Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gsDc6I7Le47pzfLGmvQxNtYR6cw.roa
File: gsDc6I7Le47pzfLGmvQxNtYR6cw.roa (raw, json)
Hash identifier: cTZabTkWuIsrg6n1102SzdMu9J3EkcezxX34znWfW1k=
Subject key identifier: 82:C0:DC:E8:8E:CB:7B:8E:E9:CD:F2:C6:9A:F4:31:36:D6:11:E9:CC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018752599310342FFE0BC07C6842F17A8415
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gsDc6I7Le47pzfLGmvQxNtYR6cw.roa
Signing time: Wed 05 Apr 2023 16:56:54 +0000
ROA not before: Wed 05 Apr 2023 16:56:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26383
IP address blocks: 194.87.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 17:36:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:59:93:10:34:2f:fe:0b:c0:7c:68:42:f1:7a:84:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 5 16:56:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82c0dce88ecb7b8ee9cdf2c69af43136d611e9cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e8:a4:f6:d1:a7:6b:23:6e:b8:ee:1c:db:87:
9f:30:c5:c9:7c:e8:0d:e3:a0:22:df:0e:b2:57:bc:
7f:a5:33:9b:93:54:15:e8:98:3d:e9:54:10:03:a6:
c8:e1:15:31:84:0b:3b:32:34:04:78:e5:55:7f:92:
f6:e4:41:ee:3f:b6:4b:83:e4:9b:cb:97:8b:61:91:
79:7a:9d:54:32:0b:01:5a:be:ab:96:ef:f6:66:f7:
e9:af:07:a2:ec:64:67:11:44:4b:85:8e:ae:90:d8:
86:52:66:3e:05:78:42:55:fb:f6:c7:75:3e:44:d9:
12:16:f3:e0:97:9e:3a:a5:99:59:d1:b0:68:30:56:
e7:c8:49:2a:5e:43:c9:a3:5e:52:af:55:b2:66:a9:
a4:ae:1b:d9:3a:51:fc:69:44:83:f9:5c:d7:6c:f4:
e9:18:c3:4c:0a:bb:67:9a:73:81:d5:4e:2a:06:fb:
95:2a:86:e1:8b:15:45:ea:f1:38:55:7b:45:51:31:
11:be:61:c7:64:56:db:e3:05:20:fb:e5:3a:f6:77:
c4:dd:f9:59:26:b0:0d:e8:a2:4d:43:89:74:fa:b2:
5a:6b:1f:f2:b9:93:97:2f:77:3f:a3:ff:96:dc:14:
21:f5:97:41:77:10:b8:5f:26:c9:c3:0a:6a:5c:19:
46:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C0:DC:E8:8E:CB:7B:8E:E9:CD:F2:C6:9A:F4:31:36:D6:11:E9:CC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gsDc6I7Le47pzfLGmvQxNtYR6cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.189.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:1c:57:00:6b:3a:ae:32:10:6e:5f:9c:8b:61:ed:7b:cb:6e:
34:2a:01:d7:01:4e:e5:89:87:b7:bb:6c:5f:41:82:d3:96:dd:
89:2d:ec:7f:d0:cf:5b:0d:f4:22:98:84:4b:77:c2:dd:29:f3:
33:23:dd:c1:4d:0d:ff:ad:38:d9:da:9c:48:66:60:3b:a0:11:
66:95:3e:8f:86:3d:61:03:48:dd:2d:8a:75:79:56:90:3c:12:
d1:4c:26:81:20:83:4e:c8:65:e1:10:a5:bc:06:60:be:25:40:
84:de:14:f7:3a:e6:72:aa:6e:a4:5e:7e:7c:0e:ed:39:24:c1:
60:66:cd:b7:31:62:c9:6a:81:75:62:a3:cb:8d:45:b7:8c:2c:
26:8a:2c:bf:c1:3d:b0:74:cc:18:b0:86:50:21:f0:f6:dc:9f:
74:5d:53:7d:24:66:07:cc:b7:f9:c2:1b:22:70:63:2e:da:c0:
f7:39:be:8b:9b:61:b2:45:c8:c7:21:e8:2b:4c:d1:2a:52:5c:
6a:da:de:56:80:fe:dd:7e:31:6a:e3:25:e9:f4:5f:6b:1b:48:
e1:e4:b9:4a:3e:b5:37:8f:c4:77:a8:a7:88:05:2b:b4:e4:a1:
72:0e:b3:a6:ef:a2:2e:eb:84:be:32:e8:6d:e8:63:a4:42:b8:
86:a4:46:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:23 2024 by rpki-client on console-fra.rpki-client.org