Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/GwEj9bf5jW4rDV-4nIL4gQCMYVs.roa
File: GwEj9bf5jW4rDV-4nIL4gQCMYVs.roa (raw, json)
Hash identifier: Y4aGvI9CWicxupQMs8mAy9RBOVdDSltLQf9AC3XnPEg=
Subject key identifier: 1B:01:23:F5:B7:F9:8D:6E:2B:0D:5F:B8:9C:82:F8:81:00:8C:61:5B
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018843CCF5187BE0294A2B17B34EF5D3144B
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/GwEj9bf5jW4rDV-4nIL4gQCMYVs.roa
Signing time: Mon 22 May 2023 14:11:25 +0000
ROA not before: Mon 22 May 2023 14:11:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49217
IP address blocks: 80.71.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Jun 2023 12:50:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:43:cc:f5:18:7b:e0:29:4a:2b:17:b3:4e:f5:d3:14:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: May 22 14:11:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b0123f5b7f98d6e2b0d5fb89c82f881008c615b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5d:8b:0c:41:ff:cc:f8:3a:01:b4:cc:06:ee:
95:ec:31:5b:d8:62:ec:ad:00:a3:be:c7:4c:33:37:
95:c1:54:e9:02:f8:79:75:96:11:23:61:92:1b:cd:
4e:30:d0:de:7a:14:ce:3c:ce:cb:5b:be:8a:e7:cd:
f3:0d:1c:b0:4f:74:85:61:7d:cd:14:76:50:21:db:
01:e4:f2:96:17:e0:9e:99:d1:28:0e:f2:f0:41:14:
f6:41:21:6d:78:75:d0:37:c5:81:56:d7:f6:6c:6f:
6c:9f:95:bd:62:94:d6:db:bf:a2:20:4c:1f:5d:04:
00:4f:2c:d4:16:34:41:33:f1:bc:36:4b:47:92:f5:
d1:6b:ab:79:a1:12:24:63:57:1f:d6:c9:7c:d0:33:
14:75:41:6f:a7:70:97:99:1b:c6:11:9d:e3:b4:92:
72:cb:8b:00:38:ba:37:06:46:52:8f:19:f1:81:f5:
b0:c6:08:ce:4c:70:51:36:62:0b:29:ef:68:44:8b:
7d:68:aa:c0:da:0d:eb:1a:89:8e:ae:3d:4a:df:61:
09:43:ee:93:87:b6:60:06:19:19:be:23:55:91:0f:
40:66:b5:77:65:cb:a3:cc:ea:37:08:72:bb:21:59:
04:4a:50:74:f3:45:f3:b8:0c:62:a7:9b:5c:e1:b7:
ce:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:01:23:F5:B7:F9:8D:6E:2B:0D:5F:B8:9C:82:F8:81:00:8C:61:5B
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/GwEj9bf5jW4rDV-4nIL4gQCMYVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.236.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:42:61:1c:d1:2e:0c:6d:d2:d0:f7:df:78:00:fd:1d:9c:49:
ee:d7:05:ab:73:70:c7:e9:a9:e0:2f:fe:cb:75:ca:e6:23:b4:
d2:28:d7:50:34:e5:82:d7:ff:68:80:53:7a:ca:8e:f7:04:4b:
c7:94:19:71:a8:34:8c:b6:e3:87:65:0f:35:98:9c:95:14:25:
a3:2e:01:a0:21:09:ce:40:74:5c:32:ec:a0:46:1d:8a:c3:0e:
f2:5d:4e:76:90:a1:8a:96:7d:1e:e6:51:8e:a2:76:70:26:85:
38:d2:bd:66:13:73:e6:91:e5:a2:f1:76:4f:ed:4e:7d:8b:7c:
1c:70:7e:35:98:a9:4d:64:57:31:cc:6a:7d:55:15:fc:0f:e6:
a7:d6:0a:db:c3:e7:88:39:47:ae:b0:c2:88:17:87:e8:a2:61:
37:57:d5:44:96:11:29:45:e7:f2:20:f1:01:50:91:5e:7d:3a:
da:dc:b5:14:e8:b4:26:6a:ef:8b:9a:b6:67:dd:58:24:06:ec:
4f:19:a5:0e:c1:df:ab:63:2e:0f:b4:e7:1e:7c:22:ec:3a:7d:
d9:fc:0d:df:b7:e8:e3:a8:40:0c:da:69:bc:11:39:4c:f0:4a:
1d:fa:20:f8:ee:8a:0c:67:1e:05:b2:03:52:07:f9:9a:08:8d:
3f:9b:b9:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:39 2024 by rpki-client on console-fra.rpki-client.org