Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/G2GHBDEjksocRPan1tRh0r9SpuE.roa
File: G2GHBDEjksocRPan1tRh0r9SpuE.roa (raw, json)
Hash identifier: UimYSsjtpcuXPO9gwsuiP4i+7zo4KChAPa4VKHUhjHg=
Subject key identifier: 1B:61:87:04:31:23:92:CA:1C:44:F6:A7:D6:D4:61:D2:BF:52:A6:E1
Certificate issuer: /CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Certificate serial: 01856C25BA01DEF6D62C907268B603F762FF
Authority key identifier: AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/G2GHBDEjksocRPan1tRh0r9SpuE.roa
Signing time: Sun 01 Jan 2023 07:04:49 +0000
ROA not before: Sun 01 Jan 2023 07:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46261
IP address blocks: 213.139.196.0/24 maxlen: 24
213.139.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:ba:01:de:f6:d6:2c:90:72:68:b6:03:f7:62:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Validity
Not Before: Jan 1 07:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b618704312392ca1c44f6a7d6d461d2bf52a6e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:28:56:09:62:2c:33:6a:58:64:e4:e9:16:e8:
dc:14:1c:97:57:7b:ef:02:b3:b4:63:fb:13:3f:ed:
75:46:0b:18:04:f4:bc:78:ec:d9:5f:0e:49:c6:5e:
8c:92:26:4d:4b:dd:cd:c3:e8:7e:a3:98:03:99:bc:
64:06:d8:b7:59:d4:b8:fc:b9:17:77:4c:c8:bc:c4:
01:b2:e6:0a:fd:47:0c:8c:ab:e9:5e:f5:b7:40:34:
98:30:b4:2d:e3:fb:3c:17:69:f0:6e:fe:2d:d0:53:
e4:51:e7:b6:1e:b6:57:8c:a7:8a:68:09:4e:3d:a2:
88:86:f7:f0:fd:80:2a:50:8b:e9:c9:0c:b0:6f:86:
b1:e6:3c:ba:1a:dd:0f:09:92:3b:a4:f4:75:4c:bb:
69:28:d3:22:1a:47:a1:31:0a:e8:fa:d2:53:1c:0b:
ae:9e:0b:90:0c:1a:b6:7e:fd:bc:65:6a:d6:f2:0a:
b8:b6:48:9e:0e:f9:e2:47:3a:bc:b0:b3:57:9a:64:
8e:5a:2f:c0:b0:04:19:c3:29:b3:26:da:17:42:7d:
b9:c7:f9:0a:65:08:d9:97:4b:af:1e:80:16:7d:6f:
71:00:53:4d:06:f0:cc:be:a5:fb:73:17:98:1d:f0:
9f:22:f6:28:1c:f6:27:53:2d:8d:d6:eb:45:b2:93:
cf:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:61:87:04:31:23:92:CA:1C:44:F6:A7:D6:D4:61:D2:BF:52:A6:E1
X509v3 Authority Key Identifier:
keyid:AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/G2GHBDEjksocRPan1tRh0r9SpuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.196.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:b2:ea:4f:42:50:29:1c:fa:ac:d1:61:3a:bc:e7:30:c0:35:
65:c3:e3:e4:a3:8a:62:99:53:b8:37:70:5d:eb:d7:e4:45:82:
53:c6:33:16:9e:5e:4d:c5:be:77:67:91:bb:1f:ed:de:12:b0:
c9:95:f3:08:fb:1c:52:65:a3:86:c0:cd:79:e4:70:94:b2:20:
83:13:5a:ba:7c:59:06:2f:6c:d9:5c:5f:85:71:a8:cc:b0:22:
0c:9c:9f:28:a0:07:c7:8e:1a:fe:82:f2:3a:9c:92:b5:ba:fb:
f2:b9:14:5d:9d:c8:bc:66:5c:ad:17:ea:1e:d5:a5:cc:a8:ad:
f3:d8:6f:a2:85:25:34:75:ab:3d:e5:f9:dd:a2:98:32:99:e8:
42:71:fc:11:87:04:ce:a3:e7:bc:e8:a2:7d:f6:88:f7:9b:e3:
00:f1:4f:3c:63:5c:51:1a:d1:29:23:a0:8e:81:57:4a:cd:d2:
f7:84:12:1b:aa:35:b1:66:de:4d:05:49:ed:e1:ff:e9:f0:25:
2e:f5:e4:df:e2:64:78:6b:ce:a5:05:bf:a5:e4:9a:ed:41:44:
48:23:d3:75:98:f0:19:06:7c:4a:5c:e4:7a:a4:50:14:d3:03:
d5:1d:a6:75:f7:56:b1:3f:39:ad:c0:34:72:61:a4:d5:94:96:
b7:e1:c2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:14 2024 by rpki-client on console-fra.rpki-client.org