Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/gp8mIeK5IFTfK5u__TqGAl0aPN0.roa
File: gp8mIeK5IFTfK5u__TqGAl0aPN0.roa (raw, json)
Hash identifier: Q7mbQgqusCxwl1uiVdHaXa67sUYZAun4OTijUg+46S0=
Subject key identifier: 82:9F:26:21:E2:B9:20:54:DF:2B:9B:BF:FD:3A:86:02:5D:1A:3C:DD
Certificate issuer: /CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Certificate serial: 0187749B02694AF9AC308FA1387E0A20CEE2
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/gp8mIeK5IFTfK5u__TqGAl0aPN0.roa
Signing time: Wed 12 Apr 2023 08:35:28 +0000
ROA not before: Wed 12 Apr 2023 08:35:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206352
IP address blocks: 195.210.98.0/24 maxlen: 24
195.210.100.0/22 maxlen: 22
195.210.110.0/23 maxlen: 23
195.210.124.0/23 maxlen: 23
195.210.122.0/24 maxlen: 24
195.210.126.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:9b:02:69:4a:f9:ac:30:8f:a1:38:7e:0a:20:ce:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Validity
Not Before: Apr 12 08:35:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=829f2621e2b92054df2b9bbffd3a86025d1a3cdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7d:f9:fc:4e:cc:a5:82:f5:b8:b2:2e:5e:67:
ff:0d:d9:f9:6f:09:20:96:27:cc:15:fa:72:8d:99:
e4:e8:d1:74:a2:5f:8a:32:44:59:10:48:dc:1c:86:
2a:84:f9:34:22:02:9a:c8:91:ff:e9:2b:64:54:b7:
ba:f6:25:33:ae:e3:1a:2c:6a:bd:24:8f:af:3f:be:
36:cc:ae:21:05:a9:d6:5c:e9:2d:8d:03:50:95:94:
e6:84:97:8a:d6:08:47:03:f5:ae:a8:27:db:58:cc:
fe:e1:92:25:e2:f8:8d:19:56:02:b9:96:64:b0:d2:
08:b1:bc:f8:3d:1a:cc:69:7a:8c:c0:99:cb:a7:3f:
b2:b3:5f:7c:08:8b:c8:7c:01:c7:c2:55:cd:44:c0:
8f:86:54:52:07:4b:0e:c3:02:aa:4a:02:d4:70:0e:
f4:83:95:29:ca:af:96:71:6c:de:01:19:03:27:35:
ef:9e:1b:72:3b:ce:b7:08:0b:db:47:5a:c7:06:fe:
52:13:b4:8d:b8:78:5e:0e:ca:d5:ec:e8:fc:9b:a4:
57:dc:cf:6e:2e:70:3c:f1:6d:b2:62:92:25:7d:27:
0c:36:04:11:58:22:73:7e:d3:4b:ae:a3:37:80:4b:
38:0f:e2:72:7f:ea:22:db:2a:9e:4a:ea:76:26:aa:
ca:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9F:26:21:E2:B9:20:54:DF:2B:9B:BF:FD:3A:86:02:5D:1A:3C:DD
X509v3 Authority Key Identifier:
keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/gp8mIeK5IFTfK5u__TqGAl0aPN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.98.0/24
195.210.100.0/22
195.210.110.0/23
195.210.122.0/24
195.210.124.0/22
Signature Algorithm: sha256WithRSAEncryption
36:90:28:12:ec:f5:ef:8b:b3:33:38:45:1c:30:56:e3:c0:34:
16:40:a0:6c:7c:f3:1a:81:3f:78:57:88:9b:8b:28:72:21:41:
7f:aa:82:4a:0e:89:43:71:9c:fc:63:e2:9d:4b:d2:ce:66:11:
18:b0:ea:6b:2b:19:70:44:5f:3c:29:18:d9:2f:f4:1d:92:73:
b1:a6:49:af:9f:59:c8:76:e7:2d:b7:66:9b:32:15:9e:93:0f:
2e:cc:37:f4:98:2c:af:f5:b4:61:2f:87:f7:ea:ed:56:69:d7:
e4:78:47:0e:9e:cd:2d:96:c4:a2:6d:66:7c:1e:07:3f:be:5f:
cc:ff:8c:c7:61:30:25:57:bf:ac:7f:41:03:ed:b5:b6:bb:4f:
f9:1a:4c:bd:49:b7:c8:ac:30:a5:8f:5b:71:14:ce:49:73:ff:
74:0e:77:3e:5c:9c:96:3e:49:3b:cc:3e:d5:6c:7e:df:f4:e2:
d9:8f:81:ca:1b:e5:f5:45:0b:1c:96:a7:d9:a0:18:8c:d2:be:
d9:d1:fd:8a:b5:59:63:86:34:d8:4e:b9:19:70:6e:97:f7:20:
db:fd:16:d8:c6:ce:c6:78:46:13:fc:40:63:46:72:05:7d:9e:
a8:13:dd:05:8b:1f:42:75:a1:0d:89:12:7d:f2:24:a2:d2:9a:
58:6f:f1:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:49 2024 by rpki-client on console-fra.rpki-client.org