Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/gk5P8rN23usZIHYSyTlMGBP_7xM.roa
File: gk5P8rN23usZIHYSyTlMGBP_7xM.roa (raw, json)
Hash identifier: X7oeqXcEDMX8psgvD+eEAtD8fw/4MRPtxePc3ahNVho=
Subject key identifier: 82:4E:4F:F2:B3:76:DE:EB:19:20:76:12:C9:39:4C:18:13:FF:EF:13
Certificate issuer: /CN=a0bb1718963ddd9128b76fd3d8213a1565ef856d
Certificate serial: 01857102FF985DD7B78E77E0EB6DCBE3C32B
Authority key identifier: A0:BB:17:18:96:3D:DD:91:28:B7:6F:D3:D8:21:3A:15:65:EF:85:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLsXGJY93ZEot2_T2CE6FWXvhW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/gk5P8rN23usZIHYSyTlMGBP_7xM.roa
Signing time: Mon 02 Jan 2023 05:44:59 +0000
ROA not before: Mon 02 Jan 2023 05:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58131
IP address blocks: 194.8.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:ff:98:5d:d7:b7:8e:77:e0:eb:6d:cb:e3:c3:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bb1718963ddd9128b76fd3d8213a1565ef856d
Validity
Not Before: Jan 2 05:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=824e4ff2b376deeb19207612c9394c1813ffef13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ac:cb:9e:bd:82:f9:81:51:9e:7c:85:44:dc:
b0:74:b7:8b:d1:3b:eb:78:db:f3:84:1c:41:49:2d:
b3:9b:a1:d3:41:e7:e2:f8:b1:f1:43:e5:19:f2:63:
26:42:05:f3:73:2b:f9:ae:e1:70:66:b5:01:cb:ca:
42:8b:54:bc:38:04:b3:86:95:47:ca:5a:78:dc:5d:
60:2c:3d:6e:17:86:e5:6c:8f:50:e0:34:f1:6b:49:
8d:3b:e0:1f:98:67:aa:9b:ac:f7:31:21:f4:d7:cb:
3e:81:3e:46:28:18:90:df:7d:48:b4:22:e3:1e:5f:
b5:15:5d:b8:af:42:8a:98:90:6c:24:d0:d7:0d:d3:
42:58:2e:03:bc:9f:40:48:8e:e5:03:8c:98:41:aa:
81:8c:0a:90:71:3b:09:e5:6a:88:5b:32:2e:d8:b6:
34:48:2a:bb:c4:e5:b2:1d:1e:7d:7c:2c:07:28:a2:
e4:95:30:3a:54:b5:93:28:38:2a:e7:cb:b6:b5:15:
d2:2b:6f:cc:07:c7:fe:5b:fa:e3:7c:af:14:73:44:
51:b6:f0:a1:a5:d7:a6:2a:cd:e2:cd:12:ae:8e:fb:
a7:75:1d:ac:51:5c:76:c0:46:74:14:d5:58:e5:10:
c9:4c:4c:3c:40:f2:b0:62:51:ea:28:9a:41:28:04:
8d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:4E:4F:F2:B3:76:DE:EB:19:20:76:12:C9:39:4C:18:13:FF:EF:13
X509v3 Authority Key Identifier:
keyid:A0:BB:17:18:96:3D:DD:91:28:B7:6F:D3:D8:21:3A:15:65:EF:85:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLsXGJY93ZEot2_T2CE6FWXvhW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/gk5P8rN23usZIHYSyTlMGBP_7xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/oLsXGJY93ZEot2_T2CE6FWXvhW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.63.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:0a:1a:16:c6:e9:41:5c:da:f4:04:a7:c9:a7:b1:0d:03:a2:
ec:b6:ea:f8:de:e5:b5:42:79:02:0b:4b:8a:d0:ce:03:5b:95:
35:e4:ee:5b:ae:13:eb:71:87:aa:d4:60:ef:4c:ae:c0:c6:63:
33:09:7e:a5:4c:57:a8:fc:61:f7:a9:b0:3e:46:4e:70:78:d4:
a0:1b:d2:81:a5:56:f4:bd:1b:03:58:6e:a1:e6:e6:df:62:32:
eb:a6:9e:64:e8:c0:da:ec:32:07:4c:d3:16:0b:62:4c:b3:77:
ce:5a:48:ec:aa:c8:7f:8c:c4:de:f9:5f:50:1c:2a:8a:c7:8d:
9a:81:e5:c6:a3:3e:ee:e4:2c:7f:8b:6d:86:b5:bd:35:61:93:
b8:06:93:e0:af:e3:6f:6f:d6:5b:10:3f:8e:34:24:80:43:90:
a8:57:28:cb:25:20:89:f4:37:17:05:8a:2c:3c:ca:07:48:31:
7e:f9:68:75:a9:0e:3a:25:47:aa:96:09:86:95:d3:17:96:6a:
f2:41:8e:c5:6d:23:66:d0:df:c8:3f:b3:13:dc:d8:9b:d9:46:
86:76:25:c7:c4:0e:01:45:bf:4a:1e:b9:92:d4:18:68:0f:04:
94:84:10:d9:83:a4:de:de:e2:84:e6:1d:d2:1b:6f:19:c3:20:
1b:71:24:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:41 2024 by rpki-client on console-fra.rpki-client.org