Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/g1qBpkLg08L7yyeZ8DZbcl8pv_k.roa
File: g1qBpkLg08L7yyeZ8DZbcl8pv_k.roa (raw, json)
Hash identifier: 2Kv/ucXSkHYTkdEOZqfgbeLSQQWOR403r1ND2U5q/tg=
Subject key identifier: 83:5A:81:A6:42:E0:D3:C2:FB:CB:27:99:F0:36:5B:72:5F:29:BF:F9
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 019168D607F6164C0D7C5988BB96E23F7E7F
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/g1qBpkLg08L7yyeZ8DZbcl8pv_k.roa
Signing time: Mon 19 Aug 2024 04:12:22 +0000
ROA not before: Mon 19 Aug 2024 04:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 195.96.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 19:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:68:d6:07:f6:16:4c:0d:7c:59:88:bb:96:e2:3f:7e:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Aug 19 04:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=835a81a642e0d3c2fbcb2799f0365b725f29bff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:df:72:e0:2b:a8:9f:92:0a:09:fb:2f:01:64:
cd:6e:97:61:9b:63:a7:33:46:25:7a:b6:a4:e0:1d:
92:13:16:a4:54:1e:ed:28:92:ae:4d:34:57:1e:5e:
bf:8b:df:5a:51:ba:57:fe:63:93:6a:b3:f4:85:88:
2b:6e:f6:67:92:f2:c1:36:79:fb:5b:db:8b:52:8a:
b0:dd:b9:51:3a:9a:16:79:7c:f5:d5:c3:9b:f0:56:
79:ac:ad:5b:6a:c5:e8:ce:32:11:da:79:96:33:40:
cf:83:fd:29:8b:fd:fc:2c:4f:ab:84:94:35:50:bf:
9f:c7:47:cf:0f:77:f9:8d:6d:fd:1c:25:d0:c9:fa:
bb:dd:d6:be:ec:84:74:ad:30:cd:cd:ab:ba:32:98:
fc:d8:15:51:1e:de:9c:1a:06:33:05:62:0a:81:3e:
59:b1:d9:f8:1d:ca:c8:75:32:84:ac:7f:76:51:9c:
ef:40:a7:65:c4:71:3d:89:ed:56:c4:0d:f1:ea:44:
9b:67:ac:af:8d:52:3f:98:67:15:7c:21:88:d2:05:
fc:fd:c6:e2:55:ee:50:6f:2a:35:04:4c:e2:28:e9:
22:f9:1b:b4:0b:58:81:91:41:1c:22:a8:df:cc:dc:
6f:2f:42:a4:13:ba:94:c5:15:cd:3d:16:8d:97:b2:
0e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5A:81:A6:42:E0:D3:C2:FB:CB:27:99:F0:36:5B:72:5F:29:BF:F9
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/g1qBpkLg08L7yyeZ8DZbcl8pv_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.129.0/24
Signature Algorithm: sha256WithRSAEncryption
63:77:e7:5c:ec:d4:d5:72:e3:88:e9:d9:5f:75:27:0a:fc:03:
0c:4f:79:81:ab:0b:17:c3:3a:02:f7:a6:c3:4b:74:2c:50:6c:
e4:64:36:0d:5b:2d:06:8f:db:90:db:0d:89:4b:44:5a:8e:3b:
ba:e3:76:9d:04:f5:da:f5:a7:b8:f6:80:21:55:85:ee:7f:a2:
42:9f:8c:95:0d:35:cd:63:5c:27:94:ba:64:4f:08:d7:a5:75:
09:b5:0e:e5:80:0d:80:87:5f:d7:a4:82:84:43:74:ad:bc:bd:
26:b2:f9:ed:fb:0a:83:0a:32:e4:48:0a:a4:5e:dc:fa:ac:72:
e2:fa:78:79:74:b3:87:e5:67:51:f4:84:7b:47:a0:0e:f5:7d:
fa:d7:05:89:45:f6:00:33:8e:63:a2:62:92:fc:d7:fd:a5:88:
ba:c8:44:dc:4f:33:4e:46:0d:87:9d:c3:e8:5b:6b:b2:53:db:
95:fc:72:3b:03:e2:32:ba:c4:96:02:b6:09:d4:42:be:5e:ab:
49:fd:8e:80:86:e6:f6:9c:83:e8:d3:db:ff:64:a3:25:b9:14:
bd:ee:d8:94:83:55:94:3c:e9:f8:85:0e:43:03:45:97:32:0a:
0a:fa:76:e7:8c:bc:ee:1a:7c:36:36:b6:9d:90:8e:0b:93:b1:
75:bb:d7:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 23:54:32 2024 by rpki-client on console-ams.rpki-client.org