Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/GjZ8ABq-xt_1tSw54vFpaKEIyBs.roa
File: GjZ8ABq-xt_1tSw54vFpaKEIyBs.roa (raw, json)
Hash identifier: WoV/7m53nWbZKO8Jq1U0CZYOdrQI/O16p8tIA0KoiX8=
Subject key identifier: 1A:36:7C:00:1A:BE:C6:DF:F5:B5:2C:39:E2:F1:69:68:A1:08:C8:1B
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 018CC348E1AF2EEA3AA7BA855BDDF311DAE2
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/GjZ8ABq-xt_1tSw54vFpaKEIyBs.roa
Signing time: Mon 01 Jan 2024 04:29:42 +0000
ROA not before: Mon 01 Jan 2024 04:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200436
IP address blocks: 5.42.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jan 2024 12:08:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:e1:af:2e:ea:3a:a7:ba:85:5b:dd:f3:11:da:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Jan 1 04:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a367c001abec6dff5b52c39e2f16968a108c81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a5:cf:37:75:6e:6d:d4:b1:ac:fb:b7:53:73:
7d:bf:67:9a:12:fe:de:f0:77:e9:a6:4d:9e:a5:6e:
93:1f:94:99:e8:8a:bf:e7:2b:c0:2b:4b:20:b2:6c:
42:72:1e:30:c6:53:7a:01:4e:03:f2:ab:c6:ff:de:
27:cf:93:38:70:49:c0:84:fc:43:0b:65:b5:c2:86:
98:a4:c5:31:ce:27:36:db:35:58:ad:ea:1c:ca:8e:
86:72:34:18:97:66:e7:5f:df:c3:87:75:ac:5c:3e:
d2:ea:95:53:08:fa:93:10:57:cb:b2:52:f6:1f:54:
42:b9:f8:71:28:d3:b5:e5:78:ec:b2:c9:ac:b7:43:
1f:49:2d:db:ce:39:41:f6:3b:32:b2:97:53:67:79:
a0:c8:96:ad:3f:54:9b:a9:34:78:19:2a:f2:63:bb:
73:f4:aa:a7:b2:a8:d3:5c:d9:7a:65:9e:c5:95:3e:
a4:4f:b7:a4:b4:2d:dd:ea:dd:0f:42:92:0c:23:07:
b6:91:8f:c6:31:c0:ef:8d:90:ff:60:51:63:25:f6:
9f:ed:34:dd:dc:46:1b:2b:01:97:2b:55:46:72:e6:
b8:82:f7:3b:07:88:e9:9f:52:14:b3:36:ea:74:19:
0e:5f:f6:a0:d8:da:5d:93:08:c2:7f:85:24:c5:52:
d8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:36:7C:00:1A:BE:C6:DF:F5:B5:2C:39:E2:F1:69:68:A1:08:C8:1B
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/GjZ8ABq-xt_1tSw54vFpaKEIyBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.223.0/24
Signature Algorithm: sha256WithRSAEncryption
07:92:aa:2e:26:75:bb:18:a2:2b:ff:d2:39:c5:11:4c:a0:fc:
39:05:ed:7f:81:1c:2d:2c:66:06:dd:00:68:2d:21:86:9e:20:
95:ef:d7:b2:82:ca:01:9e:65:5d:65:90:60:a0:d9:d8:47:12:
ce:9b:6b:41:ca:40:3d:8d:74:c2:e3:c8:2f:2c:f2:3f:2d:24:
3c:9d:df:15:a3:17:f9:36:4a:1c:a4:59:b3:31:ba:dd:c3:94:
ef:0a:7e:23:f1:de:17:e2:d3:6d:c8:87:5c:8b:fa:f7:5e:ad:
4d:1c:5e:da:67:4b:20:21:6c:07:56:11:78:2e:bd:92:46:8a:
97:75:49:2a:74:61:b4:af:f0:11:66:3a:f1:0c:35:be:f0:45:
e0:3f:56:1d:ee:8c:39:fb:7d:85:d4:20:cb:f8:b7:b6:69:54:
5f:6f:e9:73:34:29:9f:14:70:77:35:ba:fe:b3:d0:5f:38:f7:
a6:3f:8b:7a:a4:92:ae:19:b5:e5:6c:d0:50:3a:ce:99:19:3c:
f3:92:de:fa:28:2d:c6:72:d4:35:2a:d2:4f:7c:fd:a0:e9:d3:
0e:e1:fa:1d:08:54:5f:d1:be:f4:d0:9b:bb:33:e8:58:61:03:
1c:03:59:0f:68:be:82:b4:48:c8:2f:10:8b:19:29:7f:48:c7:
73:f9:f3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jan 13 13:18:46 2024 by rpki-client on console-fra.rpki-client.org