Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gZBFd-qeU41bIxdlnOdaMnEUwZE.roa
File: gZBFd-qeU41bIxdlnOdaMnEUwZE.roa (raw, json)
Hash identifier: /wYtY3VIQkzmf+XvaFJ4mQwgWkmjBjg9xeQtRVhq6LQ=
Subject key identifier: 81:90:45:77:EA:9E:53:8D:5B:23:17:65:9C:E7:5A:32:71:14:C1:91
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189499A8B14C4100DDB8785E25C0511006E
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gZBFd-qeU41bIxdlnOdaMnEUwZE.roa
Signing time: Wed 12 Jul 2023 10:16:52 +0000
ROA not before: Wed 12 Jul 2023 10:16:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 93.114.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Aug 2023 16:10:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:9a:8b:14:c4:10:0d:db:87:85:e2:5c:05:11:00:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 12 10:16:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81904577ea9e538d5b2317659ce75a327114c191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:8f:7c:4f:34:a7:b5:0d:9a:d3:00:5e:da:
3d:2d:33:c6:cd:34:1a:47:dc:c2:c3:53:30:5d:2e:
bd:fd:81:eb:81:8a:46:84:5e:d0:30:98:f6:8a:df:
ff:85:a2:13:18:58:16:d3:72:73:9a:78:80:af:12:
14:cc:ac:d8:aa:5b:4a:36:8a:e2:ba:3e:20:3d:ed:
6e:5f:fd:d5:8e:ea:63:b9:b5:2b:b4:1e:27:c3:ef:
50:14:85:77:e6:62:b0:da:ea:f5:3b:7a:85:41:39:
7e:36:24:22:24:46:18:64:72:18:aa:c2:f2:1f:fb:
0b:d8:4e:f9:74:42:db:15:43:38:f6:3a:4d:05:9b:
cc:94:f1:ad:7d:38:2c:f6:e9:a0:6c:39:2d:5c:d0:
b8:81:d6:23:0c:b5:9a:da:8e:2f:09:87:a4:d9:47:
67:dd:2a:80:e2:72:5d:df:b4:0b:49:47:3b:c3:6c:
a9:80:f3:b7:a1:c5:96:9d:8d:24:17:23:26:bd:80:
9c:85:74:56:c6:77:7d:96:10:a5:42:34:bf:52:18:
9b:54:2e:7b:ac:f2:fa:44:cc:36:b9:dd:0e:23:d6:
70:dc:e2:90:35:6d:ad:b3:4b:39:7c:66:3f:7c:c9:
af:be:ba:51:10:33:91:5a:89:40:ae:9c:34:0e:ac:
6f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:90:45:77:EA:9E:53:8D:5B:23:17:65:9C:E7:5A:32:71:14:C1:91
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gZBFd-qeU41bIxdlnOdaMnEUwZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.244.0/24
Signature Algorithm: sha256WithRSAEncryption
74:97:c7:91:a9:98:1c:4f:5c:98:f5:0c:eb:a6:10:2c:f1:f6:
5a:fc:94:ef:ad:bf:c3:39:23:ef:bd:a5:2d:65:8e:7d:9b:40:
cd:61:52:5b:db:0b:76:d5:d9:f7:db:fb:2d:2b:ed:12:0c:0d:
ff:32:66:81:64:39:f2:6b:1b:d8:b7:ae:f3:65:56:81:28:db:
51:f2:38:e8:e1:34:95:e0:96:e7:ed:a8:06:d5:24:81:82:22:
01:77:b0:61:91:a5:8a:9f:6c:1a:f1:be:82:a8:3f:0c:5f:66:
8d:4e:25:ac:bd:bc:28:d2:c3:34:f7:0a:4c:af:94:c6:4e:2e:
28:43:fd:61:dc:e4:fc:d5:bb:31:fa:5a:90:f7:a0:e3:a6:ce:
3b:e6:e5:0b:cb:74:92:d8:e4:fd:e6:fc:3b:0f:c4:fa:c5:8d:
c0:36:83:2c:19:a3:9d:13:a4:b2:fd:3d:5a:f9:36:5d:90:12:
30:cf:0a:1d:af:f0:61:b8:6e:73:55:b5:12:f4:a1:b5:4a:26:
da:6d:94:ce:96:06:cd:9d:1e:11:31:47:e9:e2:45:04:0e:fd:
b3:ab:54:3c:0c:6e:b0:a3:07:50:18:0c:0d:1a:9d:29:16:d3:
30:62:49:30:fc:5c:ce:79:05:13:49:39:68:b4:63:b5:7a:dc:
49:0f:07:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org