Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GOAwTX2GnYvQZdDE6PPs_rlZfgQ.roa
File: GOAwTX2GnYvQZdDE6PPs_rlZfgQ.roa (raw, json)
Hash identifier: mSAI8eS+0aom6HjcranxtlOvzS9mSLZ7Jc65OnVzkiw=
Subject key identifier: 18:E0:30:4D:7D:86:9D:8B:D0:65:D0:C4:E8:F3:EC:FE:B9:59:7E:04
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018AACB88CFE263E4EBE1CA5DDFDC27F61DB
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GOAwTX2GnYvQZdDE6PPs_rlZfgQ.roa
Signing time: Tue 19 Sep 2023 09:14:50 +0000
ROA not before: Tue 19 Sep 2023 09:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202589
IP address blocks: 85.254.58.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:b8:8c:fe:26:3e:4e:be:1c:a5:dd:fd:c2:7f:61:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Sep 19 09:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18e0304d7d869d8bd065d0c4e8f3ecfeb9597e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ab:fc:fb:a2:da:39:c8:3a:24:ba:ec:18:78:
d2:7c:4c:b4:1c:00:5b:22:01:7b:a2:10:3b:4e:c0:
54:f6:15:64:d8:1b:f5:28:f6:35:12:b3:7c:54:bf:
4a:5e:3d:0c:02:f5:08:da:e9:9a:bd:79:0e:2e:ef:
93:f2:6b:95:d5:0d:16:b0:cb:c4:22:53:59:aa:46:
ec:47:13:31:c7:47:93:88:ce:d4:20:52:50:79:c6:
59:3f:6b:e7:4a:79:e5:a0:4e:b7:9d:c5:f3:2f:b7:
d2:c1:c2:1d:9c:04:48:a4:5b:c9:83:89:ea:c4:17:
04:9b:03:a0:8e:af:f4:0b:bc:b4:3d:3f:43:d3:e5:
ef:3d:88:f3:95:b0:38:c4:7d:88:5a:dd:48:c0:b5:
f0:03:10:0d:38:2c:cb:86:17:28:4f:d0:1b:46:9b:
09:65:4a:e6:9a:4f:f4:33:44:72:5c:4d:ad:71:3b:
a0:76:29:36:9d:7a:2c:38:c2:9e:40:fe:6f:d1:60:
0a:b5:84:9a:e0:ad:98:c3:5d:37:fe:d9:7a:fe:67:
b5:79:b9:1f:ea:b7:f9:99:d1:bd:96:8f:58:6e:32:
a9:f1:f3:6d:b8:aa:a7:d9:1b:02:b2:5d:f9:9e:52:
a9:71:d4:82:c9:9d:22:c2:e1:6e:af:10:fa:96:25:
e6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E0:30:4D:7D:86:9D:8B:D0:65:D0:C4:E8:F3:EC:FE:B9:59:7E:04
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GOAwTX2GnYvQZdDE6PPs_rlZfgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.58.0/24
Signature Algorithm: sha256WithRSAEncryption
83:33:95:1d:06:98:49:57:8d:f1:67:95:0f:64:32:c4:d5:da:
09:85:83:ae:65:74:e2:c2:97:36:2a:7e:26:88:00:61:43:d5:
24:57:28:ff:7d:1f:3a:eb:3d:a1:ea:63:12:5c:aa:29:3d:7c:
39:99:ee:9d:00:5d:0c:c7:1f:b1:53:4b:45:52:fb:d1:9f:2a:
e7:4c:04:74:b2:d3:46:dc:11:24:53:a4:c2:7b:12:df:04:ae:
b6:88:8e:e2:2a:58:2a:0f:9c:a7:b6:73:c2:cd:5e:6f:fe:3e:
4a:f8:a8:35:a1:be:28:59:60:97:5d:0c:82:82:ed:e7:21:49:
db:a7:c5:f9:a8:85:79:80:ec:74:eb:64:de:4c:f6:82:81:d2:
3e:c3:21:78:a3:cb:49:04:dc:83:bd:99:34:34:dc:84:3c:36:
72:ef:a0:c6:97:1a:0f:f1:45:e9:a8:ac:ad:c9:76:75:9b:46:
3e:d0:0b:3b:4e:c0:86:51:66:ab:45:d8:9c:09:f9:5b:ba:6a:
4a:c8:41:4a:cb:55:42:ba:0d:bb:ef:40:41:3d:80:6c:dd:75:
fc:9c:7c:53:73:38:e5:3c:1e:da:8a:d2:f5:c5:80:32:34:16:
2b:79:a1:72:fa:ad:13:29:8e:57:7b:77:ea:94:e7:fb:20:c5:
a1:8e:3d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:38 2024 by rpki-client on console-fra.rpki-client.org