Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/gjUeCmRLrzxh08tzR8MAvaQuw6I.roa
File: gjUeCmRLrzxh08tzR8MAvaQuw6I.roa (raw, json)
Hash identifier: G59iV08z2yOQlD4y63+S0aRn82jk7g2t6spppPGMv8E=
Subject key identifier: 82:35:1E:0A:64:4B:AF:3C:61:D3:CB:73:47:C3:00:BD:A4:2E:C3:A2
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 01889B11581883710FD003727CEC9F017D09
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/gjUeCmRLrzxh08tzR8MAvaQuw6I.roa
Signing time: Thu 08 Jun 2023 12:53:05 +0000
ROA not before: Thu 08 Jun 2023 12:53:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210030
IP address blocks: 84.54.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9b:11:58:18:83:71:0f:d0:03:72:7c:ec:9f:01:7d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Jun 8 12:53:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82351e0a644baf3c61d3cb7347c300bda42ec3a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b4:c8:97:76:f1:34:31:fa:33:47:2f:0c:21:
b0:89:b1:75:9f:8e:e3:be:e9:15:5f:bb:ba:cd:40:
dc:8f:16:dc:a8:ea:f9:50:94:30:d3:5b:75:01:53:
5f:1a:37:70:46:e2:c0:75:da:2a:98:94:cb:71:b5:
c0:4f:bc:ce:b5:86:8d:94:96:95:e6:1d:75:92:8b:
b8:38:b6:7f:b2:2c:ce:a0:bc:20:01:3e:41:45:dd:
d6:0b:c6:34:ed:34:d6:4f:1b:70:45:ed:1e:4e:79:
31:1f:03:d6:ad:be:3b:eb:e8:94:a6:4d:ca:64:20:
c5:62:9e:6c:80:02:7f:91:3b:4c:9e:91:f3:ba:76:
97:18:d8:3c:3c:93:7d:5e:f4:e6:a6:f3:de:d3:86:
5a:a7:26:79:92:df:42:60:50:7e:6c:b7:8f:a3:2d:
59:40:85:f1:cb:b0:22:4a:78:7b:9c:c8:53:7a:52:
93:a0:d2:10:6e:e8:d2:70:c2:12:31:a1:ef:06:b5:
fd:8e:70:d3:9a:74:7a:4e:34:df:c5:a3:ea:27:63:
f9:c2:0e:ac:92:4a:97:d3:8d:1d:e8:4a:b9:09:a9:
89:9d:ec:3e:e9:18:74:86:92:a7:44:c5:30:b5:79:
77:35:62:ca:4f:b8:8f:10:d0:98:ab:59:34:bb:c3:
6b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:35:1E:0A:64:4B:AF:3C:61:D3:CB:73:47:C3:00:BD:A4:2E:C3:A2
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/gjUeCmRLrzxh08tzR8MAvaQuw6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.32.0/24
Signature Algorithm: sha256WithRSAEncryption
af:4b:34:4d:d7:2f:1e:25:98:70:5d:e7:23:4b:9a:ab:5a:87:
9d:5e:51:78:c8:af:83:0e:e6:4d:09:85:b5:02:2f:c6:c3:bc:
21:b9:95:53:f9:45:48:76:4d:c9:ce:25:54:b7:37:7e:2b:b1:
c7:64:fd:03:6d:73:8f:22:06:14:21:c3:17:37:17:f5:ba:f2:
3c:28:b7:0d:dd:9b:ad:c8:53:bb:94:59:60:eb:7d:e6:77:49:
79:47:f0:5f:a6:8c:f3:94:fd:ed:86:85:4b:27:06:af:4a:0a:
86:5a:99:58:97:d1:a0:7f:ab:64:a0:e2:dd:88:26:79:49:bc:
95:ee:ec:ec:ee:af:99:bc:75:48:79:69:fe:55:0a:b9:0a:15:
9b:d2:11:4e:18:01:a8:a7:a4:48:82:d6:80:5a:23:28:ec:6a:
af:f1:23:af:1c:fe:cb:c4:b3:2a:aa:e9:10:87:9b:88:b1:8f:
06:8a:cb:2c:35:a0:a0:22:d3:25:7b:6c:6b:63:4c:54:98:88:
6d:da:b4:62:f6:60:32:55:80:fe:40:b2:fe:25:c4:c2:a1:c8:
e0:62:5a:b5:5e:68:41:24:1a:39:66:29:55:cb:8c:ee:6f:9a:
fa:1a:aa:bc:0a:5f:b3:51:08:46:85:db:0e:59:63:61:88:75:
8f:5d:61:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:19 2024 by rpki-client on console-ams.rpki-client.org