Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/gofrpVsprK_uItrgm7Vp4uhCpu4.roa
File: gofrpVsprK_uItrgm7Vp4uhCpu4.roa (raw, json)
Hash identifier: JncmO+KxDFsIpCJ2xoYpoepmcC1/jZR0lLXkp5AYpwc=
Subject key identifier: 82:87:EB:A5:5B:29:AC:AF:EE:22:DA:E0:9B:B5:69:E2:E8:42:A6:EE
Certificate issuer: /CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Certificate serial: 018A6A880721BF847B6F42C97A5F683959FD
Authority key identifier: 9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/gofrpVsprK_uItrgm7Vp4uhCpu4.roa
Signing time: Wed 06 Sep 2023 12:46:54 +0000
ROA not before: Wed 06 Sep 2023 12:46:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 45.130.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:88:07:21:bf:84:7b:6f:42:c9:7a:5f:68:39:59:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Validity
Not Before: Sep 6 12:46:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8287eba55b29acafee22dae09bb569e2e842a6ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8b:3f:b7:be:f0:ad:7f:e4:64:e1:69:7d:6b:
21:ba:98:64:24:a6:d5:80:b7:bb:da:95:ca:b8:5b:
08:da:26:0c:cd:72:36:12:5f:ba:f4:39:1f:fc:13:
b9:a4:c7:2b:d7:26:d7:83:2b:67:6b:71:73:70:be:
33:be:44:bb:76:5e:14:48:b4:aa:a8:ec:c9:7a:56:
a2:77:7c:6a:b7:16:22:32:c7:1e:cc:41:a0:fc:48:
2c:b5:c8:23:5f:63:c4:30:9c:2e:bd:ff:86:24:06:
1a:5f:14:64:25:19:57:85:c7:51:67:20:0a:08:e9:
f6:0c:7b:d9:8a:dc:8d:d2:b8:97:4f:25:50:f4:7e:
e3:d4:41:5f:d4:f5:06:00:8f:b2:d2:c9:54:7d:12:
df:42:b3:ea:a3:89:a1:01:a5:76:1e:dd:34:9d:c7:
f5:91:d7:7f:d1:f9:7d:c3:28:8f:83:c4:6d:4e:23:
27:2f:ab:bf:88:26:a0:97:ca:fe:c6:4f:23:9f:0e:
a1:99:99:29:36:61:b3:af:9d:cd:5e:c1:ec:29:65:
00:d4:1f:3b:23:56:1d:6b:b7:7f:1c:a4:ef:86:29:
ab:a4:46:6f:2d:0b:9f:0e:68:91:a6:d4:c5:2b:a5:
93:00:bb:91:5e:93:ec:58:13:70:3f:49:df:ed:7e:
0a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:87:EB:A5:5B:29:AC:AF:EE:22:DA:E0:9B:B5:69:E2:E8:42:A6:EE
X509v3 Authority Key Identifier:
keyid:9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/gofrpVsprK_uItrgm7Vp4uhCpu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/nLJc5VDk2b2gW9XUXItro3Qwu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.32.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:a8:e4:da:e6:5a:b3:f2:67:da:91:f1:6f:ac:b9:91:61:d3:
de:be:d8:c2:8f:24:a6:4b:3b:94:42:e3:54:9b:38:94:a9:01:
69:cd:14:4c:04:51:1c:2e:74:ab:95:d5:a8:ef:19:1d:f9:58:
b9:29:18:f7:e4:cb:03:d1:69:ea:23:f9:1f:01:56:cd:e0:1b:
14:b0:ff:02:fa:1b:20:fc:ef:22:ba:e6:93:64:a5:e2:b2:3b:
1b:72:dd:ae:37:74:bc:a2:ea:23:a1:5a:a6:77:22:da:4b:b9:
58:88:34:b3:cf:4e:97:c9:e1:00:90:8d:ad:ca:7d:22:31:6b:
bc:9a:1e:a5:bc:a7:ce:ad:2b:41:63:9d:d6:0c:9e:34:99:f8:
6e:5b:b1:4e:1e:22:50:9b:ca:41:13:cb:c1:d8:2c:65:83:9c:
96:e0:66:90:c9:71:85:b0:1c:9a:8c:b6:ca:08:09:ff:57:04:
bc:99:c9:74:94:13:12:43:28:6e:8a:b7:1e:ec:18:f2:87:b2:
16:0c:e8:b4:0f:5b:28:8b:f0:d1:2f:a8:ec:9a:47:e2:e6:0d:
e2:82:aa:67:ca:09:06:4c:74:b4:a4:86:e9:6e:c1:3e:82:d4:
35:f5:16:e8:4a:f4:70:32:81:c4:5b:f1:5f:ca:9d:76:8f:ea:
76:7d:1b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:34 2024 by rpki-client on console-fra.rpki-client.org