Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/gbxJDB2uk3Xp5Jq7aSbR9xB3fBw.roa
File: gbxJDB2uk3Xp5Jq7aSbR9xB3fBw.roa (raw, json)
Hash identifier: RUdOLDV7GgOenvmZbs9wqxxTKW+WcoXWxxiZPkwdsw4=
Subject key identifier: 81:BC:49:0C:1D:AE:93:75:E9:E4:9A:BB:69:26:D1:F7:10:77:7C:1C
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 01941F8C66C025A25D69206CA8D955BEEF24
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/gbxJDB2uk3Xp5Jq7aSbR9xB3fBw.roa
Signing time: Wed 01 Jan 2025 01:48:02 +0000
ROA not before: Wed 01 Jan 2025 01:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51178
IP address blocks: 93.88.172.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 28 Jan 2025 11:52:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:66:c0:25:a2:5d:69:20:6c:a8:d9:55:be:ef:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 01:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=81bc490c1dae9375e9e49abb6926d1f710777c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7f:5b:0b:f2:d8:b7:94:77:06:e6:c3:59:a8:
aa:83:8f:19:69:e4:e4:df:0e:23:4a:a1:a1:19:c3:
eb:03:13:dc:c8:d8:45:a7:90:f0:92:09:ff:bb:82:
05:f6:16:b9:aa:18:a2:eb:74:2d:ee:04:f7:76:f1:
ca:76:eb:13:bc:c0:a4:d9:2e:e6:5d:17:a1:14:49:
a3:27:a2:20:b6:2b:8d:e7:60:2f:51:fb:68:bf:bd:
04:5c:23:bd:15:f1:a1:6d:43:e4:9b:6f:25:fd:38:
f7:39:b5:ac:32:f1:76:56:a8:05:5f:7f:03:d4:f3:
d1:3b:de:98:69:8a:bb:7c:d0:02:00:00:83:82:27:
d3:70:c6:d7:d5:94:6c:6a:f0:1c:83:87:f9:47:c8:
f7:a2:2a:b4:90:c6:7f:5f:99:5c:2a:ea:d0:cc:68:
76:d1:da:42:7a:52:99:15:89:85:47:8b:86:83:dd:
17:cf:d2:43:91:54:c0:9c:92:fe:39:dc:6b:1a:59:
cc:ae:b6:de:d0:39:c6:36:61:04:7a:46:75:fb:f1:
dc:fa:9e:57:9f:43:31:23:cc:ad:16:c0:02:85:9e:
6b:37:39:1b:27:74:ac:5d:b2:c2:b8:ad:e3:0a:2b:
26:cb:6a:70:6c:05:73:55:cf:fd:b7:ab:7c:54:b5:
54:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BC:49:0C:1D:AE:93:75:E9:E4:9A:BB:69:26:D1:F7:10:77:7C:1C
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/gbxJDB2uk3Xp5Jq7aSbR9xB3fBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.88.172.0/22
Signature Algorithm: sha256WithRSAEncryption
89:d7:1a:7d:8b:21:c2:a2:d4:c6:ac:05:8f:f0:25:58:a4:33:
76:97:6e:2c:3b:95:86:76:fc:b6:59:dd:c0:fb:46:e0:9b:a4:
18:de:a6:5e:87:97:ff:49:61:78:95:9d:bd:07:54:1e:52:cd:
56:28:c9:52:bc:e2:bc:8b:99:f1:1f:b1:48:40:3a:8a:80:cb:
d3:c7:6d:aa:f6:09:f4:7e:00:fa:4a:a2:a3:18:0d:8c:e4:de:
f1:e5:ba:db:ac:83:ee:71:9f:6e:61:0d:63:fc:e5:01:84:64:
da:f7:d7:f4:1d:0a:d0:19:6b:2b:0e:40:0a:e5:2c:56:f1:75:
43:e2:f0:0f:1d:07:71:ee:4c:91:5e:a4:05:af:b5:45:1b:c9:
2b:f0:ee:ed:66:4b:bc:3d:dd:b9:dd:9e:b1:dc:6b:98:98:8b:
fe:dc:ff:39:b9:ca:1a:3e:a5:b4:ac:c6:55:20:66:8d:f3:20:
21:5a:1a:91:3b:37:4a:5b:24:4c:5f:bc:1d:ef:81:60:59:6d:
4e:8b:35:3a:13:72:c7:7a:d4:45:e2:f2:1c:75:41:8e:d8:06:
cc:75:1b:c9:d2:22:2c:a6:c3:69:16:42:ea:bc:7e:34:d7:29:
c4:cc:6c:2b:43:b9:63:9f:38:b3:17:22:8c:75:1e:36:ba:f8:
7b:7c:7b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:47:09 2025 by rpki-client