Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gLSURfceYLFrSDXjcrms4Qo1qAg.roa
File: gLSURfceYLFrSDXjcrms4Qo1qAg.roa (raw, json)
Hash identifier: 7j9YG2A/CBvia2E7orqzCDkC1Tyzjdq24QzS0RIPfKQ=
Subject key identifier: 80:B4:94:45:F7:1E:60:B1:6B:48:35:E3:72:B9:AC:E1:0A:35:A8:08
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018FF8E069BA9EF9B23DD730F8B2E7AA74EC
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gLSURfceYLFrSDXjcrms4Qo1qAg.roa
Signing time: Sat 08 Jun 2024 17:23:27 +0000
ROA not before: Sat 08 Jun 2024 17:23:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60647
IP address blocks: 86.105.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jun 2024 12:18:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f8:e0:69:ba:9e:f9:b2:3d:d7:30:f8:b2:e7:aa:74:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 8 17:23:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80b49445f71e60b16b4835e372b9ace10a35a808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d9:39:19:d6:3a:6e:ac:0d:25:d7:f7:d1:8f:
fe:44:95:9c:bd:b7:a7:65:85:3e:9b:9d:f6:86:d7:
c8:0b:15:51:2d:71:ba:5a:b0:c8:ba:ec:a9:33:f3:
d2:99:b2:e4:16:d7:d3:4e:63:7b:96:b4:49:db:ab:
c7:b6:b3:2d:09:6f:44:0b:5c:45:48:1d:d6:a7:e0:
dd:6b:f4:e8:b1:69:d0:1f:5f:3e:9f:f5:d3:96:81:
7c:e9:f2:a2:8f:8d:dd:d7:3f:82:ff:30:56:f5:66:
2d:8c:1b:ec:1e:da:d1:dd:1f:11:b3:e9:7c:99:3f:
aa:dc:fe:db:de:b1:85:e2:a2:b9:08:af:49:6b:61:
92:1d:1f:79:da:1d:69:b6:ca:0a:74:48:3c:37:42:
a7:39:4c:99:fa:cf:e0:a0:06:c8:2b:16:70:51:4b:
1e:6d:a3:da:ef:c5:61:e7:fa:f5:35:dd:11:94:a4:
b9:79:0e:26:0c:67:9b:ff:49:70:47:b5:91:29:c0:
51:dd:5f:c6:fe:0b:50:b1:d5:5e:32:c7:51:b6:cc:
14:b9:1a:6b:e5:12:9f:4b:91:fd:fb:6c:c4:21:a9:
eb:b6:f0:19:71:d7:b9:c8:e9:8c:50:04:c2:41:97:
0a:46:8b:a0:f2:30:ad:53:bc:ae:fc:15:25:74:7c:
0e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B4:94:45:F7:1E:60:B1:6B:48:35:E3:72:B9:AC:E1:0A:35:A8:08
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gLSURfceYLFrSDXjcrms4Qo1qAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.4.0/24
Signature Algorithm: sha256WithRSAEncryption
56:03:3d:36:dc:e6:3e:60:c7:7f:ff:fe:01:3a:c7:0c:d8:23:
d2:06:37:5b:e1:b7:4e:39:5a:58:60:d8:ad:09:a2:24:47:2f:
c2:b5:51:a3:16:5a:31:1c:e1:fb:2d:13:a5:54:e3:95:42:55:
cf:5a:d7:7d:64:9e:71:c9:d4:b3:0a:87:f9:80:6a:a8:ae:34:
64:5d:68:cd:6a:87:e5:7b:ac:0b:11:cd:0b:56:48:7f:39:cd:
9f:c4:eb:0b:80:65:8b:04:67:f2:e4:76:af:6b:08:16:dd:95:
78:c3:48:da:c0:d7:3c:41:19:3e:47:75:93:00:0a:cb:74:f5:
1d:fe:68:83:21:c4:65:88:d0:62:02:f9:18:2f:26:17:f0:a5:
5e:c8:2c:55:48:61:07:e0:ab:44:d2:31:16:17:5d:9e:53:33:
69:90:d6:11:d4:fb:1a:25:d6:37:19:7a:08:3d:45:2a:31:a6:
f5:6e:49:33:64:ae:7e:82:e4:6c:11:45:cb:0f:33:31:70:49:
5b:78:08:77:e2:a8:ac:29:db:64:96:71:d1:86:f9:5d:ec:af:
26:d0:88:88:98:7f:a4:96:6f:fc:b3:0e:05:ec:ed:3f:e8:44:
3d:ec:77:ef:2f:a2:b2:b4:59:1f:8a:1a:09:97:d6:ea:48:bf:
40:52:d3:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 15:45:57 2024 by rpki-client on console-ams.rpki-client.org