Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/G8_cTEB1nPwcvXVeh6-pC_heKRo.roa
File: G8_cTEB1nPwcvXVeh6-pC_heKRo.roa (raw, json)
Hash identifier: ZKbQ0GKrt1MN8vrg8+Hj7IxVA1DxdqfWXq4Wb5wjosY=
Subject key identifier: 1B:CF:DC:4C:40:75:9C:FC:1C:BD:75:5E:87:AF:A9:0B:F8:5E:29:1A
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF807DEC087835D6A57A1BEEDB1F65
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/G8_cTEB1nPwcvXVeh6-pC_heKRo.roa
Signing time: Sun 01 Jan 2023 15:24:50 +0000
ROA not before: Sun 01 Jan 2023 15:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207684
IP address blocks: 193.59.16.0/22 maxlen: 22
193.59.14.0/23 maxlen: 23
193.59.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:80:7d:ec:08:78:35:d6:a5:7a:1b:ee:db:1f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bcfdc4c40759cfc1cbd755e87afa90bf85e291a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:44:c0:3c:d2:b4:97:d4:d5:21:7c:2f:7d:a1:
db:ff:14:a0:49:c0:eb:c2:eb:34:9f:08:d5:97:59:
6a:b0:8f:ea:52:ae:26:d8:94:85:70:92:dc:75:6b:
83:1a:fb:a1:2d:f1:a6:78:dc:74:07:39:08:55:84:
65:27:e5:c8:51:d9:8d:a2:7c:25:1e:aa:eb:c9:e3:
1c:87:dc:43:0f:9b:75:91:ec:8c:5e:3b:d2:ca:e6:
a0:b3:a2:a7:a7:ea:f8:cb:5e:2c:86:9f:ab:6a:5d:
24:9e:fc:82:8f:e7:fa:b4:58:44:37:fb:23:c3:7f:
ce:e0:75:21:df:e3:91:f3:14:9c:eb:fb:9c:f4:90:
25:88:db:af:52:84:24:5a:96:a3:51:c1:70:2a:53:
60:91:32:8c:2b:8c:49:ec:6f:c6:2d:db:a3:ac:2c:
88:66:cf:14:25:bf:f9:52:b3:ec:2c:13:c4:c4:97:
a3:b7:7f:63:e4:fb:e3:4a:64:d6:8c:2e:be:72:b9:
ef:af:3e:cb:30:f1:18:43:64:c9:e6:f6:57:d5:94:
30:f2:0f:75:0e:97:71:a5:26:59:97:83:a0:6f:98:
3a:19:21:b7:14:d0:14:d0:a7:ed:51:3e:7b:49:5e:
34:3d:b2:6b:89:21:a5:21:0e:fa:db:2d:de:32:c3:
a1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CF:DC:4C:40:75:9C:FC:1C:BD:75:5E:87:AF:A9:0B:F8:5E:29:1A
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/G8_cTEB1nPwcvXVeh6-pC_heKRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.14.0-193.59.19.255
193.59.24.0/22
Signature Algorithm: sha256WithRSAEncryption
68:4b:d0:a9:82:51:59:e2:6b:b3:0c:71:6e:40:e4:e6:e0:ce:
e3:04:b0:cb:d5:5a:5b:f9:ac:e3:3d:5c:12:23:2e:2b:9a:ef:
c5:9f:1d:23:79:e5:e1:cd:5c:45:b0:bc:df:72:8f:dd:ff:ed:
ad:1c:f8:93:9f:15:9b:a1:c0:ac:51:73:1c:3e:37:9e:9a:09:
be:50:c3:e0:50:5f:2f:57:b8:ab:06:ae:8a:99:49:44:eb:14:
91:c3:1c:34:72:92:bc:07:a6:ed:23:e8:db:00:19:0b:a8:70:
f3:45:22:79:1b:f1:2d:ba:39:c8:7b:a3:fa:2f:29:45:d0:d8:
03:15:1e:f6:18:60:d8:c1:ff:2c:f4:e8:7c:6b:29:3b:ee:f3:
ad:b3:98:ff:6b:8c:ad:61:83:b4:c2:ef:cf:de:36:d5:68:c5:
dc:b8:fa:e6:e0:11:a4:69:25:e0:06:1a:1e:b5:83:ea:06:cf:
b7:90:55:30:1b:2c:db:af:e9:f9:a2:6a:a5:d3:dc:d4:88:90:
60:4f:fa:40:3a:eb:39:01:0e:11:aa:42:67:72:08:f5:8b:91:
e2:ef:b7:05:31:f1:0c:3c:dc:7e:c8:0d:34:c2:11:60:9b:89:
00:9e:61:a7:89:81:d0:dc:90:2e:c2:6b:53:f8:ca:e5:8f:53:
7b:04:08:78
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org