Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/GSVbPOH456DwayLGPpb7livh0fE.roa
File: GSVbPOH456DwayLGPpb7livh0fE.roa (raw, json)
Hash identifier: bdRg4ClH71G/tnTNr2fpZMZbvoOUDwFQoHo66wt6qX0=
Subject key identifier: 19:25:5B:3C:E1:F8:E7:A0:F0:6B:22:C6:3E:96:FB:96:2B:E1:D1:F1
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AF11222E67C7ECC6BE4F64AE8D2B7
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/GSVbPOH456DwayLGPpb7livh0fE.roa
Signing time: Sun 01 Jan 2023 11:15:11 +0000
ROA not before: Sun 01 Jan 2023 11:15:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200686
IP address blocks: 85.143.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:f1:12:22:e6:7c:7e:cc:6b:e4:f6:4a:e8:d2:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19255b3ce1f8e7a0f06b22c63e96fb962be1d1f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5d:66:74:69:36:f9:94:2b:06:13:8e:af:c2:
b5:5f:80:1b:5a:22:9e:f4:ed:f3:06:9d:c6:0a:09:
fc:51:0a:bb:6d:7f:a9:e6:5d:d2:63:c5:fe:62:fc:
f7:2e:77:68:32:39:38:c6:1b:39:75:98:68:53:0a:
71:31:32:c3:0b:fb:65:26:f4:7a:ea:27:22:1b:55:
01:4f:6f:81:be:d9:17:b7:f1:d7:b6:f8:e5:dd:e6:
5a:67:e1:81:d1:36:9c:5a:e9:78:37:98:2a:d6:55:
7d:e3:c7:19:c2:d1:1c:e8:37:36:30:df:28:78:2f:
bf:c5:05:f2:de:20:36:22:65:d6:b9:ae:00:e7:7a:
af:66:a2:89:bc:d3:97:d0:81:30:f3:6e:c4:39:a5:
20:77:a9:43:c5:30:7e:22:83:63:52:3c:4c:c5:68:
cd:d9:6f:a6:e1:39:6c:a0:84:79:5a:13:30:43:4c:
ff:99:b8:29:2b:90:76:8e:92:de:92:a8:96:99:c1:
91:02:c9:ef:4f:56:3d:79:c1:da:4f:62:9f:7d:ad:
ee:94:88:ef:b2:df:49:af:fd:5f:cc:87:25:9e:f4:
b5:64:7c:d8:1a:4f:98:b1:db:60:97:0b:dd:41:d2:
af:cc:a0:96:85:51:e1:fc:7f:3e:0d:42:5a:c1:f6:
1c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:25:5B:3C:E1:F8:E7:A0:F0:6B:22:C6:3E:96:FB:96:2B:E1:D1:F1
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/GSVbPOH456DwayLGPpb7livh0fE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.100.0/24
Signature Algorithm: sha256WithRSAEncryption
83:bd:3d:43:33:ad:4d:11:a8:e7:d6:5d:ea:a2:d1:36:d7:d3:
08:47:6d:a6:d5:c1:4e:f6:b3:72:42:b3:be:83:d2:b0:d3:c2:
8c:44:f0:5b:16:ff:e3:0a:b1:3a:bf:04:5d:94:16:76:41:2c:
51:04:f7:2a:c1:96:a6:c4:c8:a6:92:ec:61:75:68:dd:4d:c4:
57:8f:ed:78:07:85:3f:b5:1a:d4:f3:18:c6:66:da:bc:0d:0e:
ba:ca:e0:ac:66:f0:41:d5:cd:d4:a7:2f:08:0c:49:4d:8d:f3:
68:f6:ba:ef:0a:2a:41:b0:73:15:b4:5a:6c:7d:39:5d:81:17:
4b:c5:2c:d7:d5:c9:e4:80:cd:40:69:f6:8d:6e:05:83:ce:c9:
4b:d8:f6:1e:07:f5:ec:e6:32:72:e2:f1:b5:9e:31:6d:3d:c7:
32:50:48:27:58:2c:19:d1:11:99:13:a8:88:f7:87:dc:43:5c:
24:10:73:77:96:3a:6f:da:41:d9:38:54:1f:b8:35:78:4e:8e:
ec:c3:12:ec:db:a2:20:aa:2f:33:7a:61:72:95:72:df:7d:19:
1e:2a:e1:7b:ea:b4:96:89:bd:cf:98:cc:d7:94:51:77:55:f2:
21:33:0e:d9:a7:79:6d:58:75:5a:17:ce:ca:32:61:42:b0:d9:
9c:1e:1e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org