Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3e069a-3421-40ab-9e0c-45cc2dd6e491/1/9GAGCNhGKLaIkJmHeIgHwGPTLR8.roa
File: 9GAGCNhGKLaIkJmHeIgHwGPTLR8.roa (raw, json)
Hash identifier: Mot1g6EsOav7sbmrn9nuyaEAotzJkBb0i4BPFHshuZk=
Subject key identifier: F4:60:06:08:D8:46:28:B6:88:90:99:87:78:88:07:C0:63:D3:2D:1F
Certificate issuer: /CN=9fbddc6313efc4b672a7e2b32ae3c4484fe5f630
Certificate serial: 018571BA0215FA3316C30755A45FA556E954
Authority key identifier: 9F:BD:DC:63:13:EF:C4:B6:72:A7:E2:B3:2A:E3:C4:48:4F:E5:F6:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n73cYxPvxLZyp-KzKuPESE_l9jA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3e069a-3421-40ab-9e0c-45cc2dd6e491/1/9GAGCNhGKLaIkJmHeIgHwGPTLR8.roa
Signing time: Mon 02 Jan 2023 09:04:53 +0000
ROA not before: Mon 02 Jan 2023 09:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48748
IP address blocks: 195.88.26.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:02:15:fa:33:16:c3:07:55:a4:5f:a5:56:e9:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fbddc6313efc4b672a7e2b32ae3c4484fe5f630
Validity
Not Before: Jan 2 09:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4600608d84628b688909987788807c063d32d1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8a:02:32:a1:10:5f:64:99:ed:9f:9f:28:16:
94:d7:bd:19:27:b8:e2:07:51:51:c8:6f:20:70:98:
ac:fc:20:22:3d:53:58:9a:91:31:34:88:24:2f:51:
13:bd:54:6f:66:6c:e4:92:c7:23:65:0f:94:5c:87:
4e:bf:7d:af:4a:a0:c5:c4:7d:8d:e3:3b:6b:6c:46:
2b:90:66:7f:e6:49:16:b7:70:a4:f5:57:40:1d:6e:
f1:02:d9:c9:a3:bc:12:3b:a0:16:a7:35:81:c7:d6:
fe:80:d8:98:5b:1f:5a:90:18:f0:6c:21:71:9c:6d:
8b:4b:19:df:6a:fe:01:76:eb:8a:6e:f1:b9:56:8d:
89:b1:fc:01:55:61:de:84:3f:21:80:9b:14:25:10:
5b:69:a9:f6:53:37:26:17:3f:9b:2f:c3:87:84:d3:
9b:84:d2:67:89:c8:b2:15:3c:89:b5:f3:2a:e2:ba:
b7:f1:21:64:43:19:b2:90:25:ab:61:37:5d:58:f3:
03:fe:19:5c:35:7a:f5:18:46:a5:6d:2e:11:7a:12:
45:7c:0c:aa:48:fb:fc:c3:ee:d2:ef:4f:58:45:04:
14:31:77:d4:26:97:8a:8f:93:d9:e4:96:81:c9:ae:
eb:63:88:05:88:6a:dd:22:ff:e5:76:78:00:4c:f9:
47:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:60:06:08:D8:46:28:B6:88:90:99:87:78:88:07:C0:63:D3:2D:1F
X509v3 Authority Key Identifier:
keyid:9F:BD:DC:63:13:EF:C4:B6:72:A7:E2:B3:2A:E3:C4:48:4F:E5:F6:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n73cYxPvxLZyp-KzKuPESE_l9jA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3e069a-3421-40ab-9e0c-45cc2dd6e491/1/9GAGCNhGKLaIkJmHeIgHwGPTLR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3e069a-3421-40ab-9e0c-45cc2dd6e491/1/n73cYxPvxLZyp-KzKuPESE_l9jA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.26.0/23
Signature Algorithm: sha256WithRSAEncryption
93:25:29:eb:18:00:21:8a:ed:1b:54:d2:21:60:d0:08:c5:c6:
f4:6a:ae:07:e3:6e:cd:5d:1a:06:e6:a4:5e:09:ef:5a:1c:23:
ed:fa:12:8b:77:c1:4e:ee:42:c2:7c:9c:aa:9f:d6:3a:2d:06:
9d:83:27:fa:16:45:00:bf:82:f5:ab:4e:86:4b:5a:2c:12:9e:
3b:4a:30:3c:39:35:ac:31:2f:5a:73:ee:c7:9c:66:06:47:79:
22:6b:a0:9c:2e:56:5a:c0:5f:93:3d:47:a5:79:a3:dc:09:62:
66:f1:7d:e2:f0:7c:73:1e:55:16:7f:0a:92:59:42:18:69:bc:
e4:75:4d:f8:a0:14:62:28:ba:9a:a0:af:08:ac:d1:49:79:ad:
d3:70:5e:7f:f7:bd:ed:dc:08:dc:db:02:e0:6a:dc:ae:57:e5:
b1:5b:75:a7:5c:bd:b1:8a:75:da:2d:9a:ef:02:4d:7d:68:45:
5a:7e:b1:e0:e1:d0:39:be:d3:a3:f1:96:2a:28:62:7b:00:f3:
ba:2c:bf:03:ab:86:ce:99:b4:74:9f:ac:25:b6:04:e9:8b:e9:
a8:d3:ee:e1:4e:ff:1c:9c:0c:26:1a:5d:ef:30:32:68:db:99:
fb:78:72:7e:a6:f4:30:74:04:76:8a:cc:74:0e:2b:21:bb:b9:
bf:b5:72:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:04 2024 by rpki-client on console-ams.rpki-client.org