Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/EPsSVD-hNOfwCUrrfVhNxYT-GCA.roa
File: EPsSVD-hNOfwCUrrfVhNxYT-GCA.roa (raw, json)
Hash identifier: gns0ln1d2oEX8QAOBOx/j1CvaEqrw5x8hnEcKLAs3co=
Subject key identifier: 10:FB:12:54:3F:A1:34:E7:F0:09:4A:EB:7D:58:4D:C5:84:FE:18:20
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 018683243BBC2A89864A2512824E283A2E6E
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/EPsSVD-hNOfwCUrrfVhNxYT-GCA.roa
Signing time: Fri 24 Feb 2023 11:17:15 +0000
ROA not before: Fri 24 Feb 2023 11:17:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 194.33.58.0/24 maxlen: 24
91.224.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:24:3b:bc:2a:89:86:4a:25:12:82:4e:28:3a:2e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Feb 24 11:17:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10fb12543fa134e7f0094aeb7d584dc584fe1820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8d:9e:b1:4a:1c:7a:d2:d4:4e:bd:73:b3:b6:
e6:0c:f6:09:54:87:37:19:3c:d8:fd:18:a8:0d:da:
2a:0b:3f:28:cf:d9:34:e3:a9:4a:4f:74:2a:1f:25:
e2:d6:57:19:69:77:52:48:8a:e0:85:23:7e:f8:e8:
fc:c2:a8:4d:fb:19:72:60:6f:f8:6c:6e:a3:c4:ff:
8b:52:e8:26:16:11:d3:1e:09:59:77:38:2e:7c:29:
cc:8f:98:90:02:51:7d:41:f0:ac:97:c2:3a:66:29:
87:ee:3e:f9:22:8d:a6:bb:45:81:8b:02:a4:11:7a:
24:6a:fb:3a:5c:84:3b:b0:bc:53:26:bf:70:54:3e:
24:a7:8b:d8:bb:32:ff:21:fa:7f:18:44:0c:29:ae:
f6:33:57:50:56:af:4a:82:3b:9a:7a:63:20:bf:83:
e2:f8:1e:7e:8e:56:4f:07:45:bc:6d:f1:3d:a3:5a:
cf:34:d8:8a:44:9f:1e:2d:5f:b8:77:e9:51:a6:1a:
07:19:fb:9d:22:56:a5:44:14:d4:72:22:52:45:3f:
0e:b1:f9:38:78:fc:f4:2a:a8:de:ff:32:dd:b1:39:
a8:1f:18:bf:4b:4d:c8:8c:0d:89:2e:a2:ab:e9:33:
16:e3:d1:3d:4f:b2:86:3b:43:1b:60:f7:3f:a3:d8:
e2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FB:12:54:3F:A1:34:E7:F0:09:4A:EB:7D:58:4D:C5:84:FE:18:20
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/EPsSVD-hNOfwCUrrfVhNxYT-GCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.108.0/24
194.33.58.0/24
Signature Algorithm: sha256WithRSAEncryption
45:4f:c8:c3:48:b6:4d:8e:37:1c:d1:76:40:24:83:4b:30:69:
75:93:cd:b1:fa:01:18:2c:9e:1d:01:0d:1f:f6:7e:7a:02:7c:
ae:7e:4e:fd:3e:18:7c:fc:5e:c5:88:bf:7e:df:9a:b7:1d:e0:
a1:1f:23:6d:a8:3b:14:60:9a:6e:70:24:a3:9c:ec:f8:7c:b4:
56:ad:06:c6:57:79:79:12:0c:69:9c:f4:bb:c2:af:f7:f4:dc:
41:aa:a3:c5:59:d2:50:f7:8e:90:e5:57:b4:86:64:cf:84:aa:
f2:7d:a5:4d:f8:35:e5:68:79:98:f2:f9:a3:94:c7:90:b5:4e:
d4:d1:13:98:01:e5:e0:6e:75:2b:db:92:47:a4:b0:42:1b:06:
ac:64:d4:74:23:5a:09:85:73:28:3c:4d:4a:e1:cb:78:d7:09:
5f:cf:25:ea:ca:21:32:d0:39:98:cb:8c:b3:97:69:ef:d4:82:
81:11:44:56:02:2c:9f:cd:95:87:7e:42:ad:c6:46:98:9d:03:
47:38:0e:6f:cb:a5:6c:cb:b1:5f:91:bb:59:e2:2b:bf:f7:21:
52:6f:af:51:4e:d1:52:d4:72:28:91:c3:7a:aa:44:d5:80:2f:
60:d0:3a:09:17:53:fa:84:e1:e4:22:f7:96:8b:72:aa:2c:10:
7c:0a:61:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:19 2024 by rpki-client on console-fra.rpki-client.org