Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/gbEQjwnnboqOXRCTyAxWnywEvTs.roa
File: gbEQjwnnboqOXRCTyAxWnywEvTs.roa (raw, json)
Hash identifier: izr/HeTK4nekNmvjIIPp0xJop956DG4Ag2SQv3RjZM0=
Subject key identifier: 81:B1:10:8F:09:E7:6E:8A:8E:5D:10:93:C8:0C:56:9F:2C:04:BD:3B
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F15118B18CB9B680F39B431503A033F
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/gbEQjwnnboqOXRCTyAxWnywEvTs.roa
Signing time: Sun 01 Jan 2023 20:45:29 +0000
ROA not before: Sun 01 Jan 2023 20:45:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211294
IP address blocks: 80.96.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:11:8b:18:cb:9b:68:0f:39:b4:31:50:3a:03:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81b1108f09e76e8a8e5d1093c80c569f2c04bd3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:89:66:c5:b1:5c:88:36:2e:7d:64:22:1d:ba:
e0:15:73:19:61:24:1a:8f:e2:f1:5a:93:01:e9:ba:
10:da:c7:ab:7f:6b:ba:1f:d9:fc:69:81:30:bd:61:
09:f7:80:b7:b8:b9:6e:81:52:14:d9:16:5c:13:92:
7d:31:09:4a:b9:fc:c3:07:e9:90:9c:b0:da:83:cf:
1e:0e:d4:9a:d0:72:14:27:96:fb:67:ff:39:c8:89:
2b:b9:ec:3b:eb:3e:8f:a5:a0:7b:66:a1:6d:b8:55:
a9:30:cd:d5:a2:1b:e2:17:5d:cc:c1:6c:fe:3c:24:
0a:c5:2e:a1:81:7e:11:96:72:16:46:4c:21:d8:e3:
4b:75:15:04:6e:6e:3a:64:93:0c:1c:d2:82:23:59:
34:66:dc:d0:c2:cb:08:e3:aa:88:20:fe:69:b1:a3:
a4:3b:57:20:15:f5:b0:6f:bf:aa:82:93:a2:70:8e:
c3:49:de:d8:c5:fd:86:3a:bf:1c:51:dc:37:91:bc:
45:87:e0:de:23:44:e0:bd:7e:1e:78:d2:34:e2:34:
40:b2:b7:6e:b8:f4:dd:a8:78:dc:39:4b:3b:ac:68:
11:97:14:98:9d:99:31:3b:d4:5b:53:64:10:01:6b:
c9:07:cc:ed:90:ac:d9:91:b0:d7:30:ef:25:c4:2b:
82:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B1:10:8F:09:E7:6E:8A:8E:5D:10:93:C8:0C:56:9F:2C:04:BD:3B
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/gbEQjwnnboqOXRCTyAxWnywEvTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.40.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:4e:86:7a:35:54:4f:fb:e8:87:d3:1a:51:16:0a:ca:99:46:
62:3c:c1:a6:87:71:0f:ce:53:41:fb:79:0c:60:f4:67:d8:71:
57:84:39:a5:3d:cc:64:cd:9f:64:29:88:d9:06:87:24:23:e5:
cf:db:a3:81:85:d5:42:6e:0d:c4:c8:01:f5:7b:0c:0f:f4:ce:
02:0e:d3:fd:5f:08:81:8d:1f:76:74:3d:ef:03:e8:d2:3b:b0:
22:c9:78:cf:ae:80:86:e8:15:f1:af:68:e5:8c:60:c0:00:fa:
e1:45:08:09:4d:0f:84:5c:93:a9:a9:e1:57:5a:f1:da:2f:ca:
f9:8a:f9:ad:36:63:f2:3f:ac:12:f4:cc:9e:87:7b:d5:14:2a:
4d:10:a2:b2:c3:0d:60:96:12:6f:7c:34:14:bb:c3:93:e2:d3:
68:ea:43:f2:a9:9c:97:c7:a0:07:b6:dd:24:8f:40:39:8c:a1:
bc:2b:27:15:ac:59:a9:04:32:f2:b4:23:01:93:37:e2:2c:b7:
f5:12:09:f6:cd:c3:d0:5c:5a:3c:01:6c:c9:85:dd:df:81:d5:
ad:46:c8:dc:3c:99:a4:be:e0:94:c4:de:e8:64:67:5d:84:f8:
a7:56:93:c4:51:9b:82:20:d9:35:20:e2:65:7e:54:5b:e8:55:
30:a3:1a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org