Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/GfNc6u1JlydaQM3BpX9XfpfZ2Is.roa
File: GfNc6u1JlydaQM3BpX9XfpfZ2Is.roa (raw, json)
Hash identifier: W8EBjjlXRNdUd2ikMuNOov3Wv6kKIDx7zbPGjYQj75s=
Subject key identifier: 19:F3:5C:EA:ED:49:97:27:5A:40:CD:C1:A5:7F:57:7E:97:D9:D8:8B
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018D59F142975B0D15713262C543A4BFC9F4
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/GfNc6u1JlydaQM3BpX9XfpfZ2Is.roa
Signing time: Tue 30 Jan 2024 10:36:39 +0000
ROA not before: Tue 30 Jan 2024 10:36:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 139989
IP address blocks: 91.200.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 07:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:59:f1:42:97:5b:0d:15:71:32:62:c5:43:a4:bf:c9:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 30 10:36:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19f35ceaed4997275a40cdc1a57f577e97d9d88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:84:e0:75:f6:20:38:b6:fc:95:87:8a:80:7a:
b8:2e:cb:e6:e2:c9:f8:81:74:cc:1a:4a:3d:b4:5a:
3a:3a:28:3b:2a:3f:20:fc:be:70:53:7b:c5:d5:c1:
d1:45:76:07:24:05:ff:71:8f:78:a6:3e:59:82:4d:
fd:5c:4f:ab:c7:23:b0:66:2f:38:03:ef:b0:4d:7d:
b5:1d:04:ae:a0:8a:73:2f:85:dc:16:30:41:ba:c6:
8b:ee:7a:60:9e:0c:3f:37:52:8d:88:0f:fd:40:bb:
dd:f1:71:cd:43:1b:72:c8:f2:4e:f1:1e:19:ff:fd:
31:f1:6f:e6:12:97:49:d3:d8:76:cb:0b:a0:de:89:
db:ca:f3:c2:85:76:48:3b:61:a8:84:87:ce:64:b4:
fd:7c:6a:54:76:23:d5:63:93:9f:8b:17:61:ca:8d:
73:64:66:ee:86:c3:5b:3f:44:ec:f7:33:92:45:b9:
0c:52:09:a5:15:54:2e:87:05:e0:f7:90:76:81:b7:
44:62:7d:26:88:08:d3:f8:2a:08:9a:1e:7e:cc:0a:
ed:f8:be:ff:f2:7f:c4:51:8d:07:30:77:a3:7a:6e:
6d:13:ef:ac:84:e2:15:0e:07:70:64:e6:f1:4e:1e:
e6:5e:f9:eb:30:56:8e:97:c5:3c:03:b6:4c:61:a5:
30:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F3:5C:EA:ED:49:97:27:5A:40:CD:C1:A5:7F:57:7E:97:D9:D8:8B
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/GfNc6u1JlydaQM3BpX9XfpfZ2Is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.220.0/24
Signature Algorithm: sha256WithRSAEncryption
32:6f:24:94:34:91:09:37:59:dc:2f:d4:09:f6:b3:88:5f:43:
ec:f2:68:46:fe:e7:a3:b8:ff:90:36:e7:6c:1a:d3:5b:a4:18:
18:72:c7:99:3e:ed:4d:5b:0e:30:6f:c9:1f:a7:71:d0:7a:44:
37:f7:20:aa:73:51:59:7f:80:f7:3e:b0:10:5b:17:0a:e5:88:
5d:dc:a1:c8:35:c2:14:e2:c8:38:af:a0:62:4e:b2:ef:25:d3:
e6:ef:16:19:11:b1:1f:01:5c:e9:f8:0e:4b:7a:1d:ef:e0:4b:
0f:8f:8d:2e:42:d6:39:39:43:f8:9f:2c:ad:04:be:8c:bd:3f:
f5:70:2f:98:e1:94:ae:49:19:75:30:6d:5b:5e:4c:66:59:99:
8d:5c:2e:e7:29:84:5d:93:ab:dd:9b:4c:7d:0c:b3:e5:4b:c6:
c9:63:6c:6f:62:3f:fa:d2:88:70:95:8b:fa:c0:48:a1:0c:00:
a1:07:c0:37:c7:f5:f8:d7:65:d5:bc:7d:87:8a:49:f4:27:fa:
19:8d:68:df:b9:b1:ef:1e:f1:29:05:cc:8a:cc:c7:7f:e7:df:
86:e0:79:d7:58:d3:2e:aa:b7:8e:ab:ec:73:4e:e2:1b:a0:8c:
e3:46:1a:99:43:99:f6:cf:9e:d6:ed:20:77:72:da:15:8b:9a:
be:71:79:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org