Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/GkpFP8f4YLt-R6gfdZ9aHyUz6lk.roa
File: GkpFP8f4YLt-R6gfdZ9aHyUz6lk.roa (raw, json)
Hash identifier: n8whTL9vIRfUoOXiNUylX/rCyErR09AdcoT1SJntzoQ=
Subject key identifier: 1A:4A:45:3F:C7:F8:60:BB:7E:47:A8:1F:75:9F:5A:1F:25:33:EA:59
Certificate issuer: /CN=230340d27e4b24f9124977322edb36942e2d160c
Certificate serial: 01857102D88C05ED18C059402852DA829564
Authority key identifier: 23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/GkpFP8f4YLt-R6gfdZ9aHyUz6lk.roa
Signing time: Mon 02 Jan 2023 05:44:49 +0000
ROA not before: Mon 02 Jan 2023 05:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43386
IP address blocks: 81.6.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:d8:8c:05:ed:18:c0:59:40:28:52:da:82:95:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230340d27e4b24f9124977322edb36942e2d160c
Validity
Not Before: Jan 2 05:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a4a453fc7f860bb7e47a81f759f5a1f2533ea59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:69:88:a3:21:70:6d:4e:48:1f:0c:b3:cd:cc:
ba:fe:da:1c:5a:2f:b6:af:72:8c:2e:50:01:25:9d:
25:76:fb:f0:ea:ac:9b:eb:37:e7:2a:16:fb:c9:5e:
9b:91:39:e0:d7:a4:64:70:16:7c:5a:f5:09:dd:52:
91:d2:af:e0:d2:74:54:3b:f1:d8:12:8c:ea:4d:1a:
f9:af:22:cb:71:00:5a:04:12:74:70:4d:a2:b3:ce:
f2:54:96:20:58:9c:1e:f5:e0:21:cc:bd:9f:ba:a2:
63:0b:2e:76:96:2f:ca:11:83:88:4b:ec:34:08:b5:
55:8b:b8:62:71:46:9f:30:d9:74:32:f7:e3:c6:37:
aa:ce:f5:77:65:b8:dc:0f:8b:5b:67:14:49:d6:f8:
22:24:63:e9:f4:be:02:58:2b:65:08:26:fb:a6:fb:
cf:56:67:ca:2b:a3:c5:c4:eb:7d:aa:9b:0b:c6:d2:
b8:c6:21:67:af:79:fb:70:43:0d:1c:b2:7c:76:e5:
a9:9a:84:38:32:31:67:8a:83:e5:d9:a3:57:12:91:
96:dd:a1:68:34:c1:40:60:b6:ea:eb:14:55:b9:5b:
54:12:18:80:b1:a3:56:81:67:7a:47:a5:d3:0f:3c:
44:c8:08:c7:0a:d9:96:2d:9d:50:b8:f5:44:68:dc:
96:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:4A:45:3F:C7:F8:60:BB:7E:47:A8:1F:75:9F:5A:1F:25:33:EA:59
X509v3 Authority Key Identifier:
keyid:23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/GkpFP8f4YLt-R6gfdZ9aHyUz6lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.6.139.0/24
Signature Algorithm: sha256WithRSAEncryption
84:f2:7e:e6:02:a0:9b:0b:f7:20:a5:5e:19:0b:24:ef:c3:d1:
e9:29:a0:70:b8:c0:1a:aa:e7:9a:e9:18:b2:97:58:96:9b:b0:
9a:91:ab:44:3d:d0:41:52:36:22:6b:a6:86:5b:14:f1:ea:e6:
43:78:64:af:91:55:80:b9:76:0f:60:4a:b7:67:05:56:18:14:
4e:3b:38:a2:a1:58:98:30:1d:5d:c0:fd:6c:94:85:81:2d:25:
8c:a0:6a:6a:0d:ac:38:2e:43:60:a6:b9:c1:cc:17:b5:d2:4f:
eb:49:e6:76:69:c4:da:5f:5e:b1:a9:c0:66:76:3a:67:56:44:
d0:0a:f0:63:d0:33:ed:74:ef:fd:68:1e:92:40:a1:8e:6c:5a:
30:16:28:16:28:72:ba:e6:3d:5e:d3:1a:96:75:4c:fb:2e:2d:
40:df:c9:89:53:a3:ad:24:3b:c8:a3:29:59:34:18:f7:50:27:
5a:ef:ed:d5:28:37:8b:e4:26:ee:6a:bb:0e:db:30:0a:01:0e:
d7:7f:0b:4a:81:73:4d:37:9c:86:77:6e:f0:01:ce:9b:ea:3d:
e2:90:c2:a7:dc:06:8c:b6:60:6e:e7:97:d4:ea:5f:79:95:16:
95:54:fd:07:c0:05:6f:e1:55:ad:dc:4b:43:e5:d2:5e:15:12:
98:db:e1:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:17 2024 by rpki-client on console-fra.rpki-client.org