Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GcfzzkWD3sVxGdiOSuQ0CackyYU.roa
File: GcfzzkWD3sVxGdiOSuQ0CackyYU.roa (raw, json)
Hash identifier: BzWJqAnnXX4TV2ESkqew5m7csnR5HUNvkQ1pvnJcMX8=
Subject key identifier: 19:C7:F3:CE:45:83:DE:C5:71:19:D8:8E:4A:E4:34:09:A7:24:C9:85
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095626287A4D1CBECB3CFEE598C7B1F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GcfzzkWD3sVxGdiOSuQ0CackyYU.roa
Signing time: Mon 02 Jan 2023 03:45:16 +0000
ROA not before: Mon 02 Jan 2023 03:45:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59430
IP address blocks: 93.170.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:62:62:87:a4:d1:cb:ec:b3:cf:ee:59:8c:7b:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19c7f3ce4583dec57119d88e4ae43409a724c985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:71:c0:17:1e:71:e3:45:92:9b:86:fe:d7:c6:
3c:72:73:19:df:2b:ea:4b:73:35:84:76:5c:cd:78:
fb:e8:1a:0e:f7:57:58:a7:a6:3b:2b:c6:35:c5:b6:
3d:14:b1:aa:3a:45:eb:99:bb:fe:84:2b:bc:3a:c8:
b7:74:fa:f7:ad:7e:cf:5f:71:54:ff:63:8d:d7:f5:
4a:78:e5:ca:c0:f2:26:32:a5:2a:f9:ad:ba:90:52:
90:a9:83:16:2b:42:17:3a:48:4d:aa:40:a3:38:27:
56:7c:7b:e1:04:d7:a4:4a:ea:a9:eb:c0:55:61:99:
dc:5b:44:a9:8b:9c:05:fe:13:cb:d8:ff:b8:e2:21:
88:d3:ed:fb:31:27:38:e1:f6:df:8f:25:c2:8b:6a:
69:a1:c3:ee:5c:42:f8:17:b0:95:60:74:7c:42:92:
46:4c:99:1c:51:b5:14:85:28:e5:25:38:b6:e2:d3:
60:1b:46:c6:f5:1d:67:cc:d4:e4:6a:e4:55:82:3d:
11:e1:19:98:11:7b:99:77:d6:13:7b:ca:36:35:c8:
83:f9:19:27:89:22:44:6f:80:71:ca:ce:b2:7a:5d:
a1:6f:31:f9:52:6f:25:46:71:8c:d1:ac:28:34:a0:
d1:83:48:d4:9b:ee:c8:4c:ba:70:f6:7b:db:e5:c0:
f2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C7:F3:CE:45:83:DE:C5:71:19:D8:8E:4A:E4:34:09:A7:24:C9:85
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GcfzzkWD3sVxGdiOSuQ0CackyYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.8.0/24
Signature Algorithm: sha256WithRSAEncryption
12:25:ca:6d:ec:c8:0c:4d:aa:69:19:3d:bf:41:8f:29:1f:cb:
df:c8:37:fc:22:d7:e2:4d:00:d2:10:09:fa:21:7f:a3:01:7b:
c5:a0:aa:ac:bc:f8:5a:f1:53:fe:63:ca:2d:81:56:68:61:b2:
1b:f0:dc:46:0d:21:4b:e2:0b:b6:e0:ba:ed:b4:01:54:c2:89:
23:db:6f:67:8f:fc:55:b8:0c:b3:fa:25:30:91:34:6b:8d:9a:
42:bb:82:d5:f9:c9:ff:66:70:48:21:8c:99:5a:41:18:2b:d0:
06:3c:58:b3:70:17:89:2e:c9:ea:ac:89:bd:74:c3:8b:27:05:
1d:63:8c:5b:4a:7f:2c:78:d0:31:19:ba:d4:33:61:e7:c7:77:
46:f7:20:72:f9:5b:78:80:61:fb:6f:1b:37:27:05:02:45:6d:
fa:88:20:3e:44:f5:91:da:5a:94:8d:3c:1b:f0:61:6f:0e:28:
f6:ff:03:71:e4:9d:93:0a:97:b5:e5:68:b5:d4:a3:06:d0:2b:
29:0e:9c:b7:6c:ab:8e:2b:2b:9b:63:9e:8c:38:b6:4f:5f:cd:
7b:37:9e:03:55:21:dd:0f:ac:8d:6e:5c:61:e8:2a:ab:c5:ff:
b2:17:49:a8:7b:79:11:8a:bc:84:3d:b1:12:46:c0:db:09:aa:
6d:67:f6:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:36 2024 by rpki-client on console-fra.rpki-client.org