Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/GbwJZIpgZPoDg-pi2DzJVdQZwdk.roa
File: GbwJZIpgZPoDg-pi2DzJVdQZwdk.roa (raw, json)
Hash identifier: K+518TVJ/UFnGG8onbSb/gyqJaDktttXUhQK0+mxrOo=
Subject key identifier: 19:BC:09:64:8A:60:64:FA:03:83:EA:62:D8:3C:C9:55:D4:19:C1:D9
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 0188FC2CC391820BCFC98E8EFF78AC4861D7
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/GbwJZIpgZPoDg-pi2DzJVdQZwdk.roa
Signing time: Tue 27 Jun 2023 09:26:12 +0000
ROA not before: Tue 27 Jun 2023 09:26:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205675
IP address blocks: 37.18.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:2c:c3:91:82:0b:cf:c9:8e:8e:ff:78:ac:48:61:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jun 27 09:26:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19bc09648a6064fa0383ea62d83cc955d419c1d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:90:28:18:76:f9:18:2d:f3:4e:a0:bc:96:8d:
50:91:c5:ca:73:82:3c:12:ff:2e:6c:17:c0:20:78:
86:0e:36:1e:7a:f1:55:19:d0:5b:32:5f:51:d7:11:
e2:28:11:16:5a:98:aa:9e:20:56:0a:40:96:ef:77:
39:60:c1:b1:d5:8f:85:d6:e3:ed:32:8d:ba:0f:93:
82:98:f2:ce:dc:6d:2b:c8:bc:0d:49:74:8a:cf:d2:
0c:9d:76:21:dc:f9:cc:5b:4e:34:0f:32:0d:2a:70:
6d:61:13:76:48:5c:ce:f2:24:3c:52:a3:31:20:b1:
96:51:4b:08:dd:ae:0d:53:84:c0:eb:0e:63:3c:3e:
3b:1e:aa:5d:1a:0e:39:10:a6:4d:9a:1a:f0:65:21:
9f:9b:88:a3:74:1b:35:3b:38:e3:5d:de:ef:02:67:
72:4b:39:6f:19:ad:03:a6:4d:82:97:87:4b:fa:29:
5f:3d:60:38:23:5c:9f:c8:75:35:68:77:67:c0:39:
64:91:33:2e:7e:79:95:23:1b:df:69:66:f6:1b:5f:
a2:15:3c:2c:40:2b:2f:5f:5e:63:e9:d6:6d:e4:d3:
30:61:55:86:47:84:87:9a:95:e7:8c:8f:b5:4a:fb:
b9:41:2c:5d:84:1e:d1:bd:e2:22:8d:91:ed:a5:eb:
a4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BC:09:64:8A:60:64:FA:03:83:EA:62:D8:3C:C9:55:D4:19:C1:D9
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/GbwJZIpgZPoDg-pi2DzJVdQZwdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.24.0/24
Signature Algorithm: sha256WithRSAEncryption
53:e0:bd:b1:ee:59:e5:d3:76:c3:82:da:25:4f:6f:87:b4:58:
00:be:ac:28:47:a2:73:aa:c8:d7:8a:7e:b8:b5:f4:c9:3a:a8:
bf:70:ec:88:f8:ea:c4:fb:ab:f1:2d:ab:e0:27:16:33:a7:38:
67:25:1e:5a:6c:2c:2e:61:f7:7d:7b:d5:3a:e1:a6:f6:47:74:
4c:a8:3d:09:ba:35:4c:6a:bf:c2:57:7a:07:c7:35:ef:12:13:
67:5f:c2:5a:8a:24:ad:ae:e7:b9:49:27:c2:b1:bc:e6:97:94:
e0:f8:42:0e:49:f3:e5:46:a4:48:a7:fc:a4:d9:e2:ed:72:c1:
2a:33:ca:bd:9b:23:64:ff:06:da:5f:2f:79:38:2e:46:2a:49:
0b:44:a8:85:4b:e5:70:d2:c6:b9:0e:0a:d0:e0:83:e9:7d:f6:
97:97:a5:6a:6f:f6:1d:19:fb:df:85:ad:2b:9f:ce:2f:4e:c7:
83:de:f8:dd:e7:c4:27:70:6e:5a:d4:0d:6b:fa:e2:55:92:f9:
9b:80:fe:5d:76:5f:2a:b2:5b:8f:bd:57:93:17:3e:76:cb:75:
14:8d:3d:5b:42:17:6e:a3:bc:2e:24:bb:30:5e:f7:44:62:5e:
30:70:74:98:b3:67:99:2a:93:af:0b:1d:13:c0:4c:d1:b7:a2:
91:80:85:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org