Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/GBaLHJPqBj2C8SYBOX_QYG0MLN4.roa
File: GBaLHJPqBj2C8SYBOX_QYG0MLN4.roa (raw, json)
Hash identifier: +dO9gvQ3r9J1E1EGhYXnI5rue1du94Y++9nkzvqvCoE=
Subject key identifier: 18:16:8B:1C:93:EA:06:3D:82:F1:26:01:39:7F:D0:60:6D:0C:2C:DE
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 018C609684FA0A0EF172CE43DA4297C424FB
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/GBaLHJPqBj2C8SYBOX_QYG0MLN4.roa
Signing time: Wed 13 Dec 2023 00:32:06 +0000
ROA not before: Wed 13 Dec 2023 00:32:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 195.95.201.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:60:96:84:fa:0a:0e:f1:72:ce:43:da:42:97:c4:24:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Dec 13 00:32:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18168b1c93ea063d82f12601397fd0606d0c2cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2b:64:a8:e9:71:e8:88:b4:e5:28:7f:01:21:
83:0e:15:5e:a4:67:35:33:fa:95:96:18:01:37:01:
ac:91:79:2d:dd:ac:12:7d:e9:86:b9:14:92:fa:56:
db:a5:2e:1e:06:01:c9:c3:a9:20:2e:c6:7b:10:3a:
d0:26:95:ad:c6:5d:74:a7:bd:8a:5b:c7:d1:0d:95:
bc:86:ed:96:a9:24:f9:88:b7:4f:1b:7e:20:05:56:
3f:f2:49:a3:14:dc:08:f0:49:dc:8d:55:07:b9:4e:
f5:48:48:1b:f0:66:25:36:32:38:90:49:ac:ca:bd:
42:cb:3e:c2:e4:d8:2c:43:11:83:3e:d4:31:d8:ed:
81:db:a9:fc:59:23:9e:06:26:92:c8:00:38:83:a5:
5b:64:14:d0:a0:a4:84:aa:41:ff:25:42:b3:97:5e:
bd:72:12:2d:21:93:ac:67:4c:71:90:e5:81:58:e2:
13:1c:98:07:aa:04:a2:76:68:27:4d:f0:5c:99:e8:
5e:dc:da:19:66:95:a3:16:5f:d0:c9:67:8a:4f:d3:
25:61:eb:11:ab:24:f2:ce:f0:3c:68:4a:1e:f9:01:
e0:7d:c3:3d:55:60:97:f5:de:be:a5:d0:92:fe:cd:
bd:3b:75:ad:21:2e:ce:e5:cb:f5:10:3f:4f:6d:e1:
b8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:16:8B:1C:93:EA:06:3D:82:F1:26:01:39:7F:D0:60:6D:0C:2C:DE
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/GBaLHJPqBj2C8SYBOX_QYG0MLN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.201.0/24
Signature Algorithm: sha256WithRSAEncryption
53:69:3b:da:fa:4d:95:51:6d:e2:e1:85:be:e0:30:f0:a7:6c:
50:0c:dd:3b:98:55:32:6f:94:72:d7:e5:56:73:13:ff:df:d4:
ed:4c:48:8e:26:a8:6c:dc:2d:8d:1f:2f:bf:5a:58:97:42:0d:
03:c7:50:dd:71:e4:74:e7:8e:a5:33:55:da:45:a7:ff:5a:a8:
2b:e2:b4:19:cd:52:2c:47:51:78:52:f8:83:b8:5f:3c:ee:11:
11:dc:ff:71:b9:da:e6:68:86:22:b9:ee:a2:f4:2f:0a:0b:12:
3c:e8:2c:ea:47:62:90:88:b7:63:62:b9:82:cd:99:86:9b:4c:
47:8c:cd:fb:7b:ab:cd:91:0b:e2:ec:af:56:2b:db:4c:5d:c1:
31:89:5e:db:63:1e:b9:81:aa:68:95:94:b2:24:98:29:28:4d:
3b:1d:d9:f0:e2:3f:c0:62:60:b4:11:4c:db:04:46:e1:56:5b:
a3:3e:b5:e2:75:76:a8:ee:d0:a8:44:e3:4f:6a:b6:f2:66:89:
3b:bd:c2:4a:a1:6e:f0:1f:0d:17:0b:37:c0:80:c5:38:28:2a:
36:a9:59:0d:31:d3:68:36:68:13:18:e6:48:43:a3:19:ef:0c:
92:3e:7f:05:f0:60:4a:32:4b:df:62:bc:08:a4:55:3b:fc:1c:
2c:b3:06:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:34 2024 by rpki-client on console-ams.rpki-client.org