Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/gyOo-n7RfpQk8RB1gOt7DvcO-VU.roa
File: gyOo-n7RfpQk8RB1gOt7DvcO-VU.roa (raw, json)
Hash identifier: xFdyOBGYP3hCbDMjJsPf+Q/WFN1I1Pzd6MXnOmFjNFs=
Subject key identifier: 83:23:A8:FA:7E:D1:7E:94:24:F1:10:75:80:EB:7B:0E:F7:0E:F9:55
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018572BA4B4A377D06F2F84A8BF04F081368
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/gyOo-n7RfpQk8RB1gOt7DvcO-VU.roa
Signing time: Mon 02 Jan 2023 13:44:49 +0000
ROA not before: Mon 02 Jan 2023 13:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39087
IP address blocks: 109.248.36.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:4b:4a:37:7d:06:f2:f8:4a:8b:f0:4f:08:13:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jan 2 13:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8323a8fa7ed17e9424f1107580eb7b0ef70ef955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:0b:c2:3e:16:b8:7c:d2:04:3e:24:65:3a:82:
08:d9:12:2d:c8:24:c4:40:98:0b:7f:12:33:c0:52:
40:c0:e0:31:fe:ba:3e:79:bd:40:dd:c0:fd:08:1a:
01:46:a8:93:60:04:28:76:4f:0e:97:7a:69:bc:ea:
ad:3c:5d:70:dc:b9:a0:11:25:37:a5:92:77:04:4a:
3f:1f:8d:66:24:76:ec:3d:4e:55:04:8e:bd:28:67:
e0:a8:77:51:cf:f5:c8:1e:e1:77:c9:37:13:67:c7:
60:ea:f1:32:70:20:20:0c:74:55:f2:2c:d7:09:e2:
9e:91:aa:c9:95:5b:c9:12:67:26:20:4a:f2:31:e9:
fc:ce:62:82:78:fa:fe:91:f3:5f:8f:b0:2d:05:5a:
77:fa:80:2c:73:6e:21:c3:e0:28:16:ac:46:07:49:
e6:5e:f6:dd:29:16:84:df:f4:a1:4d:a8:29:f9:1e:
6d:5a:98:c7:61:c9:f2:99:52:a9:30:df:47:c6:d3:
b5:3d:45:2e:12:01:c6:57:5d:66:13:53:3d:11:e1:
d0:c9:7c:a4:1a:21:d7:c4:8b:73:66:1d:70:58:0d:
c7:93:05:56:f9:c3:f2:8d:a4:35:20:b1:a4:f5:4b:
27:af:50:d1:4a:5a:ea:aa:b7:d2:41:34:89:97:78:
ae:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:23:A8:FA:7E:D1:7E:94:24:F1:10:75:80:EB:7B:0E:F7:0E:F9:55
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/gyOo-n7RfpQk8RB1gOt7DvcO-VU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.248.36.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:4d:c7:31:39:38:48:11:3e:5d:ac:55:94:bf:68:81:b2:21:
e1:b9:d9:d6:1e:8b:ac:aa:4d:e6:5e:59:fe:d5:0d:49:c4:5c:
f8:76:16:6b:f9:de:ef:39:76:52:dd:81:49:cf:ce:0e:6d:6c:
8b:35:ab:bd:00:d0:80:60:16:ed:aa:c4:4a:b3:07:af:34:ad:
95:66:b9:d2:5c:cf:a3:2d:b3:d0:2b:f1:b2:ca:25:0b:70:14:
77:18:fd:c7:1c:cb:a1:2d:b8:72:0f:8b:cf:eb:00:fc:ac:1f:
6c:14:f1:96:16:7f:5e:87:b4:3f:20:dd:2e:0f:a7:94:16:68:
6d:7a:5c:7d:a3:77:b5:f7:49:ba:f4:20:89:9a:91:51:a1:e9:
59:a6:9e:a8:f7:99:25:7d:19:c0:1a:11:e1:2d:c3:bf:b6:3c:
63:1c:53:f3:03:c7:6b:10:9f:da:63:64:58:e4:87:39:75:e7:
be:79:64:ac:71:cd:b9:16:32:08:39:1d:d5:69:f2:3c:38:ba:
74:16:07:ae:45:c0:b1:23:97:ad:df:38:46:84:87:b6:84:f7:
27:51:52:08:77:59:f3:85:dc:02:1c:b9:57:d3:6a:15:46:8e:
d9:46:f9:e9:d6:3e:5a:57:37:43:e0:3c:17:94:17:8a:50:ed:
b2:f1:c3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org