Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/gkjvuiikeYXGZPsT-Mv2sGJXwjA.roa
File: gkjvuiikeYXGZPsT-Mv2sGJXwjA.roa (raw, json)
Hash identifier: yZA7aMvQylEu0Z0zmNZJMz8lRl6pWWaK7pMZOcmJxtU=
Subject key identifier: 82:48:EF:BA:28:A4:79:85:C6:64:FB:13:F8:CB:F6:B0:62:57:C2:30
Certificate issuer: /CN=659c356633388e9bd897d000a3f38bc1e546ef4a
Certificate serial: 0185701509E31F67A2C1E9427536D873AE96
Authority key identifier: 65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/gkjvuiikeYXGZPsT-Mv2sGJXwjA.roa
Signing time: Mon 02 Jan 2023 01:25:05 +0000
ROA not before: Mon 02 Jan 2023 01:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2386
IP address blocks: 193.38.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:09:e3:1f:67:a2:c1:e9:42:75:36:d8:73:ae:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=659c356633388e9bd897d000a3f38bc1e546ef4a
Validity
Not Before: Jan 2 01:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8248efba28a47985c664fb13f8cbf6b06257c230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ff:55:6a:1b:6f:ed:58:4c:db:a7:aa:05:4a:
14:84:34:71:87:6d:c8:5d:be:e5:78:eb:3d:af:eb:
13:3a:68:f3:57:f7:d4:eb:ca:bb:aa:d7:ca:93:d0:
9d:9a:47:f6:f3:fc:4a:bc:7a:bd:1e:7b:eb:e0:7a:
56:b6:b6:48:96:b0:70:c3:96:47:67:47:2b:02:9c:
b2:b1:70:a5:7c:f8:a7:03:e1:2e:08:0f:37:ed:74:
9e:7f:4b:b3:1f:9a:63:eb:e7:41:cc:6d:a3:d1:86:
83:0f:f6:50:fa:38:d8:db:de:47:bd:a5:0a:d3:8c:
e6:47:0c:77:dd:ac:ac:df:33:09:82:6b:be:e6:e2:
45:e0:c4:bb:9d:f2:3f:04:94:5b:9d:0a:35:a1:8d:
63:9c:96:bb:b2:e7:32:37:2e:8f:fe:5f:01:e8:4a:
76:6f:b2:a0:bf:69:30:24:15:dd:3f:6e:af:4c:54:
6e:d1:36:e0:b3:bc:20:94:d9:e9:5b:36:dd:4f:63:
5b:78:06:ae:41:1a:56:5b:fe:5b:c5:f9:55:17:82:
03:92:48:5a:be:91:13:6c:4b:a3:c8:98:1c:77:1b:
c7:f8:59:3c:dd:63:2f:85:26:d3:97:5b:9e:22:1f:
77:5c:a8:73:1f:08:e4:83:3f:9d:52:79:d5:20:17:
09:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:48:EF:BA:28:A4:79:85:C6:64:FB:13:F8:CB:F6:B0:62:57:C2:30
X509v3 Authority Key Identifier:
keyid:65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/gkjvuiikeYXGZPsT-Mv2sGJXwjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ZZw1ZjM4jpvYl9AAo_OLweVG70o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.171.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:24:b5:3f:0c:1e:cf:06:99:40:46:e3:1b:10:5d:e1:0f:a5:
c2:d1:f0:05:96:63:92:4c:a3:44:39:36:c6:6c:f7:3f:01:6e:
40:ff:64:08:34:9c:65:3c:10:bf:10:dc:6d:b0:57:cc:9a:96:
0a:b2:1a:47:86:7f:76:1c:67:c3:c9:93:f3:6f:60:ba:e8:d2:
cb:76:ce:04:a6:d6:38:48:67:ba:38:7a:51:12:95:c3:74:84:
91:db:e6:9b:43:d4:5d:9a:17:27:dc:18:2f:c6:e3:b1:fa:cd:
8f:9e:c4:bf:26:a2:aa:b2:a9:4a:d3:25:80:b5:51:b8:28:0a:
e2:1b:36:be:cc:23:54:22:b6:35:b9:ed:40:4c:d8:1a:86:37:
1c:08:7a:00:df:00:08:d5:48:4e:fb:3c:d0:e8:1d:86:bb:53:
8b:64:d8:da:ff:95:f5:b6:2b:1e:39:5d:7f:4e:33:7e:83:2f:
c4:30:1b:00:79:6e:4e:61:a5:a0:b2:2c:0b:9f:de:3b:3a:52:
7d:c1:77:1d:3b:c5:0a:0e:65:46:9a:29:0f:c1:a7:44:92:bb:
b0:cb:1f:c5:e2:16:e0:91:94:2e:11:0f:75:7c:81:34:57:f2:
03:da:4f:a1:16:2d:eb:90:df:ee:35:55:e8:50:31:e1:78:ee:
b1:d3:9c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:41 2024 by rpki-client on console-ams.rpki-client.org