Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/gyCDhaBjvB8kZBtw6GTiOc0Hlek.roa
File: gyCDhaBjvB8kZBtw6GTiOc0Hlek.roa (raw, json)
Hash identifier: +zLIVIj/rbeqOgvJYHez0eIQds7vmrg5mRxJDPEtO2g=
Subject key identifier: 83:20:83:85:A0:63:BC:1F:24:64:1B:70:E8:64:E2:39:CD:07:95:E9
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 0190DFEFE3972E09C187433D9BFCD1DF4038
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/gyCDhaBjvB8kZBtw6GTiOc0Hlek.roa
Signing time: Tue 23 Jul 2024 14:12:38 +0000
ROA not before: Tue 23 Jul 2024 14:12:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214496
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 07:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:df:ef:e3:97:2e:09:c1:87:43:3d:9b:fc:d1:df:40:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Jul 23 14:12:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83208385a063bc1f24641b70e864e239cd0795e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0c:18:a7:4f:56:1a:42:f3:0d:04:3b:5e:9a:
84:55:a5:c8:ba:3a:e1:b4:e6:bb:b5:9e:53:1c:d9:
b2:83:ce:24:6e:0d:74:19:94:e9:71:1d:8b:91:b6:
1a:d9:a0:d4:50:99:5e:0b:f1:67:e7:15:10:66:3b:
6d:7e:86:4a:6e:f1:39:90:f3:a0:58:5c:c3:c5:b9:
57:f5:1b:63:70:13:59:ad:77:15:3e:5d:3f:b8:eb:
10:29:19:1d:b7:78:a8:b5:91:7e:02:26:ef:bb:9b:
c0:49:d1:b3:c8:60:9d:d0:43:9d:c1:61:72:da:1d:
05:40:19:bf:34:be:3f:30:50:ed:3f:4e:05:8c:85:
2a:92:fe:a3:07:b4:27:12:4c:9f:2c:fa:6a:99:14:
53:9d:30:d3:02:dc:94:65:f3:a0:3a:90:d9:8d:c8:
4d:ff:86:c7:49:dc:d7:92:19:d0:75:d5:1e:f4:f1:
cf:2f:18:ed:f5:cd:11:22:aa:66:7e:8c:bb:3a:9f:
96:8c:8e:f6:e5:ae:35:c7:13:ec:e3:3b:cb:c8:f1:
f7:48:93:52:40:fe:48:14:dc:ac:a8:b0:69:ee:ea:
30:38:85:3f:05:69:60:59:51:59:64:f9:92:9a:ad:
36:78:de:87:1a:82:31:85:08:0a:c2:93:d8:21:6f:
45:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:20:83:85:A0:63:BC:1F:24:64:1B:70:E8:64:E2:39:CD:07:95:E9
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/gyCDhaBjvB8kZBtw6GTiOc0Hlek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:0f:99:a0:9a:6b:7e:7d:c8:60:d6:41:14:ab:37:06:01:b2:
1e:cd:d3:9b:f2:31:16:dc:af:c4:07:10:68:76:92:f8:64:25:
d1:50:fa:74:c0:b9:e2:70:06:40:27:cf:80:18:b5:db:c0:3c:
e7:73:71:f5:75:7b:5d:1e:66:d4:3d:ba:58:14:42:25:5e:a5:
85:b4:68:aa:4f:21:d4:f5:59:3c:1a:b5:b5:dc:30:73:1c:d9:
6b:0b:e4:8a:51:16:25:e1:8f:fa:b5:48:93:ec:07:0a:e2:fb:
76:66:48:11:59:88:30:41:2f:b7:11:99:30:20:31:7a:bb:e1:
25:d7:22:88:b7:46:b7:42:e1:64:28:54:16:45:0d:19:94:7b:
6b:cd:42:6e:58:53:14:13:1a:3e:49:ff:55:d2:36:1e:e8:60:
7c:14:98:c1:a6:12:97:56:c3:63:f2:e9:d9:82:14:dc:4f:e0:
b3:cd:a9:36:ce:22:db:fe:07:bf:84:6a:46:06:a6:ee:a4:b4:
12:a6:21:1a:e2:9b:8a:7a:eb:bf:0c:2c:62:0e:a7:f7:27:21:
b0:e8:3e:2d:9f:64:7f:5e:2d:cb:45:bd:b7:52:d7:5f:85:71:
51:5d:9e:6d:dc:a5:88:1d:34:6e:72:d4:92:d2:80:56:8b:8e:
90:2d:3b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 09:27:18 2024 by rpki-client on console-ams.rpki-client.org