Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/GSmMrpgaT_JO7uSV8pJ8NnY89sw.roa
File: GSmMrpgaT_JO7uSV8pJ8NnY89sw.roa (raw, json)
Hash identifier: niB2Pz6m6jPa/syNUHin46S7/4vahoOCUnKlRSWMUPs=
Subject key identifier: 19:29:8C:AE:98:1A:4F:F2:4E:EE:E4:95:F2:92:7C:36:76:3C:F6:CC
Certificate issuer: /CN=2b8966d0f14fd59993ca4878e774fa4779036694
Certificate serial: 018AE028B988EC099622ACE85FF7E27C9C30
Authority key identifier: 2B:89:66:D0:F1:4F:D5:99:93:CA:48:78:E7:74:FA:47:79:03:66:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K4lm0PFP1ZmTykh453T6R3kDZpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/GSmMrpgaT_JO7uSV8pJ8NnY89sw.roa
Signing time: Fri 29 Sep 2023 08:57:59 +0000
ROA not before: Fri 29 Sep 2023 08:57:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35625
IP address blocks: 194.126.178.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e0:28:b9:88:ec:09:96:22:ac:e8:5f:f7:e2:7c:9c:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b8966d0f14fd59993ca4878e774fa4779036694
Validity
Not Before: Sep 29 08:57:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19298cae981a4ff24eeee495f2927c36763cf6cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:6e:68:66:ab:c8:2e:37:78:f0:3f:ae:13:8d:
e2:12:9b:39:49:79:25:11:21:7e:39:fa:33:09:37:
b6:d7:c1:77:c9:58:92:ae:a2:c2:40:38:f8:7b:b1:
15:12:89:ad:b0:57:41:2c:ca:ae:5c:2d:5a:b0:ae:
5a:11:79:74:85:1d:40:d8:86:ca:54:cd:c0:ee:a0:
2b:50:4d:76:99:38:e7:38:e0:11:dc:9f:d2:c8:e6:
c1:e1:2b:3e:8d:33:60:bb:b9:b5:92:be:63:12:15:
91:ff:23:af:8e:d8:f9:fe:2c:21:17:8e:b5:1a:07:
19:63:df:51:b6:9f:9a:5d:c1:40:26:a7:36:19:12:
47:13:85:d6:aa:67:64:50:3b:58:0c:29:8e:5d:14:
6d:90:e1:9b:90:15:5d:cf:5d:21:d4:70:6a:87:71:
8a:a5:f3:fc:c0:1f:0d:87:2b:5f:5f:2d:5d:4c:9f:
11:00:4a:73:de:ff:0a:a4:f6:05:ec:cf:b9:8a:ae:
c2:e3:47:dc:66:37:c9:ef:e7:0f:c4:01:c1:56:99:
33:54:f5:0c:0d:84:d5:d5:9e:35:58:89:0b:5d:01:
82:35:98:08:a7:d2:d2:2a:53:45:68:21:42:e5:1a:
ed:c5:6a:3b:8e:04:24:5f:7c:09:8d:80:d5:83:6d:
db:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:29:8C:AE:98:1A:4F:F2:4E:EE:E4:95:F2:92:7C:36:76:3C:F6:CC
X509v3 Authority Key Identifier:
keyid:2B:89:66:D0:F1:4F:D5:99:93:CA:48:78:E7:74:FA:47:79:03:66:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K4lm0PFP1ZmTykh453T6R3kDZpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/GSmMrpgaT_JO7uSV8pJ8NnY89sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/K4lm0PFP1ZmTykh453T6R3kDZpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.178.0/24
Signature Algorithm: sha256WithRSAEncryption
02:09:f3:1d:eb:7b:80:96:bb:13:0a:52:6a:6b:b8:a8:41:24:
c6:48:f7:76:c6:b1:27:be:1e:6c:c0:d2:35:5e:49:8b:1f:fc:
e8:67:44:23:68:8e:16:6b:ea:cf:98:ab:68:d1:bc:da:f0:b5:
7c:5a:59:8f:66:02:3c:fd:40:d9:b4:41:34:ea:55:d7:1b:df:
08:67:ca:49:1e:8e:e9:90:d9:32:46:09:51:ee:89:74:f8:53:
88:1d:43:c5:f5:51:ae:91:79:72:51:fe:a6:cb:df:79:3f:37:
15:67:51:ef:6f:dd:6a:ba:8a:59:5f:e6:79:d3:56:f4:0b:53:
cd:53:5d:77:af:2b:24:8d:08:42:bb:b1:cf:bd:8c:ca:86:87:
44:40:87:74:46:bf:04:78:c0:bb:22:8e:4b:a2:2f:3b:7f:f7:
8a:9f:98:2a:9d:59:05:f2:42:aa:0f:b9:b0:d1:38:8f:6e:c3:
a0:e3:63:4a:56:4f:af:05:c8:b7:45:cb:c6:6a:44:d8:a1:b2:
24:f2:bd:ac:f0:95:2c:bf:7d:ee:e1:06:dd:0c:a3:29:3a:94:
54:01:13:f7:89:60:78:08:e6:8e:aa:9c:ff:6a:56:35:67:7c:
19:b0:b0:a0:5b:cd:54:8e:58:80:03:c0:71:dc:1f:bc:2a:cb:
2f:4a:1a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 3 10:01:56 2023 by rpki-client on console-ams.rpki-client.org