Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Gjgn11SV_rwM5j-WvMW9j8upJPA.roa
File: Gjgn11SV_rwM5j-WvMW9j8upJPA.roa (raw, json)
Hash identifier: RF/VOljRWkr5bQt2iCYRZ2N/yENA99iPUlUenR5/TUs=
Subject key identifier: 1A:38:27:D7:54:95:FE:BC:0C:E6:3F:96:BC:C5:BD:8F:CB:A9:24:F0
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01896F883CE356F6541D37077F9BD89F1906
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Gjgn11SV_rwM5j-WvMW9j8upJPA.roa
Signing time: Wed 19 Jul 2023 19:02:26 +0000
ROA not before: Wed 19 Jul 2023 19:02:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.255.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6f:88:3c:e3:56:f6:54:1d:37:07:7f:9b:d8:9f:19:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jul 19 19:02:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a3827d75495febc0ce63f96bcc5bd8fcba924f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3f:8c:c0:2a:4b:79:ce:73:2c:26:06:23:c4:
df:7a:a3:78:c9:9c:ef:e2:1e:e3:89:bc:d2:a9:34:
f2:62:4a:f5:88:4f:87:ef:b1:94:1d:f8:dc:29:9d:
36:96:3f:d7:80:3b:e8:0f:6c:79:b0:d7:78:ef:be:
7c:09:74:68:8d:20:16:3f:84:4e:64:44:6c:4d:e4:
41:24:43:8c:26:72:e9:05:6a:db:53:e7:f6:69:93:
b6:c1:7e:83:1e:20:91:b3:04:e6:bb:45:2c:45:2c:
a1:96:01:b6:56:99:46:34:73:aa:11:9d:68:f5:b4:
d5:d5:09:31:b4:e6:f2:83:c9:c7:8c:1c:5e:da:7c:
bc:19:f9:f3:fc:8c:d7:0d:24:2a:99:0e:a3:25:3d:
c3:df:95:af:e8:59:33:61:a8:91:cb:55:c8:5d:99:
ee:cf:8c:39:db:d9:01:9b:3f:bc:8d:f4:a2:44:c2:
7c:97:09:9d:6e:47:a5:fd:b9:e6:fa:d1:ba:83:5d:
95:1f:09:db:f5:38:cb:a9:2f:4e:d2:bd:74:73:a1:
11:b7:16:3b:31:7e:ff:b2:4a:6b:3f:1b:d2:b8:6a:
81:45:05:e0:eb:93:aa:fe:44:ff:0d:a9:aa:4b:c7:
cb:ee:e0:e3:58:07:6b:54:c6:16:9e:a3:95:5f:55:
1c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:38:27:D7:54:95:FE:BC:0C:E6:3F:96:BC:C5:BD:8F:CB:A9:24:F0
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Gjgn11SV_rwM5j-WvMW9j8upJPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.4.0/24
Signature Algorithm: sha256WithRSAEncryption
71:3d:a0:d9:0b:6f:d7:a5:d9:2b:eb:6b:8d:6f:04:00:f3:70:
1f:0a:f3:2c:2c:f2:cc:cb:b6:dd:2b:21:92:ad:aa:93:0f:c4:
5a:3f:74:9e:53:52:c9:7b:2a:6a:2b:9a:20:bd:59:9b:18:57:
dc:5a:0a:0d:b1:87:e3:18:7c:69:5f:e5:02:b3:49:31:56:97:
38:72:4a:c6:35:8b:0c:8e:e4:53:59:81:84:60:15:2c:b8:ef:
76:58:e9:39:ee:e7:21:51:47:fc:28:4f:ac:03:e9:f5:a1:eb:
db:0e:93:6e:2b:89:5c:b7:de:92:fd:99:4e:59:87:a0:24:68:
d7:bc:08:9a:34:c1:43:e2:cc:8f:52:3d:30:8b:2e:c1:25:64:
35:c2:a1:2c:53:96:b3:61:d4:c8:37:89:8a:c9:1c:3d:d9:c8:
eb:a1:2c:45:94:37:29:b6:a6:df:d5:64:63:21:a3:c1:6e:0d:
60:dc:31:39:a9:4e:73:51:34:77:a7:00:ea:9d:f4:37:da:71:
18:79:95:84:c9:bf:c6:f4:f6:9b:d1:8e:fe:04:f5:e8:d6:3b:
9a:eb:c7:86:18:98:f5:24:8b:42:62:31:54:3d:df:30:01:e3:
69:b9:f0:e5:54:7d:66:43:cc:01:3b:03:4b:52:64:6f:d5:0a:
6d:1e:6d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 10:43:31 2023 by rpki-client on console-fra.rpki-client.org