Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/56f2e9-72aa-4a41-8946-182432a96dbd/1/GpEBsqVTqtbco9Jg8NgCaDqh7kE.roa
File: GpEBsqVTqtbco9Jg8NgCaDqh7kE.roa (raw, json)
Hash identifier: k9Gd5a61n2DgKLK4FGRYMEFE+7jub1siRGaxojKsmVc=
Subject key identifier: 1A:91:01:B2:A5:53:AA:D6:DC:A3:D2:60:F0:D8:02:68:3A:A1:EE:41
Certificate issuer: /CN=daac15b782bc32747b538dec2a222416cd684825
Certificate serial: 018BE4CF6F41649FFE52669DF4CA0D25FD64
Authority key identifier: DA:AC:15:B7:82:BC:32:74:7B:53:8D:EC:2A:22:24:16:CD:68:48:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qwVt4K8MnR7U43sKiIkFs1oSCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/56f2e9-72aa-4a41-8946-182432a96dbd/1/GpEBsqVTqtbco9Jg8NgCaDqh7kE.roa
Signing time: Sat 18 Nov 2023 23:41:21 +0000
ROA not before: Sat 18 Nov 2023 23:41:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216316
IP address blocks: 193.3.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e4:cf:6f:41:64:9f:fe:52:66:9d:f4:ca:0d:25:fd:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daac15b782bc32747b538dec2a222416cd684825
Validity
Not Before: Nov 18 23:41:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a9101b2a553aad6dca3d260f0d802683aa1ee41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:96:d3:a9:51:51:a1:b0:ed:2a:e8:00:f1:30:
6c:b9:e6:df:82:20:f5:e8:15:d9:3d:31:50:13:f3:
88:62:be:00:7d:27:50:cf:b8:17:97:f9:63:e7:d1:
43:e9:4c:36:bb:f4:e5:89:5b:d6:5c:e0:75:4d:08:
ae:77:bc:5a:41:eb:45:bc:74:c6:09:6b:f1:f4:a2:
d9:3d:f3:9f:bb:a2:39:be:20:f0:1b:1e:b7:4e:4d:
59:6f:ad:9d:37:12:5a:60:2a:00:71:30:75:c6:31:
87:65:dc:09:58:74:f5:a8:f6:46:ef:7d:dd:46:f0:
85:81:62:16:3f:72:d9:a4:91:0f:d4:b4:e0:0f:b7:
b1:0b:59:c4:b1:92:84:af:62:27:5b:b8:0c:20:05:
11:9f:03:74:2f:44:76:24:48:d1:4c:0f:a6:fc:e0:
be:dc:7b:9a:71:bb:ed:15:c1:b4:bd:2f:e2:b0:1e:
5b:85:fc:77:88:91:e8:ff:94:3e:b1:0a:84:19:39:
40:d3:0d:2c:bc:82:66:c9:f2:f6:6b:a0:50:39:a1:
5c:c4:a7:21:aa:b1:b4:48:9c:03:dd:77:c3:c7:49:
73:56:1a:3e:c5:73:78:3c:b8:8c:f9:3e:d7:10:52:
53:8f:6d:56:79:39:57:02:92:8c:5e:98:ab:11:54:
4b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:91:01:B2:A5:53:AA:D6:DC:A3:D2:60:F0:D8:02:68:3A:A1:EE:41
X509v3 Authority Key Identifier:
keyid:DA:AC:15:B7:82:BC:32:74:7B:53:8D:EC:2A:22:24:16:CD:68:48:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qwVt4K8MnR7U43sKiIkFs1oSCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/56f2e9-72aa-4a41-8946-182432a96dbd/1/GpEBsqVTqtbco9Jg8NgCaDqh7kE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/56f2e9-72aa-4a41-8946-182432a96dbd/1/2qwVt4K8MnR7U43sKiIkFs1oSCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.38.0/24
Signature Algorithm: sha256WithRSAEncryption
18:49:8d:d8:0d:20:29:30:3f:af:f0:94:b7:de:37:c8:f9:97:
04:28:aa:be:09:de:45:78:05:47:08:76:b9:10:ab:56:c5:7e:
b4:ec:42:b5:84:3c:9e:2b:ff:95:5f:50:a5:62:cd:95:fa:f8:
e5:89:26:46:0b:c9:bf:c7:e7:29:1e:f8:bc:f7:81:e1:c1:67:
62:68:a9:be:5e:3d:f1:ee:ad:d5:e4:e2:5c:23:88:44:d8:10:
d1:43:a6:15:d3:7e:34:3d:56:d9:db:69:82:62:41:46:03:3d:
26:fc:21:b4:f8:f5:c3:42:ac:0d:e4:e2:39:5b:11:cc:cf:72:
93:54:63:79:ea:21:1f:4b:1c:a0:be:1f:ac:6b:ac:38:40:1a:
3a:1a:48:01:ad:15:c2:b0:79:77:1d:95:35:bf:ce:e7:7d:cb:
65:ed:2e:fa:7e:5b:66:82:ff:67:16:0f:a9:c1:c7:e9:16:df:
1d:21:f9:7a:c1:c4:5c:d2:9f:c0:bb:a2:0a:35:0f:2b:38:2f:
e1:35:5f:62:1d:45:67:9b:a0:55:02:85:d6:a2:84:26:3a:1b:
42:1e:d0:ef:e1:38:c5:5e:b5:f2:d7:76:19:f0:44:3c:9e:8a:
90:6d:4d:cf:60:ae:1b:57:b2:01:fe:ec:73:71:60:36:0a:11:
54:25:9c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:36 2024 by rpki-client on console-fra.rpki-client.org