Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/GH9CiXMK_YC39uzRtRXFQI63l_E.roa
File: GH9CiXMK_YC39uzRtRXFQI63l_E.roa (raw, json)
Hash identifier: 3eUqxQsp54oxqi05VNLAXav37leorv9sup8zoizM1yE=
Subject key identifier: 18:7F:42:89:73:0A:FD:80:B7:F6:EC:D1:B5:15:C5:40:8E:B7:97:F1
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01856E790730B083D62CFAEAC1D7865DA3BC
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/GH9CiXMK_YC39uzRtRXFQI63l_E.roa
Signing time: Sun 01 Jan 2023 17:55:03 +0000
ROA not before: Sun 01 Jan 2023 17:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33185
IP address blocks: 147.189.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:79:07:30:b0:83:d6:2c:fa:ea:c1:d7:86:5d:a3:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 17:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=187f4289730afd80b7f6ecd1b515c5408eb797f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:22:c3:9c:25:06:c7:b0:5b:8a:c3:e9:fa:4d:
86:d9:c6:70:d4:68:20:58:75:9e:aa:7b:07:bf:dd:
bf:f3:1c:b9:7b:4b:7c:63:9a:16:d5:72:d6:fe:45:
54:a1:37:5b:d8:ee:1a:4b:16:83:13:9b:dd:db:c6:
22:85:47:d1:e5:49:dc:8b:08:bf:b6:e3:db:63:ca:
11:b0:7d:35:a2:08:36:d5:6a:0f:b6:f2:2e:6e:6f:
93:8e:e6:07:88:26:3f:92:ae:22:7f:96:4e:d8:77:
83:2c:d4:27:fe:ab:c6:c4:15:0f:8d:2f:c2:59:99:
cb:79:3b:50:dd:4d:cb:4e:8f:bd:e7:f5:6d:f2:46:
f4:cb:a7:76:6e:a0:80:52:5a:4b:c4:ec:74:77:5f:
f7:c5:e9:11:ba:a0:bb:80:89:0b:f7:c5:73:0b:49:
70:e7:2b:1e:6e:bf:f4:28:45:96:7e:cd:3b:e6:35:
f5:42:a8:cd:f4:54:3e:d8:ec:89:21:30:1f:42:a7:
e9:35:5e:8d:9f:b8:21:5f:46:75:64:62:93:89:92:
ef:93:95:d6:73:79:da:73:2f:33:99:2d:a3:1c:98:
90:8b:28:88:eb:89:1d:18:0b:d1:ba:d6:cf:89:3d:
a0:a4:4f:05:83:3c:21:3a:aa:5b:f2:15:86:64:30:
64:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7F:42:89:73:0A:FD:80:B7:F6:EC:D1:B5:15:C5:40:8E:B7:97:F1
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/GH9CiXMK_YC39uzRtRXFQI63l_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.136.0/24
Signature Algorithm: sha256WithRSAEncryption
84:6d:a5:b9:b4:43:ec:9a:11:eb:3d:24:c4:2b:15:03:94:f6:
b3:e3:5e:11:19:69:06:8d:08:41:7f:ed:55:76:52:07:52:40:
83:6d:b9:01:f2:39:f2:94:06:8f:d5:9b:49:6d:46:0f:43:94:
a2:23:5f:32:da:37:4e:c7:ce:75:4c:1d:10:2f:4f:8d:0e:f0:
c0:d4:fa:a2:2c:c3:62:e8:c2:9f:6e:8c:a6:db:86:d4:8a:38:
f4:c5:55:35:90:80:e1:24:29:a2:bf:e1:e2:58:0b:40:13:9f:
cf:9d:20:82:1e:fb:ed:04:d7:41:66:96:22:e4:75:9c:f9:c6:
41:40:d7:61:4a:b4:e2:5a:c1:51:07:3e:d8:91:43:d0:06:23:
a2:9a:6b:1a:28:30:9d:f1:7b:a1:18:ea:ff:8f:46:b2:b1:81:
28:d4:22:71:d7:f2:da:11:cf:05:71:f5:8a:f6:23:b5:8e:95:
f3:de:74:1c:75:f0:9e:db:64:0e:6a:52:17:42:fa:f5:ff:07:
78:b5:11:b0:54:dd:59:d5:94:b3:f8:76:83:d3:8d:32:1b:32:
d8:c5:78:16:3a:01:5b:ec:1d:10:ac:a8:90:7c:c2:b1:c2:7f:
3c:6b:cb:f0:98:52:2d:53:2e:13:50:53:5a:ee:50:a7:ae:4a:
9e:1e:2c:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:12 2024 by rpki-client on console-fra.rpki-client.org