Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/GV8kciED8UZ4-sYLN5NDjHBkSJQ.roa
File: GV8kciED8UZ4-sYLN5NDjHBkSJQ.roa (raw, json)
Hash identifier: guB+xtxFSdTE4SrOSaqwgosqnJx4O+3Ssje9T1yFmFU=
Subject key identifier: 19:5F:24:72:21:03:F1:46:78:FA:C6:0B:37:93:43:8C:70:64:48:94
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 0185703062DD30BA45D1F27DD7DC70EF2D96
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/GV8kciED8UZ4-sYLN5NDjHBkSJQ.roa
Signing time: Mon 02 Jan 2023 01:54:57 +0000
ROA not before: Mon 02 Jan 2023 01:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30723
IP address blocks: 194.149.38.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:62:dd:30:ba:45:d1:f2:7d:d7:dc:70:ef:2d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=195f24722103f14678fac60b3793438c70644894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e5:fe:0a:56:b1:c3:2d:8c:60:39:f1:4e:e8:
41:10:21:cf:3c:7a:3a:2a:e7:ef:52:08:ee:d7:10:
2b:2e:21:4b:4a:9f:bd:5c:a0:2c:63:96:18:99:7a:
eb:49:57:8f:a3:1a:92:2a:f1:5a:1a:a0:bb:ef:22:
62:a4:48:2a:50:d6:ca:b5:f5:e1:01:21:fc:e3:e1:
d2:34:c2:2e:25:36:c4:be:b7:c6:b0:04:29:02:12:
8e:c7:97:5c:e6:26:8f:b0:04:91:fb:c3:d3:da:80:
ea:10:56:6f:a7:7e:55:00:c0:e7:b9:54:43:d5:93:
dc:fd:8f:b3:15:66:3a:8a:4d:eb:4e:f4:e5:9d:3d:
dc:3e:ee:d0:33:e0:cc:29:e3:2b:90:98:5a:a4:07:
50:09:92:5d:30:23:14:73:d3:51:27:7d:67:c1:da:
db:53:f8:fa:ca:de:45:e8:18:95:f5:c7:35:33:7b:
b8:a2:ba:d3:4a:96:52:4a:c6:63:a9:40:0d:0a:e3:
c4:6a:38:7e:2e:7e:d9:98:10:39:ee:f5:e3:32:57:
8b:f6:93:c2:47:23:64:e9:5f:c0:eb:21:c3:2d:95:
54:cc:76:06:3c:68:53:23:1d:d3:f7:27:12:47:e6:
9a:8f:bb:8e:96:f8:d6:73:3b:96:98:ca:ca:05:60:
9b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:5F:24:72:21:03:F1:46:78:FA:C6:0B:37:93:43:8C:70:64:48:94
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/GV8kciED8UZ4-sYLN5NDjHBkSJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.149.38.0/23
Signature Algorithm: sha256WithRSAEncryption
01:bc:6c:8e:60:d1:78:a1:71:ec:c7:66:f3:ba:2f:b8:7d:f6:
0e:e6:c4:78:e6:9d:f3:d9:49:ca:e5:aa:f5:16:a6:20:ee:5f:
49:0a:dd:2b:94:67:31:8d:b4:a2:48:98:7a:30:16:39:9a:fd:
4c:b7:ce:15:b9:1f:f9:5b:83:0f:f1:d4:77:82:ec:1a:e2:fe:
10:00:c3:a4:87:e3:6a:ef:f6:62:6f:26:8d:0f:2d:38:52:c5:
18:d1:31:f0:13:78:f1:a8:ee:c1:df:2a:6d:6e:85:6e:fb:62:
ed:fb:db:f8:4b:5c:68:a8:9e:01:cd:f6:0c:f0:9e:3f:44:db:
8e:d3:da:54:f4:c9:ab:25:bc:01:2f:59:c7:0f:a8:4e:c4:91:
f2:57:11:70:11:cd:f3:77:11:6d:67:9c:27:25:d5:73:b9:41:
7a:67:fd:8b:68:29:c2:65:83:17:0f:b4:2e:54:45:22:7b:06:
99:ad:71:08:f1:76:51:03:e6:b9:62:66:e4:07:4e:01:62:f2:
6d:3c:fd:11:2b:12:9c:6a:c3:f3:08:7b:91:e4:32:86:54:79:
2f:f7:c6:5e:5c:65:98:3f:09:9f:32:d7:c8:9e:1d:db:38:fc:
75:d4:9c:22:8d:91:c1:cf:52:98:0a:80:13:24:df:9b:ec:90:
73:ba:25:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:04 2024 by rpki-client on console-fra.rpki-client.org