Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/GxqfLJGfN6AIFjddbBqFrzBHtVU.roa
File: GxqfLJGfN6AIFjddbBqFrzBHtVU.roa (raw, json)
Hash identifier: okyB0v40zXAZTHEaa11Nf09fH5tFe29CTc0yywsgshU=
Subject key identifier: 1B:1A:9F:2C:91:9F:37:A0:08:16:37:5D:6C:1A:85:AF:30:47:B5:55
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01896369E89E7216E8F3D8B07BC4D260AC68
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/GxqfLJGfN6AIFjddbBqFrzBHtVU.roa
Signing time: Mon 17 Jul 2023 10:33:52 +0000
ROA not before: Mon 17 Jul 2023 10:33:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 85.209.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:69:e8:9e:72:16:e8:f3:d8:b0:7b:c4:d2:60:ac:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jul 17 10:33:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b1a9f2c919f37a00816375d6c1a85af3047b555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:56:83:c3:2f:28:22:8d:94:00:3b:f0:36:
18:cc:92:9a:c2:b1:d2:b6:85:4e:a9:db:b9:fb:ff:
77:eb:34:1d:b5:bd:50:e6:72:ac:21:8e:5a:c6:56:
06:63:1a:09:02:f7:ad:af:46:d9:e7:c2:bc:3a:f3:
00:3d:23:ab:e9:02:d3:20:19:a9:86:bc:17:25:50:
0e:27:d1:11:f2:7b:54:64:d8:b7:7c:03:ee:ba:33:
17:e2:bb:dc:a0:fd:d8:bf:85:b3:84:09:d8:c2:2e:
60:7c:f9:c4:66:fd:5b:36:20:91:14:10:45:7f:14:
f1:72:45:d5:fe:46:b7:ec:cc:47:97:1b:72:7b:88:
42:02:93:7c:b5:02:d5:c7:a2:8e:47:7b:2d:20:2f:
1f:93:55:09:52:f2:6b:3c:12:03:43:d2:f6:d2:99:
2b:4c:8e:8f:5e:35:30:ad:e5:90:d9:9e:6c:4c:08:
bd:2b:2f:cf:e3:44:e7:bf:2f:93:9f:ec:fc:e4:fb:
ef:c4:be:6e:73:c7:f7:3a:2a:45:df:e8:f6:62:f0:
29:18:20:9a:aa:7b:e7:c5:73:0e:73:7c:8c:cf:c2:
cb:5c:08:c4:ef:b1:01:a1:59:14:28:18:59:e2:5c:
91:a3:b1:81:90:bb:ae:61:95:76:62:00:cb:cd:88:
3d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1A:9F:2C:91:9F:37:A0:08:16:37:5D:6C:1A:85:AF:30:47:B5:55
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/GxqfLJGfN6AIFjddbBqFrzBHtVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.161.0/24
Signature Algorithm: sha256WithRSAEncryption
19:df:65:2d:13:a6:5a:d6:d0:e5:23:9a:f6:5b:f0:2a:be:ff:
ac:d6:04:c1:2c:64:5d:6c:44:df:45:0e:21:46:f9:57:35:9a:
21:ff:d3:75:42:e8:88:ce:1a:35:4b:8a:0a:e8:d6:57:d6:0c:
bf:93:44:0e:0e:22:03:ec:f1:b3:8e:37:c9:67:a3:b7:30:c1:
29:72:dc:f4:91:91:56:15:c7:91:52:eb:4c:3d:2a:c3:a0:db:
7d:64:a2:ad:21:80:ec:50:51:7e:66:a5:17:2e:19:4a:6d:db:
f2:1f:f6:3d:46:c4:cf:62:8d:f5:90:4e:5d:f9:03:a1:b7:c8:
37:ae:7d:7e:14:07:e5:1b:b2:95:74:59:13:de:19:f2:63:8d:
56:30:ab:4b:0c:28:82:e4:cd:51:1a:49:6d:45:1e:be:37:cf:
65:b7:3e:d1:b3:eb:bc:4c:f9:90:5d:9d:1b:6f:2a:92:e9:f8:
6c:54:72:c5:6a:95:f8:a6:b9:8f:3c:9d:6b:70:d8:67:58:2f:
79:00:96:82:0c:73:6a:2e:57:f7:c3:8c:fd:3e:d8:88:6e:52:
e4:c5:04:d8:df:ce:98:69:1a:33:b7:51:ca:60:5b:0d:15:80:
24:a7:2c:94:39:47:71:31:67:02:e8:e4:4b:6d:48:b1:5f:d8:
e8:23:21:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:03 2024 by rpki-client on console-ams.rpki-client.org