Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/Gt2Djhdv1hkXS-H6kyVJsTWoOIg.roa
File: Gt2Djhdv1hkXS-H6kyVJsTWoOIg.roa (raw, json)
Hash identifier: udXcowOJZb8N9thFm+kdLL8NdWiMDNXN7fISSfwIMA4=
Subject key identifier: 1A:DD:83:8E:17:6F:D6:19:17:4B:E1:FA:93:25:49:B1:35:A8:38:88
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018CC500B0F538A5D62452B50C581777E768
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/Gt2Djhdv1hkXS-H6kyVJsTWoOIg.roa
Signing time: Mon 01 Jan 2024 12:30:06 +0000
ROA not before: Mon 01 Jan 2024 12:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 32181
IP address blocks: 81.28.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 19:48:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:b0:f5:38:a5:d6:24:52:b5:0c:58:17:77:e7:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 12:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1add838e176fd619174be1fa932549b135a83888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c9:b2:70:37:34:08:d5:6c:59:64:b9:b8:fa:
4f:c8:4a:e4:31:7d:7d:60:42:01:fb:5f:9c:75:72:
c3:a8:02:9c:fd:bd:2a:06:eb:bf:3b:a5:ba:69:5e:
04:44:e9:91:a0:2b:38:29:8c:8d:57:f6:cd:4a:e5:
58:bb:d9:da:7e:8f:ca:e3:bc:e4:4c:77:fa:7a:45:
3b:08:23:bc:1d:cc:9e:9c:d9:96:1c:78:5a:c2:1c:
0a:a8:9c:4a:6d:74:29:ee:da:b4:27:2b:44:7a:7e:
0c:fc:42:81:c3:e4:ac:6c:45:3e:ee:87:7f:b5:6c:
15:df:96:0a:42:99:48:49:29:e0:7f:1e:3e:7d:da:
4d:b5:cc:1c:be:8c:4f:78:c9:e1:66:c7:ab:79:e6:
42:07:4c:b5:3c:7c:88:2f:6f:82:4a:f6:8b:90:97:
c3:9e:87:94:49:60:3e:ba:55:9f:a0:03:ff:92:0b:
a9:75:5b:8e:9f:35:70:1b:26:bc:83:00:ce:20:6a:
fa:6e:85:d2:ca:6c:e3:dc:01:30:e0:19:a8:39:16:
a3:81:85:fb:43:01:77:ea:bc:27:32:19:3b:07:f4:
a6:0d:6b:85:71:b3:18:d5:d0:b3:63:63:62:be:17:
54:1a:86:b8:06:e6:ae:33:42:be:bf:8d:1d:6f:c6:
8a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:DD:83:8E:17:6F:D6:19:17:4B:E1:FA:93:25:49:B1:35:A8:38:88
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/Gt2Djhdv1hkXS-H6kyVJsTWoOIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.255.0/24
Signature Algorithm: sha256WithRSAEncryption
04:91:ea:93:50:ce:d0:2c:7b:32:f1:79:86:9a:19:f9:56:cb:
b0:ff:53:97:7d:b6:b3:df:88:80:b5:0b:5a:c1:59:fc:77:3c:
51:d8:a9:ae:09:11:45:48:eb:e7:75:a3:f6:1e:06:90:a3:e9:
f2:c0:2e:6b:02:e5:95:0e:d9:c0:67:a1:59:5c:ec:94:70:87:
b8:7e:5e:92:0e:8f:a1:29:93:e7:a7:b6:22:08:bd:11:b0:d0:
66:f4:39:58:92:1a:27:92:12:0a:c0:7b:44:ea:f0:22:79:e0:
61:7d:2b:77:1c:f1:3c:9e:54:26:90:53:97:19:2a:b5:c0:c4:
a8:ca:93:67:12:11:7e:f9:25:95:53:fd:40:8c:af:0e:64:6e:
a5:4b:b5:96:14:83:bc:7f:51:eb:fe:7d:db:5a:0c:e4:8b:d9:
6a:26:31:d2:88:71:2b:fd:31:8b:78:a2:c3:d1:11:cb:0a:da:
19:20:32:d8:3b:05:b3:1a:5e:66:64:62:ab:b0:43:be:d4:e1:
67:89:9f:db:9f:73:70:d2:bd:a3:a4:b9:00:8d:7a:71:93:6b:
38:70:60:21:8b:eb:31:fb:4f:cf:cb:03:ae:83:7f:92:d0:ae:
0c:d1:5a:3a:b5:ab:31:f9:6a:bf:cc:6a:68:b4:34:43:c0:b8:
5b:b3:fa:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org