Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/6b9822-2f3e-45ba-a018-88ba02786d0d/1/Gvb95HRB3NpHBkB9Uek10165xTE.roa
File: Gvb95HRB3NpHBkB9Uek10165xTE.roa (raw, json)
Hash identifier: JudtgZcoYilXd18hYCR4mONy6Fumj/arCYmkrJgD4HQ=
Subject key identifier: 1A:F6:FD:E4:74:41:DC:DA:47:06:40:7D:51:E9:35:D3:5E:B9:C5:31
Certificate issuer: /CN=5e81164ce388259186fba015acc4b0eb48beb552
Certificate serial: 0185723A27B6A333DDF14AE3329BD96BB798
Authority key identifier: 5E:81:16:4C:E3:88:25:91:86:FB:A0:15:AC:C4:B0:EB:48:BE:B5:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoEWTOOIJZGG-6AVrMSw60i-tVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/6b9822-2f3e-45ba-a018-88ba02786d0d/1/Gvb95HRB3NpHBkB9Uek10165xTE.roa
Signing time: Mon 02 Jan 2023 11:24:51 +0000
ROA not before: Mon 02 Jan 2023 11:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197197
IP address blocks: 109.224.64.0/18 maxlen: 18
2a00:7e80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:27:b6:a3:33:dd:f1:4a:e3:32:9b:d9:6b:b7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e81164ce388259186fba015acc4b0eb48beb552
Validity
Not Before: Jan 2 11:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1af6fde47441dcda4706407d51e935d35eb9c531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f0:5b:16:37:86:d0:30:e5:b5:4e:96:e3:1f:
de:7f:12:49:c7:8b:1c:5e:f3:dd:cb:29:33:8a:b9:
37:a0:b9:98:36:f4:e0:ec:b1:d1:7e:18:91:f6:32:
81:05:cc:65:88:97:d1:91:7a:12:e0:c9:96:85:44:
3d:e4:93:e4:a4:63:b5:27:56:c8:54:fc:d9:fe:c3:
cd:ea:0b:de:0d:c5:90:a9:30:fe:a6:35:f4:81:26:
4a:10:e4:b1:7c:bf:50:3e:e6:a8:78:8b:7d:1f:97:
0d:e6:95:5f:23:27:46:2d:05:aa:8d:92:75:ae:13:
86:a3:cd:98:ea:af:27:99:5c:dc:74:ed:52:a8:96:
c0:6d:a3:4b:6d:0f:e0:be:27:f8:36:b3:90:c0:99:
96:79:85:4a:69:60:3a:a7:a2:a2:1f:19:28:02:2c:
56:23:e2:bd:85:ef:da:6a:18:d2:20:c3:4b:22:63:
c5:7c:39:d8:63:52:82:8d:da:a8:aa:88:f7:83:c6:
f2:56:3f:b3:0f:dd:d9:68:f4:4b:df:ff:9a:04:f6:
78:5e:64:90:2c:36:ea:db:da:e9:3e:e0:75:35:17:
00:55:33:dc:7a:9f:c1:cd:08:55:89:91:15:54:c6:
fb:c1:b1:cc:63:77:c5:06:24:7b:27:37:37:d6:a4:
9c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F6:FD:E4:74:41:DC:DA:47:06:40:7D:51:E9:35:D3:5E:B9:C5:31
X509v3 Authority Key Identifier:
keyid:5E:81:16:4C:E3:88:25:91:86:FB:A0:15:AC:C4:B0:EB:48:BE:B5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoEWTOOIJZGG-6AVrMSw60i-tVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/6b9822-2f3e-45ba-a018-88ba02786d0d/1/Gvb95HRB3NpHBkB9Uek10165xTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/6b9822-2f3e-45ba-a018-88ba02786d0d/1/XoEWTOOIJZGG-6AVrMSw60i-tVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.224.64.0/18
IPv6:
2a00:7e80::/32
Signature Algorithm: sha256WithRSAEncryption
01:65:e0:6b:11:99:07:83:50:d3:38:0a:9e:10:d6:0a:29:18:
40:d9:c2:fd:2c:19:06:8d:25:30:3c:0b:c1:8b:6d:33:9d:e3:
d3:d9:79:28:a8:4c:f0:8a:60:34:c2:b7:0d:78:49:88:76:cb:
d7:9e:19:5d:83:eb:54:1c:68:e9:d5:3c:11:66:fa:b4:47:ad:
3a:03:1f:a5:e2:20:6f:4e:b6:17:14:3a:23:13:86:1c:36:80:
a2:c3:6a:35:a7:0c:79:76:a1:36:4b:0a:82:f5:0e:8d:14:51:
53:92:f4:34:d2:9c:79:c6:ba:6a:01:3e:2c:29:e5:98:08:60:
e8:21:73:02:f0:8b:cf:c5:1e:51:50:0f:5a:1a:c9:bf:2f:e1:
90:48:25:be:b4:d1:05:78:f8:7c:6e:f6:90:75:cd:a7:8a:c9:
5b:06:b8:fe:fc:7d:c7:3b:b8:13:81:97:26:d4:1f:f0:53:f7:
6f:3e:8c:99:da:35:49:d0:2c:29:42:0d:33:3d:4d:18:88:fe:
ad:8f:ff:bc:b2:22:6c:e0:f0:90:ed:96:e1:38:3a:75:11:00:
6f:cd:93:31:21:4a:95:6a:73:41:a3:f7:2a:6f:ed:0c:c3:94:
35:5d:0e:d3:61:98:28:02:dd:a7:85:d9:0a:9a:25:3f:9d:d9:
7e:9d:d6:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:49 2024 by rpki-client on console-fra.rpki-client.org