Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/GfsNcjvGKsi8RJB2FPFeARjm7RY.roa
File: GfsNcjvGKsi8RJB2FPFeARjm7RY.roa (raw, json)
Hash identifier: uycxPqy75T/T9KTacPOOgVksRxLpPXTbMLh3SEAYUK8=
Subject key identifier: 19:FB:0D:72:3B:C6:2A:C8:BC:44:90:76:14:F1:5E:01:18:E6:ED:16
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018F3F641D08B55AF97D7FA696A01B43A38E
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/GfsNcjvGKsi8RJB2FPFeARjm7RY.roa
Signing time: Fri 03 May 2024 16:57:56 +0000
ROA not before: Fri 03 May 2024 16:57:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47585
IP address blocks: 91.228.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 11:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3f:64:1d:08:b5:5a:f9:7d:7f:a6:96:a0:1b:43:a3:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: May 3 16:57:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19fb0d723bc62ac8bc44907614f15e0118e6ed16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b0:1b:c4:b3:10:c4:18:a4:bd:00:d3:cd:08:
7b:02:bf:9b:12:6d:40:22:98:c1:80:21:28:a0:98:
3c:ce:a1:85:7e:cd:99:84:23:b8:59:e7:df:04:cf:
bb:6a:e6:fc:2e:2f:7e:6e:f2:12:fd:7e:bd:c4:36:
8b:92:91:0e:af:79:65:ca:bf:39:e1:89:37:7b:59:
3b:6b:56:fb:0d:d5:e5:ba:9d:97:ba:3c:ca:82:73:
2a:20:a3:6e:6f:cd:92:26:b7:f3:96:25:ec:05:46:
b9:ec:dd:07:b0:6c:db:ad:cc:46:7e:1f:88:c8:42:
28:2c:1c:c7:38:ed:3e:a8:c7:5d:98:64:2c:db:1b:
fe:d7:54:77:ed:3b:39:4a:39:1c:68:8a:fa:1d:04:
68:74:4a:cb:db:7b:34:e0:9b:ab:5c:f6:c0:06:b3:
58:bf:95:f2:44:5c:48:71:8e:0b:0d:b4:d4:e5:35:
96:b5:d7:33:0b:38:db:60:30:4f:7c:f5:8a:72:84:
62:b6:6d:13:82:49:9b:a2:13:4e:b3:3e:36:b3:98:
3d:54:55:9c:52:bb:da:fb:c7:80:df:20:e9:f1:d6:
25:a1:46:2f:f4:9e:a4:f9:71:c7:1e:9f:db:1c:ec:
f2:9d:2d:c6:dd:cf:dd:85:36:b0:a6:92:d3:67:c6:
33:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:FB:0D:72:3B:C6:2A:C8:BC:44:90:76:14:F1:5E:01:18:E6:ED:16
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/GfsNcjvGKsi8RJB2FPFeARjm7RY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
Signature Algorithm: sha256WithRSAEncryption
56:7e:c1:7a:ed:bf:b2:0a:82:df:66:8c:24:86:d4:66:cd:12:
58:65:2f:44:2a:97:78:63:43:1b:31:c9:88:49:d3:fb:00:61:
53:1d:28:df:cd:57:d2:90:c2:a9:ce:19:db:eb:fc:00:cd:81:
7a:47:41:83:67:d3:d0:79:13:a1:1d:f5:c2:56:7c:5f:9c:db:
a5:e6:5f:4e:53:6f:70:9a:8d:c9:70:ea:02:4d:13:8e:48:00:
7e:47:13:cb:ab:7f:98:f5:bd:ee:9b:c9:7d:6f:c9:b2:d0:dd:
b8:c4:9d:2a:a2:2b:4d:84:59:95:14:14:21:e0:f0:a5:20:8b:
84:3f:c3:1f:19:62:7b:4e:02:74:3d:89:45:c9:e8:a2:84:6d:
ea:4a:03:0d:67:82:21:41:9c:03:d8:5c:4c:5b:16:81:3c:09:
a2:cb:04:26:cf:ec:bb:84:2b:28:82:45:7f:09:fa:93:0b:6d:
bb:25:d6:d2:8f:e5:39:70:68:12:ad:65:75:84:1d:dc:ee:7c:
4f:dd:67:78:b0:2c:6b:02:e6:d5:a8:7d:de:f0:d1:06:c5:ee:
35:fa:d6:58:15:31:9a:a8:2c:ac:fa:cc:7d:d1:de:92:dc:44:
9a:1f:d2:b1:97:ab:24:04:2f:60:c6:eb:c2:88:f8:c8:a7:15:
ec:f9:df:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 14:34:58 2024 by rpki-client on console-ams.rpki-client.org