Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/GS-sEZPOSEjfcoZGi4cgsD94Yt0.roa
File: GS-sEZPOSEjfcoZGi4cgsD94Yt0.roa (raw, json)
Hash identifier: gAL1Q76pcIJNHrFl9gmn7j2HkHHsimPfgYml9T9nb/o=
Subject key identifier: 19:2F:AC:11:93:CE:48:48:DF:72:86:46:8B:87:20:B0:3F:78:62:DD
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018AFF0DF143B86870DBF123BAB5910C1BEC
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/GS-sEZPOSEjfcoZGi4cgsD94Yt0.roa
Signing time: Thu 05 Oct 2023 08:56:58 +0000
ROA not before: Thu 05 Oct 2023 08:56:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 45.143.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Oct 2023 06:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:0d:f1:43:b8:68:70:db:f1:23:ba:b5:91:0c:1b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Oct 5 08:56:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=192fac1193ce4848df7286468b8720b03f7862dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4d:cc:b4:cc:2f:62:ba:49:e6:ec:17:69:47:
74:37:bf:6c:84:e2:2a:fb:89:fb:1f:ff:45:21:2e:
2f:05:ab:86:09:83:18:2d:93:72:3b:74:ff:55:27:
d1:55:2e:e1:0d:77:25:e4:ce:94:5c:ac:21:5b:29:
f7:af:db:49:63:d6:34:d4:e4:39:82:c6:94:b6:f0:
a8:6b:46:48:de:1e:f4:f6:d8:29:5e:8f:ac:c0:92:
0b:23:11:f4:b4:49:18:79:0c:7c:8e:28:fc:9c:a2:
c7:20:13:db:ab:b6:48:7d:31:92:48:b3:dd:24:f9:
7c:58:cf:0d:88:19:f1:87:37:9c:cb:3c:7f:47:c9:
a8:53:b2:45:4f:59:93:d3:c2:38:3d:6c:12:95:e8:
d6:a4:37:78:86:a9:17:d2:1d:59:d4:ce:98:32:ec:
75:3c:39:f4:20:d9:c6:de:50:77:ba:c4:b8:e1:3a:
9d:cc:58:aa:0e:3b:9b:8c:c5:1a:9e:47:c2:a3:aa:
7d:d4:74:52:4f:e2:20:1e:71:a4:fa:21:94:e7:75:
dc:67:1d:a1:08:1f:d1:ef:ee:96:8f:1f:24:18:69:
e8:42:c2:34:44:1a:6e:42:98:23:47:d1:4f:3a:35:
34:9d:7d:68:f2:18:8b:28:fb:03:ef:87:ac:18:af:
7b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:2F:AC:11:93:CE:48:48:DF:72:86:46:8B:87:20:B0:3F:78:62:DD
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/GS-sEZPOSEjfcoZGi4cgsD94Yt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.5.0/24
Signature Algorithm: sha256WithRSAEncryption
54:86:ff:a9:3e:f2:fd:08:1a:7d:2f:26:e2:b4:6d:77:fb:4e:
9f:a6:51:17:99:9b:7d:b0:73:3a:e9:cd:85:36:5e:e1:ff:4a:
1e:72:be:e6:04:88:b0:02:d6:7a:d3:ee:78:36:18:20:bc:3f:
4a:78:09:ba:df:67:56:c6:b6:f5:1a:e5:7b:a3:61:b8:a3:33:
0c:a1:55:b0:84:67:07:9c:38:1c:9e:5e:b7:2b:67:91:8a:14:
c2:fb:da:b6:47:e9:12:69:bc:9a:1e:2a:d5:30:a4:3d:44:e0:
7d:75:9d:04:07:a9:33:cf:ba:48:fe:82:dc:ae:ab:61:b6:e7:
54:63:4d:88:38:54:cf:ff:45:b1:d9:cf:9f:6e:8a:a5:39:db:
c9:29:b0:f9:22:7c:19:ea:05:a3:17:6d:3d:df:a8:bc:4e:e2:
fb:99:2a:65:b9:e9:6f:d4:ef:d0:5b:6c:67:76:0d:2d:d7:82:
74:1c:2b:62:09:af:5f:c5:84:a0:0b:ba:76:6a:a7:d9:3a:87:
27:07:9d:69:7d:aa:1f:63:e6:ae:84:1c:eb:9f:d1:eb:e0:e4:
67:64:4d:91:24:6e:38:65:58:67:70:15:45:89:6c:20:6b:5d:
e6:78:0b:86:fc:c9:9f:0c:30:fa:2a:66:59:60:73:a4:3c:83:
d0:58:7a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org