Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/42db52-dca7-4fa3-9a73-1d7b229d4e3b/1/aemGOOGz71FZIlK1tGF0tgi8dIA.roa
File: aemGOOGz71FZIlK1tGF0tgi8dIA.roa (raw, json)
Hash identifier: jdns9UGszqaUekaG0pFaOOp8odsRPTMXgo9rbF4oj6U=
Subject key identifier: 69:E9:86:38:E1:B3:EF:51:59:22:52:B5:B4:61:74:B6:08:BC:74:80
Certificate issuer: /CN=45aa88dc675ce5dc35574bff6290e2ae88ce082b
Certificate serial: 01856F26C90F011703FCB4464E13AE04682B
Authority key identifier: 45:AA:88:DC:67:5C:E5:DC:35:57:4B:FF:62:90:E2:AE:88:CE:08:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RaqI3Gdc5dw1V0v_YpDirojOCCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/42db52-dca7-4fa3-9a73-1d7b229d4e3b/1/aemGOOGz71FZIlK1tGF0tgi8dIA.roa
Signing time: Sun 01 Jan 2023 21:04:50 +0000
ROA not before: Sun 01 Jan 2023 21:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39489
IP address blocks: 87.239.176.0/21 maxlen: 24
2001:67c:2b28::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:c9:0f:01:17:03:fc:b4:46:4e:13:ae:04:68:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45aa88dc675ce5dc35574bff6290e2ae88ce082b
Validity
Not Before: Jan 1 21:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69e98638e1b3ef51592252b5b46174b608bc7480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:34:4f:0e:33:c9:4a:d1:da:3c:2e:8a:f0:0a:
21:60:a3:38:e8:b4:ab:d6:31:35:ca:f4:a3:d2:e1:
6d:7f:95:6c:af:3c:c6:91:4d:bc:fd:b7:29:85:1d:
8d:09:8e:4f:7a:fc:77:c5:e5:1c:01:2f:0d:5a:a9:
f4:b3:66:14:63:02:06:96:90:4f:8f:1c:60:a3:86:
7b:06:10:0b:5b:5a:ef:20:b3:fa:f2:09:cc:19:b9:
d3:e1:48:f7:05:b4:c3:63:38:2c:ba:3e:61:3a:59:
5f:af:c0:6c:ae:5b:15:d8:ba:3f:d4:6e:5b:1a:13:
b6:a3:60:a9:a2:ca:cf:e8:94:66:db:ab:57:2d:61:
9c:b4:9b:61:24:c9:06:19:7a:a2:bf:34:d2:b2:e0:
41:6e:48:f3:f5:10:54:e3:df:20:a5:d3:1f:96:18:
e1:9b:99:c4:9a:1a:92:a3:ec:7a:ff:46:21:5d:5b:
45:0b:b3:94:4a:ce:04:be:ce:38:93:a9:93:17:f1:
f4:c9:a4:98:2f:de:4d:9a:49:5e:2c:f2:b3:ee:e2:
c8:c1:85:6f:b2:ea:46:c1:00:d5:2d:96:52:09:92:
46:dc:7f:cd:fd:dd:74:f8:45:06:68:30:71:bf:76:
af:f6:66:0c:37:2a:66:e8:62:e4:86:63:5d:ac:d7:
f4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E9:86:38:E1:B3:EF:51:59:22:52:B5:B4:61:74:B6:08:BC:74:80
X509v3 Authority Key Identifier:
keyid:45:AA:88:DC:67:5C:E5:DC:35:57:4B:FF:62:90:E2:AE:88:CE:08:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RaqI3Gdc5dw1V0v_YpDirojOCCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/42db52-dca7-4fa3-9a73-1d7b229d4e3b/1/aemGOOGz71FZIlK1tGF0tgi8dIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/42db52-dca7-4fa3-9a73-1d7b229d4e3b/1/RaqI3Gdc5dw1V0v_YpDirojOCCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.176.0/21
IPv6:
2001:67c:2b28::/48
Signature Algorithm: sha256WithRSAEncryption
69:93:58:3d:de:98:dc:08:53:7f:58:58:f7:dc:42:1f:6f:2f:
3a:6e:97:cc:31:eb:93:2d:c7:88:26:49:52:9e:05:e4:de:9c:
9f:81:4d:93:65:83:81:ee:7b:22:de:cb:ff:4b:22:b0:b5:90:
7b:e4:1c:00:1b:cd:92:a1:37:11:92:b1:25:a3:e2:91:87:5a:
b6:78:71:05:af:5d:b3:6c:ed:fe:38:b6:f0:93:ea:69:56:b0:
b9:44:40:43:ba:1c:ef:a3:e6:53:2a:e2:9b:87:12:fa:bd:27:
8e:87:36:3f:f5:e9:86:18:ee:90:e2:27:f5:6c:f9:3d:92:68:
31:3c:6d:7c:39:d7:58:1c:5a:47:75:ba:09:0d:b8:e2:3c:72:
52:aa:89:e9:32:20:c1:03:2b:13:47:b6:8e:f9:24:7a:cb:a0:
bb:5e:34:15:b6:2e:0e:6f:b3:97:e4:f6:8c:e2:1e:e4:6f:2c:
2c:75:a5:8d:d6:bb:58:e6:bf:52:e3:35:bb:d2:5c:00:7b:18:
6e:e7:bb:c8:a3:2d:63:14:8a:b4:27:1d:e8:ae:a4:75:80:b4:
57:67:3b:7c:b8:d5:78:38:fe:0c:28:93:7d:2b:e8:31:7a:33:
30:a0:0f:37:06:46:2a:ed:76:1b:95:4a:95:01:e4:0c:7f:e8:
b9:1d:9e:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:24 2024 by rpki-client on console-fra.rpki-client.org