Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GQimmELxDwEoTT7cqUj8QhAQ6J4.roa
File: GQimmELxDwEoTT7cqUj8QhAQ6J4.roa (raw, json)
Hash identifier: sovWE29CljQbWvKj58Xq5lxtcbxEsEAfWJkHRgwq3TU=
Subject key identifier: 19:08:A6:98:42:F1:0F:01:28:4D:3E:DC:A9:48:FC:42:10:10:E8:9E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81F8A1B34D80C4DA4DC8DC33782AAF
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GQimmELxDwEoTT7cqUj8QhAQ6J4.roa
Signing time: Sun 01 Jan 2023 13:25:12 +0000
ROA not before: Sun 01 Jan 2023 13:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60859
IP address blocks: 94.156.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:f8:a1:b3:4d:80:c4:da:4d:c8:dc:33:78:2a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1908a69842f10f01284d3edca948fc421010e89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b7:e7:62:45:5b:27:5c:c8:e0:de:0a:3b:bb:
71:5b:fa:58:d6:99:2c:44:3f:8e:d2:0c:99:db:e5:
3c:99:68:4d:e1:71:28:1a:07:bd:93:f8:d6:d5:fb:
ca:43:44:4d:b5:73:9c:dc:a8:cd:3c:71:37:a5:57:
f3:73:28:75:57:ec:4e:f5:e0:5c:9f:2f:f0:15:28:
47:c8:97:4d:bb:e7:68:9a:4b:12:31:9a:f6:a0:44:
da:ac:00:32:63:b5:df:33:be:35:32:89:bf:65:94:
83:86:5f:66:cb:e3:40:e0:4d:86:7a:15:a2:dc:9b:
cc:31:aa:38:f6:2e:f4:3c:06:1f:90:4c:c0:64:26:
98:3d:78:66:11:e4:57:f3:66:33:b6:0c:a9:cc:dc:
63:ad:dc:71:6a:cb:83:b3:c0:52:45:1a:35:37:6e:
c4:45:03:7f:30:85:4a:5a:91:71:40:64:99:22:ef:
86:9f:ab:97:91:04:9e:38:73:5d:08:78:07:1a:45:
24:70:3f:92:c3:ba:0f:9b:27:3f:70:db:aa:89:d6:
80:2d:f0:8e:d6:c3:01:94:aa:ec:a1:af:1e:c3:13:
b3:01:ff:7f:56:fa:08:8d:a2:af:bc:2b:c7:02:59:
36:d2:82:f8:ad:ca:94:64:26:30:cb:ad:14:e3:4e:
c4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:08:A6:98:42:F1:0F:01:28:4D:3E:DC:A9:48:FC:42:10:10:E8:9E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GQimmELxDwEoTT7cqUj8QhAQ6J4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.34.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:35:6f:c3:56:5d:b4:04:3f:a2:89:05:e5:89:b4:77:95:9d:
c8:48:d4:76:12:a0:c2:75:ca:79:76:d1:99:37:2f:c0:11:10:
0c:b3:de:dc:cb:66:c1:5e:b9:95:3c:80:68:d5:54:a9:1a:87:
c9:f1:8c:ad:b3:7a:f9:89:b5:d8:e4:e3:28:7e:7e:6e:4e:1f:
5e:2e:82:49:1d:4f:27:b9:53:17:fe:85:d2:07:ae:92:6b:8f:
10:ae:11:4d:4c:c9:0f:1d:e9:61:a4:1d:8a:7a:c1:aa:b7:be:
2c:9f:85:af:50:47:b9:25:0c:de:af:90:1e:55:f7:c4:80:ad:
a3:ba:80:a5:3a:fd:67:81:94:6b:48:b6:2b:da:1b:16:aa:4d:
c2:40:51:28:42:9a:8f:50:f0:ba:ed:11:e8:3f:3a:9a:f3:42:
f8:69:3a:fb:b7:3b:f2:b1:84:7f:43:5c:38:07:58:6a:c9:ca:
8f:d9:01:c0:e0:9a:fa:cd:4f:6d:48:a6:9e:13:a4:eb:23:7d:
1c:16:7d:d7:47:33:88:21:33:58:12:29:da:3c:3f:c6:20:b4:
e9:47:c3:30:01:2f:8a:dc:ec:3f:0c:7a:78:89:d8:1c:4b:b0:
33:77:e5:a3:aa:8f:03:a2:10:81:01:bf:9b:16:90:44:77:91:
67:83:04:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:03 2024 by rpki-client on console-fra.rpki-client.org