Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/GHX3xhV1X45cCHzeyHE74EmEa9Y.roa
File: GHX3xhV1X45cCHzeyHE74EmEa9Y.roa (raw, json)
Hash identifier: VihcHvWoqe9fPUtBeVah+PHYLQRFzq5tMoSQwZsZ3Io=
Subject key identifier: 18:75:F7:C6:15:75:5F:8E:5C:08:7C:DE:C8:71:3B:E0:49:84:6B:D6
Certificate issuer: /CN=09c50efe13aadf5423b04f0ddca8b3288395823e
Certificate serial: 01856F0B723913A400F268374F4A74BCD838
Authority key identifier: 09:C5:0E:FE:13:AA:DF:54:23:B0:4F:0D:DC:A8:B3:28:83:95:82:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CcUO_hOq31QjsE8N3KizKIOVgj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/GHX3xhV1X45cCHzeyHE74EmEa9Y.roa
Signing time: Sun 01 Jan 2023 20:34:59 +0000
ROA not before: Sun 01 Jan 2023 20:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51964
IP address blocks: 194.24.8.0/24 maxlen: 24
194.24.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:72:39:13:a4:00:f2:68:37:4f:4a:74:bc:d8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09c50efe13aadf5423b04f0ddca8b3288395823e
Validity
Not Before: Jan 1 20:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1875f7c615755f8e5c087cdec8713be049846bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bc:05:5a:b7:e2:5a:f4:62:74:87:cf:44:bd:
8a:f8:30:19:ba:69:18:8b:16:cc:ce:fc:52:37:d1:
da:a8:a3:59:fd:90:4b:41:9d:b6:0a:8d:60:22:de:
2d:34:a0:78:25:47:71:29:21:98:bd:00:b6:dc:2f:
df:c0:6a:ed:8e:57:28:2f:28:5c:30:da:d3:39:8a:
71:4f:c0:42:b9:c4:68:b9:7e:33:5a:b5:dd:37:23:
f0:da:82:46:a9:b0:92:32:38:a9:d4:e6:5e:ab:78:
0b:8c:d3:eb:4d:4e:d1:4c:71:68:ad:53:81:4c:11:
f5:46:7e:21:c3:93:04:48:0c:e1:9d:16:c0:53:0d:
e7:e3:a1:a3:59:ea:18:73:f6:19:0a:b2:25:08:db:
bc:8c:2a:90:d1:41:48:93:80:1c:ef:8d:55:b4:85:
8d:ab:f2:55:85:b9:9d:37:52:af:99:5e:75:0f:89:
ca:54:fd:bb:ab:e5:91:d2:9c:d4:bd:b8:ad:a3:b2:
b9:27:ae:3d:70:6c:1f:81:e9:8a:ff:f9:84:c7:b7:
f1:1f:5f:aa:33:3c:bc:1c:13:47:d7:2d:cd:0e:84:
99:13:0a:dc:a7:1a:12:92:36:a3:54:ee:17:9e:bf:
e7:ea:ca:72:08:f9:d4:01:54:4a:69:71:6b:80:ac:
9a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:75:F7:C6:15:75:5F:8E:5C:08:7C:DE:C8:71:3B:E0:49:84:6B:D6
X509v3 Authority Key Identifier:
keyid:09:C5:0E:FE:13:AA:DF:54:23:B0:4F:0D:DC:A8:B3:28:83:95:82:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CcUO_hOq31QjsE8N3KizKIOVgj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/GHX3xhV1X45cCHzeyHE74EmEa9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/CcUO_hOq31QjsE8N3KizKIOVgj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.24.8.0/24
194.24.10.0/24
Signature Algorithm: sha256WithRSAEncryption
84:1f:c6:ee:85:0d:6e:c7:e1:13:ca:03:fd:6d:64:1a:cc:d0:
dd:59:9c:96:b8:c4:52:f1:57:db:42:79:91:64:f1:b0:bb:b2:
88:e4:5b:f0:b9:70:8d:53:35:17:d0:c4:33:b4:14:9a:4d:06:
b2:f4:78:62:1a:62:ae:a3:0b:93:07:06:c9:e2:fc:03:9d:51:
a0:36:bf:c8:00:3c:25:6f:f3:b7:8a:e9:cc:a4:96:aa:87:17:
ba:56:15:be:bc:ca:9a:5e:84:0d:cf:60:85:27:f6:27:86:17:
72:bd:f2:8a:c2:7f:b8:84:ad:6b:a6:96:84:d0:47:d2:f1:cb:
f6:4e:4d:14:80:f0:0a:9a:32:6a:a0:68:d8:94:9c:0e:f9:98:
d6:7d:56:39:32:c2:8c:20:8f:12:36:83:d2:54:4f:2a:48:58:
a0:92:28:d9:73:80:40:73:53:b1:5a:c8:c2:a4:95:f8:7a:88:
ca:23:21:ff:32:35:ec:f6:50:f1:b2:aa:7e:c4:8c:c0:22:5b:
76:98:b6:c9:14:87:c2:aa:e5:26:e7:f6:b1:77:7e:55:4d:5c:
42:c4:8d:cf:46:fb:fd:67:4b:ac:ab:4d:71:10:aa:2e:9a:3b:
69:62:65:d6:ab:4c:9b:5f:60:f4:4d:fc:f2:2c:51:61:7f:5b:
28:27:5a:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:54 2024 by rpki-client on console-fra.rpki-client.org