Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/0ca287-3eef-414c-883a-081691257a26/1/GKAYbRmTCCVxj0gOhuzn3hr7r9g.roa
File: GKAYbRmTCCVxj0gOhuzn3hr7r9g.roa (raw, json)
Hash identifier: qMg4+yVyCKibWy/j/4MM205tzxVbx0AN/hkBXJSKBt4=
Subject key identifier: 18:A0:18:6D:19:93:08:25:71:8F:48:0E:86:EC:E7:DE:1A:FB:AF:D8
Certificate issuer: /CN=e6596e1552fc0a5884a881b352817d0b73009083
Certificate serial: 018DF521C7A7291056D5A6B98B0D4DFA3C7A
Authority key identifier: E6:59:6E:15:52:FC:0A:58:84:A8:81:B3:52:81:7D:0B:73:00:90:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5lluFVL8CliEqIGzUoF9C3MAkIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/0ca287-3eef-414c-883a-081691257a26/1/GKAYbRmTCCVxj0gOhuzn3hr7r9g.roa
Signing time: Thu 29 Feb 2024 13:50:48 +0000
ROA not before: Thu 29 Feb 2024 13:50:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20849
IP address blocks: 147.78.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 07 Mar 2024 09:58:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f5:21:c7:a7:29:10:56:d5:a6:b9:8b:0d:4d:fa:3c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6596e1552fc0a5884a881b352817d0b73009083
Validity
Not Before: Feb 29 13:50:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18a0186d19930825718f480e86ece7de1afbafd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:33:07:ef:c4:0f:14:0c:9f:85:b6:56:80:63:
27:05:84:5a:ba:5d:88:b8:fb:e0:65:5c:e9:2b:bf:
09:6d:dd:0f:51:61:43:81:97:c6:00:cb:b8:e3:24:
9a:e3:6c:d5:ec:07:7d:f7:6d:5d:61:d9:a0:67:ac:
7d:a3:02:67:ff:d1:20:75:17:d5:87:e9:56:b5:37:
43:cb:8f:10:94:9b:93:00:47:23:23:7d:3e:8a:87:
00:0e:8a:bc:47:0c:b0:bc:fd:19:a0:d5:10:21:a7:
33:2b:8c:e2:71:53:bd:84:05:4f:40:33:13:a4:39:
77:77:b6:4a:2e:9d:a9:0a:8e:fe:88:ad:dd:8f:61:
a1:d6:3a:f1:de:59:6d:e3:4f:ab:48:fc:46:ff:4d:
e3:6c:a1:68:e1:c9:29:41:68:6d:d0:50:47:ad:38:
6b:e9:2a:2b:72:1e:6f:fe:c1:74:c5:41:07:3d:a1:
97:ba:d9:c7:fa:3f:8e:43:cb:45:6a:ff:49:ef:82:
1b:c2:85:ea:04:d7:a6:93:90:c6:56:52:9e:a4:38:
6c:61:c3:88:fc:40:98:33:2b:0c:cb:be:e3:bd:8c:
65:4b:b9:d0:77:4f:e1:32:f2:95:bf:3f:f4:22:d8:
64:14:60:28:b4:a7:fc:9e:e2:f0:4d:03:97:a1:1b:
fc:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A0:18:6D:19:93:08:25:71:8F:48:0E:86:EC:E7:DE:1A:FB:AF:D8
X509v3 Authority Key Identifier:
keyid:E6:59:6E:15:52:FC:0A:58:84:A8:81:B3:52:81:7D:0B:73:00:90:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5lluFVL8CliEqIGzUoF9C3MAkIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/0ca287-3eef-414c-883a-081691257a26/1/GKAYbRmTCCVxj0gOhuzn3hr7r9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/0ca287-3eef-414c-883a-081691257a26/1/5lluFVL8CliEqIGzUoF9C3MAkIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.92.0/22
Signature Algorithm: sha256WithRSAEncryption
55:b0:cf:83:ae:18:df:0b:b8:24:79:e2:fa:d1:14:3e:fc:4c:
7c:ce:ca:bf:cb:e5:1a:2c:87:bd:0f:a2:8f:8e:3b:57:ce:e2:
fd:6b:f2:0c:f4:f6:20:50:fd:ba:4a:12:1c:cc:26:63:84:43:
0f:9c:15:0b:33:82:2f:a0:2c:0b:d9:0d:68:95:4d:54:62:e6:
0c:7b:d2:71:04:c1:5c:3b:3d:db:58:d2:69:d3:0c:d4:4d:da:
2e:0c:74:d1:a5:5c:ac:7a:cf:ca:6b:31:2b:d7:cf:b0:42:d0:
42:e2:19:22:55:92:eb:d8:2c:00:2c:f3:90:3c:da:66:e3:65:
8a:17:c7:dd:b8:6c:9f:8d:61:b0:d6:50:5a:fe:e0:c8:4c:7b:
54:69:63:2b:72:01:29:75:ee:15:89:ed:ad:26:b3:09:ae:71:
1d:84:4c:50:26:b2:73:fd:a4:a4:09:72:c6:92:f8:57:db:18:
ac:61:28:22:e0:a5:57:73:87:00:e3:94:bf:9e:50:3b:a5:29:
33:e2:2d:72:a4:d4:8a:5c:ce:22:f1:d6:02:dd:a8:98:c4:04:
12:41:52:c9:6e:72:c1:c7:31:0c:52:2e:b4:02:05:3b:aa:77:
1b:c3:67:68:1d:32:4d:10:40:75:5d:85:5d:ea:e9:e3:4a:9c:
66:c6:ff:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 13:55:44 2024 by rpki-client on console-fra.rpki-client.org