Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/7a8781-e363-46e4-97ed-e3e8151a8760/1/gMkmVkj3a9L1Rm2PrK4JGFYEw28.roa
File: gMkmVkj3a9L1Rm2PrK4JGFYEw28.roa (raw, json)
Hash identifier: xfCEPuv26iLuXsEFMXTGRk5R7TtM0+pJisM+YaVF/E4=
Subject key identifier: 80:C9:26:56:48:F7:6B:D2:F5:46:6D:8F:AC:AE:09:18:56:04:C3:6F
Certificate issuer: /CN=48ba3701691d2928afad3a1b5735a26f4c99cff6
Certificate serial: 01856F94D58815FD707DB64FBF99DAC08C1F
Authority key identifier: 48:BA:37:01:69:1D:29:28:AF:AD:3A:1B:57:35:A2:6F:4C:99:CF:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SLo3AWkdKSivrTobVzWib0yZz_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/7a8781-e363-46e4-97ed-e3e8151a8760/1/gMkmVkj3a9L1Rm2PrK4JGFYEw28.roa
Signing time: Sun 01 Jan 2023 23:05:02 +0000
ROA not before: Sun 01 Jan 2023 23:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8426
IP address blocks: 193.28.85.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:d5:88:15:fd:70:7d:b6:4f:bf:99:da:c0:8c:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48ba3701691d2928afad3a1b5735a26f4c99cff6
Validity
Not Before: Jan 1 23:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80c9265648f76bd2f5466d8facae09185604c36f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fb:35:44:6f:d0:2f:0e:47:cb:07:db:f2:b4:
ca:f4:23:a7:86:55:ca:56:99:26:45:a1:8d:ee:ff:
7d:a0:9a:fe:73:fd:b8:ab:6c:c3:7f:d8:19:d3:3a:
c9:bb:20:fa:d1:7e:98:32:20:0b:38:71:3c:f8:7b:
fb:6d:5a:cf:ca:9b:3b:30:06:63:b7:da:06:d3:5d:
2c:3e:70:e9:68:3a:b9:3c:f3:be:da:e8:bc:8b:bd:
83:22:6b:7c:ae:3d:b2:ea:b9:ea:30:91:56:58:dd:
f4:66:14:55:8c:80:ec:80:d1:31:e9:92:3c:7b:81:
cc:d1:5c:23:c4:7d:94:53:f1:c3:01:8a:07:3c:95:
94:0b:63:4c:7b:61:e9:8a:03:34:c8:0d:e1:37:ad:
ab:e6:cc:31:7c:98:ba:9f:d9:30:f1:42:03:bf:d6:
6a:fe:d8:c8:20:cb:5e:9b:66:01:a7:46:c4:6b:46:
19:7d:5e:c9:71:a8:36:b3:89:fa:cb:7e:4a:70:77:
a2:31:5d:61:0f:74:25:1b:48:82:34:93:43:89:ad:
c4:ef:0b:3a:21:2b:76:97:f5:e8:8c:de:08:a7:a0:
fc:c0:48:a1:89:4b:92:69:e0:31:e7:28:20:eb:5b:
33:d6:1f:aa:87:dd:f6:24:4e:84:78:cd:12:a8:d6:
7d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C9:26:56:48:F7:6B:D2:F5:46:6D:8F:AC:AE:09:18:56:04:C3:6F
X509v3 Authority Key Identifier:
keyid:48:BA:37:01:69:1D:29:28:AF:AD:3A:1B:57:35:A2:6F:4C:99:CF:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SLo3AWkdKSivrTobVzWib0yZz_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7a8781-e363-46e4-97ed-e3e8151a8760/1/gMkmVkj3a9L1Rm2PrK4JGFYEw28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7a8781-e363-46e4-97ed-e3e8151a8760/1/SLo3AWkdKSivrTobVzWib0yZz_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.85.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:0f:be:47:51:55:3d:70:58:fa:ad:3f:a6:b1:11:a7:a5:e0:
70:b7:42:43:5b:a0:2e:5e:26:96:4a:b6:cd:1f:f4:63:a8:c6:
26:4f:ed:66:bc:1e:b3:a0:5a:8b:9b:5d:d0:4e:3f:99:7e:c0:
49:7d:3e:f8:54:d0:b6:72:e6:17:3e:92:b4:57:9f:ca:84:1a:
78:93:00:ea:bf:6b:5b:4a:85:69:b1:7a:f9:42:cd:54:85:1b:
4d:ee:79:e4:9a:22:36:15:78:7d:60:8e:ab:55:5a:9b:7a:5f:
1c:dd:2a:14:de:13:89:55:3f:29:4e:82:7b:e9:c2:50:e4:f9:
ee:c3:e5:fc:3d:c3:15:73:8d:7b:97:5d:86:5a:fb:e8:9b:3d:
ec:25:6c:af:ee:d4:70:82:81:41:71:d8:d8:12:be:87:b0:ca:
22:29:3a:61:b2:df:f9:96:8b:a2:41:e5:91:02:22:3d:7b:77:
d8:0a:2e:c5:e4:dd:13:03:55:46:aa:58:5f:2a:07:9b:13:2a:
11:c1:3a:35:40:eb:a0:64:fe:ad:ea:1f:64:d7:4f:0f:38:ef:
7c:4e:ba:4c:87:02:37:4f:1a:cc:e2:69:d9:3b:74:5a:8d:65:
71:a6:d0:11:8d:dd:12:98:32:df:fb:99:a6:7c:5c:b3:5c:88:
4e:ca:4f:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:11 2024 by rpki-client on console-fra.rpki-client.org