Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/GGx8Pp600LjuAppdURrw8K66cDY.roa
File: GGx8Pp600LjuAppdURrw8K66cDY.roa (raw, json)
Hash identifier: mpSOND/CrC5eoPmKh+v0BhdEyFdSLfEY/kDAvrTtNbU=
Subject key identifier: 18:6C:7C:3E:9E:B4:D0:B8:EE:02:9A:5D:51:1A:F0:F0:AE:BA:70:36
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018703FA73B794C0D2C23122C4F48D645BCD
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/GGx8Pp600LjuAppdURrw8K66cDY.roa
Signing time: Tue 21 Mar 2023 11:42:37 +0000
ROA not before: Tue 21 Mar 2023 11:42:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47418
IP address blocks: 193.233.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:03:fa:73:b7:94:c0:d2:c2:31:22:c4:f4:8d:64:5b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 21 11:42:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=186c7c3e9eb4d0b8ee029a5d511af0f0aeba7036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ab:a5:20:da:e6:c5:78:5c:c2:9f:37:5f:a6:
20:1c:27:ce:96:e7:20:a9:db:c6:ff:0f:ed:79:78:
56:fe:85:bb:55:f4:f5:72:d5:fb:b1:66:ee:8e:e7:
f8:42:62:af:34:07:56:91:74:7a:ba:bc:f0:2a:37:
8c:37:49:3f:40:f9:24:2e:8b:e6:5c:00:71:e9:89:
32:f4:dd:19:5a:30:60:ca:e7:c5:83:88:9e:5d:bb:
7a:ba:89:a8:86:b6:d5:1a:5a:59:4f:65:15:32:5b:
a4:96:07:05:56:16:64:6b:29:7c:29:49:1f:b4:72:
39:4e:fa:15:4e:f2:92:a2:13:97:56:fe:4d:90:ac:
64:ee:fa:08:99:28:c8:0d:a5:5e:e9:c5:72:3e:7a:
cf:13:7b:ac:5a:aa:19:b1:c0:ec:51:00:39:aa:ec:
9e:20:2e:4a:66:d5:9e:73:67:99:b4:1d:c0:d9:8a:
b2:79:a3:9a:6b:7c:91:48:c6:0d:22:b5:11:a5:7b:
c0:76:48:6c:aa:dc:19:35:a3:3c:6f:12:c5:74:82:
7d:55:63:ba:15:90:51:62:11:1c:9c:2d:2b:b8:69:
be:f8:7e:05:dc:8f:c4:39:9f:66:17:a2:fa:1e:e9:
dc:d2:d2:e1:2a:75:3e:c8:8f:56:89:78:94:c1:59:
2c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6C:7C:3E:9E:B4:D0:B8:EE:02:9A:5D:51:1A:F0:F0:AE:BA:70:36
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/GGx8Pp600LjuAppdURrw8K66cDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.235.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:20:4e:47:eb:17:14:58:f9:2a:e7:41:df:8c:1e:2c:24:78:
f1:c2:9f:ca:d9:b8:29:53:48:88:6c:b1:0d:85:61:5e:2c:ff:
1b:1b:0b:46:b7:0c:aa:cb:32:4a:78:63:22:ca:f9:22:4a:f8:
ac:61:4b:c8:1d:fe:b9:3d:25:10:76:11:6d:74:29:9f:fa:37:
2b:36:1e:6c:98:26:1d:07:e9:bb:c6:8c:a7:6f:97:b7:e2:bb:
c5:a9:e7:b4:9e:91:59:a7:d3:f2:cc:89:58:9b:e5:34:3b:e0:
a3:97:fd:6a:a2:a8:cb:fd:a9:26:a4:61:ea:cd:3a:42:e8:4f:
c7:aa:bb:0a:66:db:79:ea:32:6c:d0:9f:38:6d:ad:28:7f:99:
7f:58:7f:3d:f0:e5:f8:2e:47:2a:9e:57:78:1a:03:fe:35:5a:
7e:7b:5d:83:67:15:70:1c:e6:d0:55:58:5f:ac:a5:24:7d:5a:
4a:a2:e8:7d:9a:db:0a:61:6d:08:28:e3:4e:25:14:a8:ac:da:
88:b3:8b:d6:ee:76:31:ff:13:4a:24:06:5e:21:0e:20:15:a0:
89:89:cc:aa:ca:ff:13:08:a3:d8:5d:4e:65:8b:e3:23:48:00:
fe:32:b8:f1:64:ba:f5:5e:7f:2f:7e:84:fd:46:7c:44:27:84:
2a:d6:e7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org