Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/g40ge2sj4oGn--nVAqDGoif8rdM.roa
File: g40ge2sj4oGn--nVAqDGoif8rdM.roa (raw, json)
Hash identifier: lC/eeNoQdAs30QwSRRpwh96VCEVkC61cwo97sGeXZ4M=
Subject key identifier: 83:8D:20:7B:6B:23:E2:81:A7:FB:E9:D5:02:A0:C6:A2:27:FC:AD:D3
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0188D2DAA36AA72021341561B32BDE1C06AF
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/g40ge2sj4oGn--nVAqDGoif8rdM.roa
Signing time: Mon 19 Jun 2023 08:52:04 +0000
ROA not before: Mon 19 Jun 2023 08:52:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 94.241.136.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Aug 2023 00:49:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:da:a3:6a:a7:20:21:34:15:61:b3:2b:de:1c:06:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jun 19 08:52:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=838d207b6b23e281a7fbe9d502a0c6a227fcadd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7e:1c:8e:fd:d5:df:51:ac:b5:e5:a0:28:b9:
e7:02:7a:a3:a7:aa:5a:13:84:f6:59:71:5a:67:09:
5f:aa:90:a3:7c:c7:13:eb:04:09:b3:ec:ed:c9:d8:
c5:91:1a:28:ac:83:62:1c:3d:33:fb:4a:03:3e:81:
2a:64:3a:53:b6:0d:e0:eb:5e:66:cd:dd:ca:cd:2b:
c9:36:36:30:1d:13:93:b5:8f:65:da:af:17:19:0c:
3a:a9:bb:05:26:cf:95:03:bc:e3:eb:d0:3b:53:86:
63:90:12:4c:4a:e5:f8:88:65:18:b5:34:29:7f:51:
bb:95:bb:c8:e2:de:b0:fd:56:92:c0:83:62:c2:a3:
83:65:92:63:1f:14:21:1e:2f:6b:b6:78:a8:f3:31:
a1:95:8f:4f:d8:3a:64:80:7c:7d:28:4f:d7:ef:42:
e5:af:d8:fe:1f:9b:60:7b:43:78:2f:93:85:71:a9:
fd:88:7a:ea:22:3a:9e:33:4b:19:6c:3a:01:d3:4b:
7e:21:94:e3:6b:ea:f5:fe:71:5d:8b:f2:33:67:2e:
71:c2:37:79:b6:ca:fb:db:bb:72:f1:76:7e:49:48:
89:63:5f:b3:66:15:7b:e7:99:3c:86:d7:49:02:e7:
09:1d:d8:d5:9a:59:9f:62:8e:9a:ae:d9:68:5a:dc:
df:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8D:20:7B:6B:23:E2:81:A7:FB:E9:D5:02:A0:C6:A2:27:FC:AD:D3
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/g40ge2sj4oGn--nVAqDGoif8rdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.136.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:5a:d1:82:4d:21:20:68:9f:17:ba:06:e6:d1:3f:d6:dc:fe:
43:74:00:96:d6:92:44:aa:64:49:4d:42:fb:d7:79:6c:ea:0c:
88:7c:1d:41:c4:13:cb:34:45:ed:e7:f4:00:ea:e1:5d:b0:b7:
64:91:26:dc:27:3d:4e:69:4c:50:ae:45:7d:a1:c0:77:da:f7:
23:d2:4b:36:a8:66:84:d9:a1:60:5f:3a:f7:f7:9b:27:39:62:
26:7c:fa:00:7e:36:3f:b3:f0:f0:12:94:dd:41:eb:c0:fd:8d:
9b:19:90:f6:6d:1c:af:a5:5b:3c:e7:c9:4c:01:48:ce:08:12:
4d:ad:e8:b1:3d:ef:8c:b3:8c:24:65:4d:b1:52:21:68:51:97:
8b:e3:4d:72:c5:f4:13:6f:ac:c9:23:e8:e4:ec:cd:ce:98:1e:
cb:8a:4f:87:4b:fd:25:1c:4e:09:51:9e:74:82:8f:40:2f:dc:
f4:4c:f8:48:36:f2:a8:81:43:58:15:fd:a7:bb:c4:bc:39:83:
d6:4e:26:03:0e:d9:84:cd:94:99:c4:e1:36:7a:eb:c8:9b:49:
15:42:50:dc:08:09:e4:61:d2:85:27:ef:75:bc:19:ce:48:e2:
b9:9a:ee:cc:7a:dc:3c:e7:ba:b4:1f:9e:b4:a4:70:d6:c1:dc:
43:e7:af:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org