Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Gmdg2hIhQT76ODSx36IFaUd7PrA.roa
File: Gmdg2hIhQT76ODSx36IFaUd7PrA.roa (raw, json)
Hash identifier: v+cdtKwmX/X4o1E5Pw+7oshaECYPMVtLL1CzSZq4gn4=
Subject key identifier: 1A:67:60:DA:12:21:41:3E:FA:38:34:B1:DF:A2:05:69:47:7B:3E:B0
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0185FA0B13C194840540401785CC34621582
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Gmdg2hIhQT76ODSx36IFaUd7PrA.roa
Signing time: Sat 28 Jan 2023 20:21:48 +0000
ROA not before: Sat 28 Jan 2023 20:21:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 193.239.236.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fa:0b:13:c1:94:84:05:40:40:17:85:cc:34:62:15:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 28 20:21:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a6760da1221413efa3834b1dfa20569477b3eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c9:4d:c2:55:72:45:7d:4e:2a:48:75:7b:08:
29:12:91:2a:3b:38:f5:1d:b4:10:12:5c:b8:9f:96:
d4:a1:d1:e2:c3:9c:1c:e8:26:d6:79:0e:f5:b0:f2:
ca:ac:be:39:06:b9:c3:70:e9:67:1f:8a:73:33:08:
03:6f:0b:43:8e:66:a1:7c:0c:c9:d2:25:cf:d2:6d:
1e:9e:e6:a1:0b:c8:e2:a3:b3:cc:70:b8:b6:db:b7:
c0:de:fa:cc:8a:fd:9b:92:e5:e2:03:a7:27:b6:c0:
bb:89:49:9c:f4:82:83:2d:b1:9b:4e:32:b1:2e:94:
03:8e:16:16:f4:ef:8c:70:bf:81:79:5b:19:20:14:
d4:dc:74:a6:de:b2:63:c1:c3:0e:91:0e:b5:e7:73:
b5:00:b9:93:f3:48:72:4f:e8:4c:2a:e3:b2:bd:54:
8c:9b:2f:98:6b:73:e8:5b:ad:89:c5:b1:8c:ca:f4:
55:e5:bf:7b:a6:96:de:de:57:2e:34:e4:ea:13:20:
74:c1:b6:b6:71:33:5a:88:df:cf:42:d1:94:9b:17:
d8:77:b7:05:40:8e:e8:03:70:89:8a:fb:4a:8b:50:
b9:14:56:cb:54:d0:1f:03:ca:96:7e:ef:13:a9:d2:
e2:b2:f7:86:14:d9:bc:fc:80:dc:0f:fb:5e:06:97:
b2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:67:60:DA:12:21:41:3E:FA:38:34:B1:DF:A2:05:69:47:7B:3E:B0
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Gmdg2hIhQT76ODSx36IFaUd7PrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.236.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:d2:f0:77:e1:bb:19:61:3e:45:b2:c9:1e:46:30:d8:82:25:
55:d5:99:d6:74:8a:0a:58:c5:ce:a7:3c:94:a8:96:d7:03:ad:
b9:dd:f5:fd:ef:f4:90:55:c2:e9:6e:77:93:e6:85:32:81:88:
95:66:8b:36:85:dd:f1:b2:03:c1:72:9d:d2:c7:ee:f4:45:c6:
09:8d:a5:85:77:4f:83:e1:36:64:e5:ef:8f:a7:10:f4:ec:16:
46:2b:be:03:71:fe:f2:43:df:c9:a0:8c:86:38:6d:4b:64:9e:
04:65:67:f1:0b:e8:9e:32:d1:f5:22:47:8c:f5:a7:f1:ca:8a:
e9:c7:8a:84:27:16:2d:3c:9d:8b:7e:6a:62:5e:a9:72:ba:b9:
96:9a:2a:1b:e8:6a:b6:67:8b:31:29:8e:41:b4:2d:7e:d6:2f:
65:1d:7b:ac:07:1b:92:79:dd:23:97:53:e7:f3:cb:58:2c:ac:
17:2f:f7:b9:79:94:51:2e:a8:73:9b:30:17:95:a8:ed:79:ba:
8d:5b:54:dd:35:ce:bf:71:c4:78:d6:c7:d3:0a:a1:cf:06:0c:
41:6a:1c:60:69:93:da:54:c8:cf:6a:1d:75:72:31:d3:ed:a2:
c4:5e:fa:a3:1d:50:a4:4d:80:00:5d:da:20:84:88:09:c2:08:
ea:24:ad:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:03 2024 by rpki-client on console-fra.rpki-client.org