Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gAFh2ZTC7WfBHJhEFt4m93zoE7Y.roa
File: gAFh2ZTC7WfBHJhEFt4m93zoE7Y.roa (raw, json)
Hash identifier: ravGEfOSNQIKQLRqc3cWcKJwQi4jGPD8Ryl6OEXDVoA=
Subject key identifier: 80:01:61:D9:94:C2:ED:67:C1:1C:98:44:16:DE:26:F7:7C:E8:13:B6
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019144D65EA8C13493D80712186621675EB9
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gAFh2ZTC7WfBHJhEFt4m93zoE7Y.roa
Signing time: Mon 12 Aug 2024 04:26:25 +0000
ROA not before: Mon 12 Aug 2024 04:26:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44547
IP address blocks: 87.121.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 14:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:44:d6:5e:a8:c1:34:93:d8:07:12:18:66:21:67:5e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 12 04:26:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=800161d994c2ed67c11c984416de26f77ce813b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4d:0a:8f:a2:bf:c2:8c:ef:56:c0:82:db:e7:
cc:80:fb:3b:fb:c8:53:15:7c:3e:8b:0f:af:c1:e9:
fa:c4:1f:de:4b:fe:bd:27:d9:37:db:b9:4a:c9:00:
6f:6d:24:a7:8f:0a:fc:47:08:bc:cd:08:4a:3a:db:
f2:29:68:e4:f7:ac:92:73:24:d7:28:2a:a0:33:1a:
f8:97:56:fc:12:1c:57:43:bb:ce:62:76:c7:c9:03:
9a:a0:92:99:87:82:53:75:02:5d:23:00:8a:b5:e8:
7a:8c:f7:ba:8f:1f:71:08:e2:55:f7:b1:14:84:fe:
f0:13:a1:92:88:9c:62:45:db:24:aa:f4:8a:77:c0:
85:77:0c:c1:62:51:93:c0:95:97:de:04:8d:7c:16:
47:30:29:9d:ae:a5:bb:d8:1d:18:77:b9:20:e8:43:
2c:f2:46:c5:80:58:f9:13:fa:e7:54:cf:df:e5:4c:
55:9a:e7:a0:b9:f3:6a:ce:dd:4d:66:2b:6c:52:6e:
38:65:44:9a:16:96:be:48:1f:33:bc:96:3e:cf:57:
a1:c5:de:91:ee:16:1c:c2:75:98:55:b3:7b:f5:7b:
b4:bb:2d:9f:5f:71:ef:17:4a:e6:9f:37:11:e1:d9:
14:2a:ed:81:c6:fd:c9:3c:77:8f:6c:c5:48:d5:62:
55:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:01:61:D9:94:C2:ED:67:C1:1C:98:44:16:DE:26:F7:7C:E8:13:B6
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gAFh2ZTC7WfBHJhEFt4m93zoE7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.103.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f2:03:79:d3:c1:d0:a9:0a:1b:b1:42:ba:dd:9b:b8:cf:42:
b8:b9:90:c4:96:ed:56:bd:47:34:4e:32:51:4a:93:62:d0:5b:
b2:6c:d1:f4:d3:ff:3b:64:65:28:19:60:b6:85:95:01:df:3e:
a2:8c:13:19:97:24:5f:69:a9:d2:03:35:18:29:bb:ae:ca:7a:
73:0b:70:ff:c8:bd:c0:dc:13:cf:ea:f9:2c:5a:74:96:b8:5e:
ce:1b:1d:b4:68:2e:8b:af:84:b2:82:37:e8:bb:f4:82:24:80:
d2:a4:bf:f9:0f:93:8f:6b:5b:29:f5:68:e4:bc:22:4a:50:03:
59:f1:f5:f5:34:91:53:b6:99:49:70:47:be:14:70:97:9a:5a:
ef:92:45:81:5e:b5:90:4f:a4:32:e1:a8:82:39:94:ef:af:8f:
3b:59:3f:2f:0e:12:38:71:97:e0:c7:94:1f:08:44:1c:6b:5e:
7a:3f:28:99:52:ad:b1:dc:3c:51:a4:83:0e:a8:d6:7f:a3:bd:
0d:2c:bd:d7:f1:90:37:7f:2b:6b:1d:2a:77:e9:89:da:bb:ad:
cc:6b:c8:c1:d8:6e:e6:02:0a:da:7c:55:95:f2:74:bc:9e:7e:
df:58:ed:55:48:f9:4c:bf:dd:cf:79:ca:85:02:a7:da:e0:46:
db:0c:f5:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 19:06:12 2024 by rpki-client on console-ams.rpki-client.org