Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/GuCTTaW0OP2jwxCkd6z9M-2_lJg.roa
File: GuCTTaW0OP2jwxCkd6z9M-2_lJg.roa (raw, json)
Hash identifier: scz3rBVBfHVb7IrEoJ44xSgLgr/5YbD1AKLIaWu/30k=
Subject key identifier: 1A:E0:93:4D:A5:B4:38:FD:A3:C3:10:A4:77:AC:FD:33:ED:BF:94:98
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 01856D93E7D99812425CE2D49EE50286654C
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/GuCTTaW0OP2jwxCkd6z9M-2_lJg.roa
Signing time: Sun 01 Jan 2023 13:44:47 +0000
ROA not before: Sun 01 Jan 2023 13:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 192.89.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:e7:d9:98:12:42:5c:e2:d4:9e:e5:02:86:65:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Jan 1 13:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ae0934da5b438fda3c310a477acfd33edbf9498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:70:e9:e3:fc:6e:cc:17:23:d4:cf:14:f6:70:
75:92:c1:b7:8c:e6:36:d0:04:af:02:9b:15:34:fe:
38:a8:26:9f:46:b6:2c:9a:03:c6:eb:94:16:64:4b:
a0:7b:04:4d:ae:ec:93:75:c3:cd:aa:20:6c:2c:ad:
e3:a2:2f:48:a2:b2:a9:9f:1b:fe:a6:1c:38:80:19:
43:fc:8b:b5:2e:ab:5c:06:f0:15:59:78:cc:68:b4:
38:af:1a:93:d2:a0:56:7a:f8:7d:34:15:dc:64:25:
83:39:e7:15:c7:8f:72:1c:ec:4b:32:b7:83:aa:06:
4b:71:81:ad:48:75:b5:cf:29:eb:f3:1e:20:ea:c7:
48:1b:04:67:6c:a0:33:de:02:76:be:8c:85:93:84:
57:93:7c:3c:9d:4e:25:3a:b4:33:5c:11:20:ea:79:
38:7e:fc:1b:7c:48:b1:94:aa:19:82:23:07:f1:9e:
85:1d:a1:f6:49:f6:2e:a0:f2:9a:11:57:4b:78:57:
a0:e5:69:ad:60:37:c0:67:10:90:49:54:cd:cb:d6:
b0:00:ef:43:d5:44:25:4e:a4:45:63:ec:55:9e:bd:
05:70:4f:c0:a6:f5:81:41:a0:95:e6:55:da:16:bc:
5f:91:d1:f5:1b:c8:f4:fa:63:22:9c:0a:45:65:a3:
48:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E0:93:4D:A5:B4:38:FD:A3:C3:10:A4:77:AC:FD:33:ED:BF:94:98
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/GuCTTaW0OP2jwxCkd6z9M-2_lJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.89.218.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:2e:a3:fe:30:bc:46:3b:67:50:dd:52:24:3a:e1:9c:b5:39:
aa:48:a3:ef:f4:fb:f5:37:19:e0:48:b0:6b:42:a8:5d:bb:f7:
da:97:59:17:00:61:7d:cf:02:bb:8f:1a:6a:23:2e:0b:15:71:
a5:15:9e:fd:37:61:9b:f6:b6:d8:6c:62:b0:06:3c:6a:17:12:
a0:ed:ed:c1:4f:11:8e:07:7a:d8:dd:44:0a:b4:45:bc:77:28:
96:9e:2e:75:c4:a4:40:fe:85:18:a8:bb:45:6b:fb:bb:65:1e:
05:55:08:a6:ae:55:b5:cd:b8:0d:74:29:72:18:5e:f2:eb:c6:
09:54:a4:d4:5c:61:35:65:3a:17:1f:21:82:97:19:17:50:b7:
d8:e6:88:ef:d9:42:f2:7b:02:6e:d2:2b:5b:d4:e2:38:ac:2c:
25:d0:fe:27:28:af:b1:a5:6b:e4:8c:ac:a3:3c:22:2d:51:e7:
75:68:77:41:96:62:4b:e9:df:25:d7:45:5a:a6:9b:89:fe:44:
21:96:ca:be:06:2a:6c:fd:40:c2:48:6b:d2:d7:86:cf:c5:8d:
28:bd:47:02:c7:a5:c4:93:cb:80:1a:92:27:c8:63:b3:be:ca:
c4:9b:a4:f1:6d:4d:c6:e5:b0:df:cb:96:02:ce:4c:ae:b4:ba:
84:37:30:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:12 2024 by rpki-client on console-fra.rpki-client.org