Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/GzCFYRRFqIg8IN1VNa9dp325TkY.roa
File: GzCFYRRFqIg8IN1VNa9dp325TkY.roa (raw, json)
Hash identifier: K231ppbOwROuZSwUj7iwoVCAtx5G57W7g0FBsxnmSjM=
Subject key identifier: 1B:30:85:61:14:45:A8:88:3C:20:DD:55:35:AF:5D:A7:7D:B9:4E:46
Certificate issuer: /CN=942588b91da9cca81b49e603a988e2b1eabddc98
Certificate serial: 018F29098C0EC3666987A758EBF38F2F05B3
Authority key identifier: 94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/GzCFYRRFqIg8IN1VNa9dp325TkY.roa
Signing time: Mon 29 Apr 2024 08:47:22 +0000
ROA not before: Mon 29 Apr 2024 08:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15596
IP address blocks: 31.42.120.0/22 maxlen: 23
Validation: Failed, certificate revoked on Wed 01 May 2024 12:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:29:09:8c:0e:c3:66:69:87:a7:58:eb:f3:8f:2f:05:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942588b91da9cca81b49e603a988e2b1eabddc98
Validity
Not Before: Apr 29 08:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b3085611445a8883c20dd5535af5da77db94e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d3:30:db:25:df:d5:bd:77:2b:45:95:d8:f1:
43:94:74:00:19:9d:7f:66:1f:79:8a:cf:40:a1:bd:
1d:8f:16:b0:cb:07:c8:b7:c7:66:74:15:d3:7d:42:
be:0a:87:d7:3d:ac:e6:53:22:37:60:13:bc:30:fb:
c0:e6:67:f4:2f:9f:d7:96:24:48:b6:c7:e8:04:30:
30:48:be:aa:63:b8:e6:68:d0:d0:0c:9d:2c:81:f7:
9a:51:d3:a8:d0:19:28:1d:98:c0:41:37:6f:d1:ee:
f5:16:d9:63:bd:7c:37:d1:cd:62:bc:12:04:c6:70:
33:fd:36:7a:d0:99:b7:64:91:1e:41:a4:70:18:89:
0d:53:72:84:29:53:37:4c:3e:a3:d9:28:c4:0f:d7:
4b:37:ee:c4:0a:de:ed:26:17:47:11:4f:0c:5f:e0:
cd:db:ec:42:f6:7a:44:7c:81:ec:2b:ab:c3:b7:84:
b2:f5:69:0f:68:fb:8a:68:53:ea:db:b4:e3:98:42:
b5:39:e6:8e:95:28:94:22:7a:14:31:20:98:6e:15:
0b:c4:ba:3a:87:11:b3:e3:86:87:d1:f9:ed:67:90:
41:5e:ae:93:9b:c8:69:3a:a7:fb:5a:8e:12:9f:af:
9d:48:bc:2b:e8:aa:7d:7b:7d:75:ca:2a:9e:d2:e6:
54:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:30:85:61:14:45:A8:88:3C:20:DD:55:35:AF:5D:A7:7D:B9:4E:46
X509v3 Authority Key Identifier:
keyid:94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/GzCFYRRFqIg8IN1VNa9dp325TkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.120.0/22
Signature Algorithm: sha256WithRSAEncryption
32:74:c7:60:eb:73:6a:b6:81:70:21:34:cf:fb:7d:b5:3f:88:
46:d8:08:30:c6:ba:69:93:39:87:89:83:c3:59:e1:6a:7f:71:
1c:7d:c0:3a:c9:db:0a:1e:f7:c6:27:41:80:df:af:3d:e4:df:
1c:dc:a6:aa:f0:1c:10:11:fe:24:fb:87:af:fe:9b:c9:ed:ee:
12:6f:70:b2:18:40:5b:c0:82:ea:da:b7:d6:d3:ab:4f:11:69:
a4:7c:ff:e6:a2:0f:5c:46:df:2d:8b:3c:87:a9:4b:eb:35:36:
fd:18:20:48:08:92:2e:54:ed:48:f2:c6:77:64:9a:8e:6f:bd:
dd:6c:05:fb:e4:e1:ea:a0:46:13:5b:34:05:b6:57:6c:59:ba:
7f:2f:73:7a:99:f4:df:b9:e6:20:60:e2:58:91:ce:f6:8e:9d:
e1:7e:0b:78:29:14:76:3b:21:90:de:cd:48:07:ba:dd:8a:a2:
94:17:45:3e:02:08:fb:08:d2:b6:99:96:65:d8:a1:ea:9b:a0:
c2:54:c9:07:0c:6e:ff:44:68:e1:bf:e5:3e:cc:dc:d4:10:0e:
84:65:71:69:8c:64:01:0c:9a:6e:90:0b:b9:ac:34:55:5c:7a:
3d:31:57:cc:b4:6f:8f:1b:96:f2:0b:e6:40:c4:77:dd:c1:11:
79:90:10:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 14:46:53 2024 by rpki-client on console-ams.rpki-client.org