Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/GlrJegZbHwCvaDnRRx0GofmxHA0.roa
File: GlrJegZbHwCvaDnRRx0GofmxHA0.roa (raw, json)
Hash identifier: MgN07LS26mIaZkZslDkco75etXfHbxTBIEk7OCdIRfU=
Subject key identifier: 1A:5A:C9:7A:06:5B:1F:00:AF:68:39:D1:47:1D:06:A1:F9:B1:1C:0D
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D65BE24F1E866DE4E45DB4D21F4D9AAD3
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/GlrJegZbHwCvaDnRRx0GofmxHA0.roa
Signing time: Thu 01 Feb 2024 17:36:16 +0000
ROA not before: Thu 01 Feb 2024 17:36:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35048
IP address blocks: 2.59.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 09:34:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:be:24:f1:e8:66:de:4e:45:db:4d:21:f4:d9:aa:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 1 17:36:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a5ac97a065b1f00af6839d1471d06a1f9b11c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ad:e9:3b:f7:2c:9a:98:df:9e:5d:21:8c:83:
80:ba:5f:4c:00:31:97:50:5a:e3:c0:d8:ae:3d:03:
79:ef:f4:31:7b:4b:30:59:d4:0a:e8:06:78:1f:1d:
e0:7b:53:5d:58:ae:b4:93:5a:f7:cc:a7:02:ed:cf:
82:e8:5e:61:6f:b2:53:94:89:f2:05:4c:d3:9c:7c:
7e:54:60:06:b2:bb:2c:57:f8:dd:26:fb:1f:d7:49:
9c:6b:17:05:97:c2:72:32:ae:83:2b:b2:73:bc:40:
9a:1e:4d:c7:80:ed:30:bc:8e:bd:2f:c5:b8:d4:0c:
6e:2f:88:3f:cf:83:db:72:54:c2:fe:cf:62:7a:01:
d5:0c:60:2c:90:05:2a:f9:2f:2b:14:c3:a7:85:f9:
7d:30:b9:a4:8f:68:55:2e:be:98:ac:b2:1b:e3:70:
92:2e:bd:d3:56:35:06:1c:38:83:1a:00:2b:9e:1b:
59:05:c9:d5:39:23:e0:3b:70:2b:6f:0a:b2:6a:48:
6b:32:05:ae:86:61:46:f6:8d:05:59:3d:18:b6:d6:
c9:86:79:83:92:9b:6f:d8:f4:2e:60:a5:e5:cb:93:
5e:36:32:4d:92:ef:d4:35:58:25:1b:73:f7:c7:95:
14:d3:67:6a:69:f8:f0:47:ae:5b:06:be:dd:2b:e0:
72:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5A:C9:7A:06:5B:1F:00:AF:68:39:D1:47:1D:06:A1:F9:B1:1C:0D
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/GlrJegZbHwCvaDnRRx0GofmxHA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.50.0/24
Signature Algorithm: sha256WithRSAEncryption
30:80:e3:49:41:83:70:93:bb:22:f7:71:9c:79:2b:41:11:0c:
15:e6:d2:5c:de:ba:cf:da:fb:f1:49:06:3f:9c:a9:6e:8e:6f:
dc:fd:00:db:7e:6e:1d:0a:be:0b:00:80:a7:f1:99:28:ec:ef:
6a:0b:58:84:de:fd:88:59:a2:b7:58:92:9e:5b:d8:d4:c0:26:
6c:6a:33:d9:a0:0c:af:3a:2e:bc:01:84:77:b1:f5:64:61:30:
95:0a:6f:48:a0:e3:5d:1f:79:e8:11:c8:e5:0e:56:5b:a2:ce:
00:8f:d8:ac:a7:bc:3a:49:6a:f9:11:ca:83:d5:96:82:0b:a1:
d3:03:47:42:d1:0c:e9:04:e1:07:be:52:9d:cf:ac:9b:34:50:
08:e8:35:7d:81:2c:fc:1e:35:62:48:9b:7a:ab:a3:f7:11:3c:
18:32:eb:c8:ed:2c:f5:ce:48:99:fa:62:10:c4:a1:e7:d8:cd:
2b:01:0e:40:90:55:9c:87:6e:eb:22:31:0c:b7:12:1c:5f:d4:
34:f5:3d:82:91:29:a0:a8:9e:db:b8:f7:81:41:0a:29:c2:20:
04:b5:a3:25:9d:fa:eb:8b:2c:63:41:43:c0:b2:4b:23:e6:73:
61:16:3a:5f:53:a2:d7:e7:8d:4a:16:02:14:57:2f:a2:b2:b5:
1d:61:75:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 2 12:00:00 2024 by rpki-client on console-fra.rpki-client.org