Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/gLr63mv0vFl5QMZAmGs9pxMObW0.roa
File: gLr63mv0vFl5QMZAmGs9pxMObW0.roa (raw, json)
Hash identifier: Esy67XYHwFDp1wpczipUDLAW5biZSPVMXkibupM4w0k=
Subject key identifier: 80:BA:FA:DE:6B:F4:BC:59:79:40:C6:40:98:6B:3D:A7:13:0E:6D:6D
Certificate issuer: /CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Certificate serial: 01869CCAE2D73199A5858C4590DF3B2C7F1E
Authority key identifier: 28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/gLr63mv0vFl5QMZAmGs9pxMObW0.roa
Signing time: Wed 01 Mar 2023 10:49:47 +0000
ROA not before: Wed 01 Mar 2023 10:49:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209605
IP address blocks: 194.147.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Apr 2023 20:33:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:ca:e2:d7:31:99:a5:85:8c:45:90:df:3b:2c:7f:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Validity
Not Before: Mar 1 10:49:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80bafade6bf4bc597940c640986b3da7130e6d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e3:95:0d:24:fc:8c:f0:bf:12:45:c4:52:03:
6d:bb:ff:7f:43:8d:ba:e9:63:17:03:5e:19:be:1a:
6e:1b:a6:19:65:26:19:b7:16:9a:e8:3c:5f:41:4e:
0c:38:24:07:55:0c:9b:0b:2e:81:b1:10:22:dc:d1:
a5:5f:7e:5d:52:10:07:96:aa:f7:9f:11:f1:37:db:
63:99:2c:20:36:9e:89:d1:8e:f3:af:4a:3e:a9:02:
d0:ff:80:70:67:9c:01:e3:a7:d1:7d:9a:5f:fb:14:
b0:0c:4b:16:4d:71:5a:95:48:fc:21:72:96:a8:f2:
58:79:64:ab:93:46:fb:a6:31:71:54:42:e0:cb:dc:
0b:b6:9e:75:ff:d0:38:d4:f8:50:9c:32:f3:58:95:
65:c9:8e:93:c1:b1:03:2b:a0:a4:e2:7d:04:cb:6a:
f3:cb:59:25:44:06:35:6b:eb:89:2c:4b:4e:18:5f:
71:ce:49:4d:f4:32:3b:b4:93:04:13:7d:fa:66:bc:
d1:13:59:6c:33:2d:7b:79:2f:e2:3b:17:af:77:3c:
5c:2d:29:48:09:da:1e:a4:f8:43:a0:96:c1:db:8b:
1c:68:69:eb:9a:46:3e:5f:75:ec:13:b8:02:d4:dc:
f9:44:7c:97:1d:c6:92:f7:13:99:c5:1d:2a:8a:1f:
3b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BA:FA:DE:6B:F4:BC:59:79:40:C6:40:98:6B:3D:A7:13:0E:6D:6D
X509v3 Authority Key Identifier:
keyid:28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/gLr63mv0vFl5QMZAmGs9pxMObW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/KP1m5DoQRjOye6xTm5i9-Ov6ya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.216.0/24
Signature Algorithm: sha256WithRSAEncryption
19:f4:11:fc:c0:f1:98:3f:77:61:3d:36:0b:62:64:84:96:aa:
ec:bc:9c:2e:75:18:12:e9:be:7e:3b:b8:9f:f7:8b:04:b5:e3:
92:9b:82:b1:05:7f:d1:cd:69:ad:32:ad:30:08:53:9d:6e:6c:
4b:9d:71:b3:b8:f8:ae:71:91:d1:de:c1:46:a2:40:91:3d:f4:
80:06:27:24:7e:90:1d:44:85:94:59:c8:44:28:83:ec:fe:ac:
dd:93:17:d8:a6:9a:c0:20:0e:62:31:2c:c5:e6:06:97:23:87:
66:86:f5:e2:d8:fd:29:0f:48:d5:2b:0d:04:82:09:b8:e8:84:
71:a8:75:31:32:4b:28:1b:20:42:66:4e:56:a1:8a:ba:81:54:
6c:65:bc:f6:6e:37:b7:70:e5:ae:39:ee:64:0b:37:f9:56:72:
65:a8:42:51:89:13:6f:c5:eb:44:f1:fd:aa:61:8c:1b:e9:4b:
8c:78:13:ca:40:de:ca:f3:4f:18:67:7b:bf:37:f9:b9:75:93:
ff:9b:aa:e3:c8:2f:f9:38:79:f0:8c:4f:8f:29:e5:b0:12:d4:
0c:92:50:70:53:15:77:0f:b9:8d:b7:af:d4:f0:39:05:f4:fd:
74:18:d2:a4:65:b7:04:e4:cb:0d:50:db:8a:7d:1c:c8:58:56:
40:2c:db:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:02 2024 by rpki-client on console-ams.rpki-client.org