Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/GK6s22sjvQW2IqToTuuVBCFAv48.roa
File: GK6s22sjvQW2IqToTuuVBCFAv48.roa (raw, json)
Hash identifier: PfAivP2+D1HsxfEvn8ysl74+us0uyrA0f3dyrRoYhKk=
Subject key identifier: 18:AE:AC:DB:6B:23:BD:05:B6:22:A4:E8:4E:EB:95:04:21:40:BF:8F
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018728DA546F7DDDAF68F35EC203C3A8C5D6
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/GK6s22sjvQW2IqToTuuVBCFAv48.roa
Signing time: Tue 28 Mar 2023 15:33:29 +0000
ROA not before: Tue 28 Mar 2023 15:33:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42216
IP address blocks: 78.135.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 22:45:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:28:da:54:6f:7d:dd:af:68:f3:5e:c2:03:c3:a8:c5:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Mar 28 15:33:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18aeacdb6b23bd05b622a4e84eeb95042140bf8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:54:22:29:57:57:9a:73:34:50:8a:d7:79:f5:
ec:41:12:5a:18:bd:7f:bd:72:56:7a:f4:ea:42:9b:
a8:b3:e5:6b:9c:6d:1c:ca:c0:3c:71:62:02:d2:6d:
36:7c:51:b9:f7:aa:e3:e9:16:c0:29:59:ba:6d:4b:
cc:5b:32:e2:a0:f7:26:ff:e6:56:c4:a3:11:44:6f:
05:31:0e:65:63:96:ce:03:ad:c1:7e:48:d0:ac:e5:
13:68:85:fc:9d:d3:e0:49:8a:68:bb:84:25:89:26:
a6:07:6f:42:05:45:06:c1:fb:38:48:d7:ce:57:d7:
0e:fc:22:4a:d2:a9:fd:1c:02:c8:32:fb:93:52:4e:
4b:7b:2a:2c:14:e3:73:55:f4:3d:89:4d:58:cb:fb:
9f:1c:c9:44:2a:7c:20:ce:82:e3:4f:79:4f:d1:b3:
32:b0:ae:23:32:48:83:67:5d:cc:48:eb:8f:81:94:
bf:38:8f:ea:d8:57:1b:15:c6:c7:8a:b8:95:27:c8:
54:27:3b:09:7b:64:47:a1:20:b3:f4:32:94:57:98:
a4:06:94:d2:d6:3f:df:f1:53:15:8d:31:59:95:12:
e2:ee:b7:47:32:08:08:38:45:a9:b1:ad:62:5d:d8:
51:a1:aa:7b:65:87:48:3c:b5:29:5f:62:a8:aa:a8:
5b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:AE:AC:DB:6B:23:BD:05:B6:22:A4:E8:4E:EB:95:04:21:40:BF:8F
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/GK6s22sjvQW2IqToTuuVBCFAv48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.86.0/24
Signature Algorithm: sha256WithRSAEncryption
43:b7:3d:f1:39:8f:5a:31:f9:af:22:eb:b3:65:89:21:76:29:
b6:ec:80:1a:a5:69:c3:17:85:b2:de:4f:aa:73:ca:99:09:49:
29:12:34:c9:8d:92:f7:21:ca:36:d3:fd:da:dc:29:54:dc:39:
fd:ad:93:42:4d:01:f9:9c:dd:1f:d9:54:c6:1a:ee:73:fb:40:
d6:ec:ab:31:42:06:ba:38:d2:bd:72:ea:e0:b8:91:8f:5d:f7:
3f:86:47:54:c6:f2:89:1b:f8:0b:fc:5d:25:63:dc:00:f8:00:
db:ed:ba:d5:3e:34:21:c7:d6:bf:ec:79:da:a2:cd:a7:14:cd:
a5:32:c1:b9:1c:bc:9d:ef:b9:87:8f:88:91:30:c8:23:c5:42:
09:ac:25:a4:53:57:83:66:9e:f4:36:d4:50:60:74:cd:67:62:
7d:52:e3:e6:c6:6e:72:3b:80:41:5a:cb:f9:ca:49:89:40:71:
32:5c:9b:ef:a3:9f:30:8a:b3:38:2c:a0:58:8e:89:e5:4d:c8:
0e:b8:d6:0d:96:86:e7:33:78:aa:a0:6d:e3:d2:29:59:ce:0b:
eb:62:1d:c4:21:94:ef:77:8c:ea:21:33:2c:7b:c2:98:5f:bd:
76:17:aa:e6:bc:e9:2e:7a:81:8d:0f:87:64:d5:ac:f9:af:e3:
18:42:b4:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org