Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/G2g8sJtrWZgyE0WMkOBcRVIuH2k.roa
File: G2g8sJtrWZgyE0WMkOBcRVIuH2k.roa (raw, json)
Hash identifier: 2Z1dMHQBUi/DM72KRrviaDSp+9WUDQtya7LojtvJ4OY=
Subject key identifier: 1B:68:3C:B0:9B:6B:59:98:32:13:45:8C:90:E0:5C:45:52:2E:1F:69
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018A4D2636755961F27088C6DBEF4603C22C
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/G2g8sJtrWZgyE0WMkOBcRVIuH2k.roa
Signing time: Thu 31 Aug 2023 19:51:04 +0000
ROA not before: Thu 31 Aug 2023 19:51:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198711
IP address blocks: 195.88.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Sep 2023 19:57:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4d:26:36:75:59:61:f2:70:88:c6:db:ef:46:03:c2:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Aug 31 19:51:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b683cb09b6b59983213458c90e05c45522e1f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:29:6c:88:d0:8e:bb:55:9b:a9:e4:64:2f:f3:
23:57:46:9c:63:3e:c7:a0:37:08:90:14:66:63:4d:
25:ba:82:5d:cd:4a:30:5f:46:94:55:5e:46:46:b1:
2f:ca:ff:3a:a5:c4:97:c9:7c:62:a0:81:ab:95:f4:
2f:11:67:5c:a4:ef:50:60:9d:48:5b:2b:67:ba:fc:
d6:64:92:11:1e:21:47:21:28:68:2c:f4:2e:15:93:
6d:43:e0:ac:df:b0:0b:d5:c9:45:d3:d0:e1:f5:34:
55:a1:0e:9d:33:52:a2:91:75:2a:6d:b3:8d:3e:af:
09:f7:a8:67:85:91:0d:b0:93:63:67:a0:61:17:0d:
18:4c:f1:24:d1:a7:27:d5:7b:79:cc:5a:d3:5d:ce:
d8:ac:fd:f2:20:0e:4b:83:a9:73:64:5f:c5:9b:87:
bd:5f:28:b7:d5:95:97:63:e1:3a:30:d4:ba:81:9c:
cb:99:b5:32:c7:25:c5:71:16:8e:91:f9:5d:50:7f:
54:64:90:f2:7b:3c:26:bb:1b:d1:e1:7f:e5:0f:d5:
8e:de:1d:ce:e3:ba:9a:11:04:d2:76:dd:d0:aa:cd:
4c:9f:33:62:06:f9:a7:87:85:a6:89:16:42:ff:81:
3f:eb:06:b8:ce:5e:de:21:e1:ce:b7:03:17:84:00:
f1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:68:3C:B0:9B:6B:59:98:32:13:45:8C:90:E0:5C:45:52:2E:1F:69
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/G2g8sJtrWZgyE0WMkOBcRVIuH2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.227.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:4e:4d:a9:b8:cc:40:09:23:f9:50:b1:75:35:d4:ed:1c:f0:
ca:f8:94:23:1a:a6:68:d6:a0:67:06:f3:73:71:af:1d:e9:8a:
1f:43:42:2d:fa:36:b4:d2:9b:c3:16:6e:5a:1e:48:43:46:17:
06:e0:16:99:96:77:9e:04:ce:20:fa:c4:dc:cc:6f:c6:87:d1:
86:4a:be:eb:cf:62:e9:e4:15:78:ad:60:f1:9c:98:50:97:19:
72:d0:7f:32:d5:ce:d7:25:e6:dd:40:b9:c8:0a:f7:42:35:b2:
b9:ce:cc:51:bf:1f:b3:4a:3f:1c:a8:f8:40:0e:6a:8e:34:b3:
d8:31:15:88:b7:fa:99:1d:e3:bd:3a:a6:4f:16:35:d8:1d:e5:
48:6d:c7:b8:07:6c:46:b1:6a:e7:8b:cf:d5:3f:c0:08:91:37:
ae:f0:c1:36:33:26:a3:a5:f2:93:b8:6e:0b:d7:b9:d1:9f:48:
88:45:8c:3d:34:24:e5:7b:47:4b:0b:f4:e6:84:9b:55:03:49:
e5:9d:2c:54:72:73:8b:fd:46:15:9e:ef:17:52:81:70:ba:21:
f1:ad:21:f9:19:c1:ca:ea:e9:fd:18:98:b9:a8:0c:69:5f:f5:
29:4d:ef:c1:61:0b:1b:8d:c2:f8:6c:18:5e:f3:67:ba:d3:1c:
9a:73:c0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org