Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/GJ9Xyn18GJO7gICtVLQTpGe2JuQ.roa
File: GJ9Xyn18GJO7gICtVLQTpGe2JuQ.roa (raw, json)
Hash identifier: K+8WzwPtfgqIGYxMpYsY9mjrDSNcTMhjgEKGk1orZB8=
Subject key identifier: 18:9F:57:CA:7D:7C:18:93:BB:80:80:AD:54:B4:13:A4:67:B6:26:E4
Certificate issuer: /CN=c25cb7132c19f7d51f002ed4ad811aecf5b20f57
Certificate serial: 01890638CBA07A1A3B53D6F3314B0596F35E
Authority key identifier: C2:5C:B7:13:2C:19:F7:D5:1F:00:2E:D4:AD:81:1A:EC:F5:B2:0F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wly3EywZ99UfAC7UrYEa7PWyD1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/GJ9Xyn18GJO7gICtVLQTpGe2JuQ.roa
Signing time: Thu 29 Jun 2023 08:15:32 +0000
ROA not before: Thu 29 Jun 2023 08:15:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197997
IP address blocks: 193.68.98.0/24 maxlen: 24
193.68.97.0/24 maxlen: 24
185.143.80.0/24 maxlen: 24
193.68.96.0/24 maxlen: 24
2a02:6a80:5300::/48 maxlen: 48
2a02:6a80:530e::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:06:38:cb:a0:7a:1a:3b:53:d6:f3:31:4b:05:96:f3:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c25cb7132c19f7d51f002ed4ad811aecf5b20f57
Validity
Not Before: Jun 29 08:15:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=189f57ca7d7c1893bb8080ad54b413a467b626e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:49:1b:0f:8d:54:5a:c3:18:4b:0e:68:fd:05:
8a:c5:2e:d2:7f:c6:e9:d4:cc:20:f2:5d:a9:4b:82:
8f:b6:06:7c:6d:f0:0a:4d:be:a4:d3:ac:96:4b:d1:
0e:2c:1f:62:34:ae:cb:7c:85:50:c9:fc:41:33:c3:
72:cf:f9:73:20:27:58:e5:7c:26:2d:d1:d9:27:5e:
9f:04:54:e0:04:7c:69:47:f5:f5:1e:ac:5b:4f:74:
43:c3:f9:9c:1b:88:06:1e:66:3f:ea:39:2c:37:82:
ba:b5:22:6c:b5:e2:bc:cd:8a:9c:85:3a:34:f3:48:
6d:50:fa:ec:56:3c:d4:9e:41:f0:7c:8a:3c:4e:1a:
9c:47:3a:cb:51:ee:b9:55:a4:c5:e3:de:2f:5b:45:
ae:61:98:57:34:ca:8e:aa:a4:fe:bf:35:2b:28:c8:
2b:98:2f:85:8c:40:f8:b8:e1:07:cc:20:50:00:56:
92:61:d7:6c:b4:ef:67:89:7e:8b:7c:75:95:79:3e:
8c:25:93:ea:ab:8e:2a:1d:6e:25:cb:af:fb:b8:ae:
ac:c4:89:31:dd:28:b9:78:f7:ea:3b:52:3d:53:ab:
34:9d:b8:5a:32:db:5e:95:a2:16:9c:40:0b:f8:32:
29:1d:85:42:d3:35:31:7e:04:80:d7:3f:a7:16:44:
b6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9F:57:CA:7D:7C:18:93:BB:80:80:AD:54:B4:13:A4:67:B6:26:E4
X509v3 Authority Key Identifier:
keyid:C2:5C:B7:13:2C:19:F7:D5:1F:00:2E:D4:AD:81:1A:EC:F5:B2:0F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wly3EywZ99UfAC7UrYEa7PWyD1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/GJ9Xyn18GJO7gICtVLQTpGe2JuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/wly3EywZ99UfAC7UrYEa7PWyD1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.80.0/24
193.68.96.0-193.68.98.255
IPv6:
2a02:6a80:5300::/48
2a02:6a80:530e::/48
Signature Algorithm: sha256WithRSAEncryption
22:82:7a:c0:a1:ae:aa:62:fa:af:63:6a:43:46:29:da:37:10:
0e:59:ef:e3:6a:e3:45:7b:ff:c1:c2:42:03:75:1c:f3:9d:d4:
ed:be:ac:44:6e:de:f2:bc:81:41:9a:78:9e:66:45:70:2c:eb:
31:43:26:5d:95:df:3c:59:75:cc:4f:e9:4a:53:e0:fe:e2:68:
ad:b2:7c:89:3c:78:b8:d2:fc:03:9f:8f:53:49:aa:da:8a:7f:
d6:0e:0e:5c:4d:e8:ae:5b:c0:8c:c9:de:7a:75:89:1b:98:a1:
32:dd:c4:fe:f7:5f:61:2c:e7:7b:0a:30:52:de:b4:ea:14:b0:
e3:6b:28:2d:b8:d3:27:02:86:da:f3:d8:29:72:77:82:56:d7:
17:b5:0a:4b:9c:32:0f:a8:95:1c:ca:aa:d6:34:2f:b6:90:83:
db:df:9f:e9:10:38:ee:d0:1b:1f:73:4d:44:20:86:be:60:75:
38:eb:08:8e:e6:b2:25:ec:6d:8a:30:29:aa:77:ed:dc:54:f4:
fb:7c:b7:03:ec:14:5c:e4:bc:49:00:92:1b:fd:28:93:de:20:
8a:10:06:e4:7b:44:c3:10:b1:5b:c8:a8:84:74:7d:86:2f:2d:
cf:cb:39:05:a8:18:d7:66:94:fb:c6:9d:cc:c5:25:50:5f:7f:
28:28:06:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:55 2024 by rpki-client on console-ams.rpki-client.org