Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/gmdekscU2pHuvC6Ar2S1bHcpWYA.roa
File: gmdekscU2pHuvC6Ar2S1bHcpWYA.roa (raw, json)
Hash identifier: 0x70gasd4b3tDKX5PLS/+1EX7Sk4pT+X0f6DSeZ2t8o=
Subject key identifier: 82:67:5E:92:C7:14:DA:91:EE:BC:2E:80:AF:64:B5:6C:77:29:59:80
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 01856F428B251AAF444147E655B68AEED2C8
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/gmdekscU2pHuvC6Ar2S1bHcpWYA.roa
Signing time: Sun 01 Jan 2023 21:35:10 +0000
ROA not before: Sun 01 Jan 2023 21:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203420
IP address blocks: 194.50.176.0/24 maxlen: 24
2a0a:4540::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:8b:25:1a:af:44:41:47:e6:55:b6:8a:ee:d2:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: Jan 1 21:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82675e92c714da91eebc2e80af64b56c77295980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:59:50:0e:4c:c1:57:3a:a9:e6:0d:43:29:a5:
30:98:02:f0:d6:73:64:fd:1d:07:c0:a8:f6:3a:d7:
9d:c3:06:a9:62:ae:e8:96:d2:f8:be:df:c9:63:a2:
c7:e3:3d:b8:45:58:be:3f:6c:c9:7b:8a:e6:3e:c5:
b0:91:f5:8d:2a:b0:5d:00:de:db:69:08:94:06:62:
20:19:ba:23:1a:c5:68:4b:d6:50:cb:f8:6a:99:08:
93:60:99:17:e1:86:ef:14:e0:29:d5:fa:35:29:db:
da:5c:4c:96:0c:e4:43:cb:84:6d:76:84:12:43:6d:
15:75:dd:b5:ad:81:19:39:93:f1:bf:28:e8:7b:93:
2f:a3:78:15:04:58:c2:63:75:15:af:b3:4a:51:e4:
49:96:d7:5e:6a:03:f2:ac:b9:1b:25:ad:65:57:10:
b4:35:b3:c9:9e:c3:0d:5d:63:00:59:06:7e:bc:8e:
56:87:af:8c:4a:7b:38:f5:0f:fa:e6:38:d7:d3:3c:
8b:08:35:28:07:46:c1:ba:ca:b1:cc:70:4b:ae:32:
37:3b:1e:f2:f7:78:aa:00:75:21:25:93:99:34:a5:
ad:d6:69:a6:0f:38:a5:1f:76:70:b4:ba:45:f0:8e:
0f:81:ba:36:1f:b4:a0:65:d4:9d:ea:e5:20:c4:76:
34:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:67:5E:92:C7:14:DA:91:EE:BC:2E:80:AF:64:B5:6C:77:29:59:80
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/gmdekscU2pHuvC6Ar2S1bHcpWYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.176.0/24
IPv6:
2a0a:4540::/48
Signature Algorithm: sha256WithRSAEncryption
5f:32:15:25:f3:67:96:df:bb:1d:d3:a9:62:27:f1:23:46:b7:
44:f1:2a:a8:a8:f5:ae:2c:d5:d1:88:4e:fa:47:d5:06:9d:42:
4c:b3:67:e4:f5:d7:83:0b:82:2c:4d:3c:f6:6b:eb:1a:61:46:
12:11:f4:38:48:56:33:d0:fe:eb:c4:eb:1c:b3:61:c1:38:93:
5f:49:77:21:ea:57:4f:36:6f:e4:dd:01:25:71:e1:5d:a5:22:
18:08:87:f4:87:f3:a1:ef:5b:dc:55:46:9f:58:0c:da:db:0f:
92:93:17:07:03:53:67:70:03:2b:32:ea:f1:68:a8:f7:d2:bf:
98:de:70:eb:6d:0a:da:53:4c:f9:d0:61:88:78:8e:9e:80:f0:
54:a2:de:76:c8:e1:53:6f:de:1a:a9:6b:b3:14:9e:7e:7b:35:
be:44:99:2a:02:3f:07:46:67:22:25:0a:ef:01:6a:bd:8b:d5:
cd:63:d8:fa:34:20:d9:3c:52:a2:22:3c:ff:16:90:99:03:75:
9c:e7:20:0e:40:e1:7c:84:61:94:57:5e:77:d3:ec:fa:1a:12:
2e:e1:98:53:f4:19:15:86:fc:9e:76:f4:45:13:54:8a:f3:1f:
b6:9d:29:7c:c1:74:9e:bb:65:fb:0f:66:ee:9f:69:4a:d7:d4:
f0:4f:93:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org