Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/117b96-fe6d-4ac3-b499-23399b128639/1/gB9B_qPoqJZCgFE0aZun9LgpPOg.roa
File: gB9B_qPoqJZCgFE0aZun9LgpPOg.roa (raw, json)
Hash identifier: GOwqRhJoFiMtJAwdqe7qE2C+GnlDExA5s92qTQdGlHc=
Subject key identifier: 80:1F:41:FE:A3:E8:A8:96:42:80:51:34:69:9B:A7:F4:B8:29:3C:E8
Certificate issuer: /CN=b236f231f35beef1bc6c2fc241750b4460f468c3
Certificate serial: 0188696E1F25558E54F93B2763FC35DB211E
Authority key identifier: B2:36:F2:31:F3:5B:EE:F1:BC:6C:2F:C2:41:75:0B:44:60:F4:68:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sjbyMfNb7vG8bC_CQXULRGD0aMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/117b96-fe6d-4ac3-b499-23399b128639/1/gB9B_qPoqJZCgFE0aZun9LgpPOg.roa
Signing time: Mon 29 May 2023 21:33:24 +0000
ROA not before: Mon 29 May 2023 21:33:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25193
IP address blocks: 194.150.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:69:6e:1f:25:55:8e:54:f9:3b:27:63:fc:35:db:21:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b236f231f35beef1bc6c2fc241750b4460f468c3
Validity
Not Before: May 29 21:33:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=801f41fea3e8a89642805134699ba7f4b8293ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bd:12:64:ad:ad:8b:ec:8f:7f:35:d3:0e:cc:
01:6e:bf:9f:78:93:82:bd:b0:1e:4b:cf:5d:ee:cd:
8e:ca:79:11:2a:65:bd:a1:58:5a:ee:66:4d:ef:e7:
18:c0:a1:57:d7:79:6b:72:b2:ba:6b:dc:1c:28:51:
57:1c:7a:a8:fc:41:f8:29:bc:61:a9:e8:ae:e9:a0:
44:d6:ee:98:59:2a:fe:5e:a9:dc:32:d3:3b:7e:47:
34:cb:01:c4:f1:7d:3e:50:05:01:c3:68:b1:b1:e7:
1b:3c:52:c1:b9:95:94:e5:27:d6:a6:98:4d:ec:7f:
7b:0a:fd:2c:8e:60:18:c3:94:62:85:60:90:db:5a:
77:32:11:04:c9:ce:18:f6:fa:41:c8:c3:7b:c9:55:
5a:12:19:d9:b3:f8:da:92:b7:f8:5a:43:aa:d3:cd:
b4:e4:54:10:70:d8:33:f4:23:91:ec:3e:8f:47:91:
66:2d:c6:46:a6:c5:15:80:91:43:7c:36:fb:32:b3:
d0:a1:06:a9:33:9f:fd:07:0f:8e:5b:42:f4:76:58:
2d:46:98:62:5d:43:44:76:4e:95:8b:27:3b:5a:e1:
fb:20:2d:2d:2e:2d:e8:38:10:c4:bb:23:c9:28:5b:
11:67:12:3b:ea:d3:94:fe:ad:d3:b7:e2:6e:a0:97:
e4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1F:41:FE:A3:E8:A8:96:42:80:51:34:69:9B:A7:F4:B8:29:3C:E8
X509v3 Authority Key Identifier:
keyid:B2:36:F2:31:F3:5B:EE:F1:BC:6C:2F:C2:41:75:0B:44:60:F4:68:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sjbyMfNb7vG8bC_CQXULRGD0aMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/117b96-fe6d-4ac3-b499-23399b128639/1/gB9B_qPoqJZCgFE0aZun9LgpPOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/117b96-fe6d-4ac3-b499-23399b128639/1/sjbyMfNb7vG8bC_CQXULRGD0aMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.233.0/24
Signature Algorithm: sha256WithRSAEncryption
00:64:78:ee:d0:ef:2b:4a:e2:23:9b:9d:00:86:96:20:02:fb:
22:2a:22:b6:84:80:a6:d8:3d:40:86:d4:c4:ca:ff:ad:49:46:
69:0f:48:36:18:7b:64:5d:f2:9d:ae:6e:d2:40:92:0f:e1:dc:
4c:c9:2b:af:2b:49:3b:2f:34:93:aa:a2:06:ae:bd:ad:ae:6f:
03:dc:0f:30:87:98:7d:65:22:32:47:2b:f4:8a:6d:32:46:4d:
f9:2d:ae:03:07:29:a4:d5:b1:62:e6:82:01:bd:a6:9b:68:4d:
9b:e7:e1:33:bc:9c:26:d3:cd:16:48:6f:b2:41:8d:cb:4f:68:
d0:42:63:e0:68:a1:d1:db:c1:89:9a:b4:b9:83:a4:e1:28:9d:
1f:46:5d:a0:71:78:81:da:41:57:d0:a4:76:4f:75:94:a8:f4:
04:b3:f6:63:97:22:b2:29:79:79:02:35:73:6f:f6:7d:77:74:
a1:eb:7f:57:e1:9e:5e:d0:2e:c4:9d:58:02:ee:41:1b:95:f7:
54:b1:3d:82:a9:a3:44:dc:b7:44:0e:33:88:84:95:a6:f7:67:
18:d3:5e:e2:e0:fc:6e:fc:25:94:3d:53:98:dd:4b:85:51:51:
f8:21:8f:8c:c9:fc:0e:4f:c5:ef:45:50:03:cf:9a:3a:1e:28:
45:35:70:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:34 2024 by rpki-client on console-fra.rpki-client.org