Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/GQzhwOkcB_tyhOItWHcEt_0rjaM.roa
File: GQzhwOkcB_tyhOItWHcEt_0rjaM.roa (raw, json)
Hash identifier: bwNmuV3EAicu2DHO2yPXDy44FAgOoY/q74gs1PUKrhg=
Subject key identifier: 19:0C:E1:C0:E9:1C:07:FB:72:84:E2:2D:58:77:04:B7:FD:2B:8D:A3
Certificate issuer: /CN=37ff55b95743a915b793d72de71ac96ce6198a97
Certificate serial: 01857079B1AB06770289A5BC377722AA6A61
Authority key identifier: 37:FF:55:B9:57:43:A9:15:B7:93:D7:2D:E7:1A:C9:6C:E6:19:8A:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_9VuVdDqRW3k9ct5xrJbOYZipc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/GQzhwOkcB_tyhOItWHcEt_0rjaM.roa
Signing time: Mon 02 Jan 2023 03:15:01 +0000
ROA not before: Mon 02 Jan 2023 03:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39702
IP address blocks: 193.31.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:b1:ab:06:77:02:89:a5:bc:37:77:22:aa:6a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ff55b95743a915b793d72de71ac96ce6198a97
Validity
Not Before: Jan 2 03:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=190ce1c0e91c07fb7284e22d587704b7fd2b8da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:24:52:08:d0:ce:3c:d7:e6:c1:5c:88:d8:bb:
07:56:52:b5:b9:c7:ef:78:7f:a8:46:2a:09:7c:b0:
8a:67:3d:63:57:d3:3b:ee:8b:75:96:33:d6:60:a0:
25:fd:d4:35:c7:19:15:08:9c:69:5f:34:85:9e:7f:
18:a6:d4:cc:f1:23:cc:e2:a7:63:77:0e:3e:17:7f:
c5:8f:c2:b9:bf:10:81:aa:43:40:6b:62:13:c0:a5:
bf:ae:b1:bd:ad:9b:2d:15:a4:c0:97:14:93:0e:7c:
b8:66:5c:bc:2f:30:b5:22:81:be:c9:10:c2:d3:bf:
90:dc:e5:64:b4:df:1b:d3:9f:e5:0e:c1:de:25:98:
c4:d2:fd:0d:04:4b:0a:6c:6b:1a:6b:8c:f4:6a:39:
a0:66:0b:97:e1:93:b3:b3:04:ff:64:66:61:de:ba:
00:a2:a8:d1:c6:64:08:00:ff:c3:98:ed:0d:96:8a:
6d:b8:87:aa:e5:6c:05:64:96:67:f0:cf:b4:3b:57:
e9:89:78:06:9c:4e:74:60:88:d0:8f:11:dd:c9:bc:
ab:0a:77:78:f0:3e:88:3b:81:25:43:10:3d:ff:66:
07:4e:3c:ae:73:ec:c7:66:63:73:a8:ba:67:c2:23:
3b:be:8a:98:63:ce:1c:11:4b:dc:9e:4f:5f:bc:19:
e5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0C:E1:C0:E9:1C:07:FB:72:84:E2:2D:58:77:04:B7:FD:2B:8D:A3
X509v3 Authority Key Identifier:
keyid:37:FF:55:B9:57:43:A9:15:B7:93:D7:2D:E7:1A:C9:6C:E6:19:8A:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_9VuVdDqRW3k9ct5xrJbOYZipc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/GQzhwOkcB_tyhOItWHcEt_0rjaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/N_9VuVdDqRW3k9ct5xrJbOYZipc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.18.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:ce:10:03:4e:7a:77:7b:9a:80:8e:58:08:61:7e:d0:65:ae:
e6:6c:2d:db:ec:f3:41:40:03:3c:e6:70:e7:bf:65:e4:3b:f4:
c6:4e:84:f5:98:9c:7b:29:e8:89:48:0a:8a:a5:e2:9b:b6:20:
9b:be:23:e1:5f:b5:80:4b:ac:da:60:2c:83:88:04:90:b6:f8:
6c:23:6c:a5:7b:a7:e2:b5:4c:48:c2:6b:0c:0c:64:f4:23:f2:
4e:43:9d:ef:64:01:1a:07:58:52:9f:14:a8:03:ff:69:a0:d0:
f2:5d:5d:3a:8f:7c:ee:c0:01:a0:91:f3:4a:f3:ba:d5:09:4b:
f4:e4:02:aa:b5:5a:79:4d:e5:26:f1:09:60:ec:2a:4e:22:81:
54:4d:46:8e:fd:ba:68:4d:bb:08:16:8f:b8:ee:55:60:11:35:
05:10:27:97:9b:b1:59:ed:68:ff:26:d0:f3:86:92:ad:a5:50:
29:f9:9a:b2:34:8a:40:82:4b:6d:06:27:b6:fa:21:9d:a9:41:
a6:64:04:30:04:bf:e3:05:37:d1:0a:82:53:a2:5e:d4:19:4a:
bc:da:55:b6:63:14:57:01:b3:b6:15:b3:4d:a8:86:a0:fc:f1:
cf:e7:34:65:c1:d6:b8:1a:d6:24:2b:fe:52:d1:89:d5:8b:e0:
fb:97:75:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:40 2024 by rpki-client on console-fra.rpki-client.org