08:e2:5a:44:ae:74:a2:4b:3b:10:5e:
ad:e3:ea:bc:b1:d2:ab:50:14:15:3a:92:79:6c:c9:ae:f3:27:
72:04:9f:03:24:0e:76:aa:3f:3d:1f:36:72:fa:96:6f:eb:af:
e6:42:fc:e5:81:31:46:06:b9:48:e9:d7:be:44:2e:41:df:16:
99:b2:45:0c:07:06:b7:73:ab:cb:ee:f5:0e:6c:d7:3c:4c:4f:
bb:92:c6:26:14:c7:6f:0c:f1:b7:2d:4d:27:51:e3:f5:6f:fe:
a6:42:88:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:23 2024 by rpki-client on console-fra.rpki-client.org