Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a8941a-7250-48ec-aaf8-6d8ea9d1cd73/1/G2hPZVVmZ-8I_LC5DIJ9fEaDmoM.roa
File: G2hPZVVmZ-8I_LC5DIJ9fEaDmoM.roa (raw, json)
Hash identifier: mPtX/ey5EYcMPCqqMAUCQ/g6HPZwwbwYUKhT/uvALsI=
Subject key identifier: 1B:68:4F:65:55:66:67:EF:08:FC:B0:B9:0C:82:7D:7C:46:83:9A:83
Certificate issuer: /CN=306134bcf59f581d6b76630cfa87867876a29215
Certificate serial: 018C5E2F487A9EBF87B2E9544C126EDE2D4B
Authority key identifier: 30:61:34:BC:F5:9F:58:1D:6B:76:63:0C:FA:87:86:78:76:A2:92:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGE0vPWfWB1rdmMM-oeGeHaikhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a8941a-7250-48ec-aaf8-6d8ea9d1cd73/1/G2hPZVVmZ-8I_LC5DIJ9fEaDmoM.roa
Signing time: Tue 12 Dec 2023 13:20:06 +0000
ROA not before: Tue 12 Dec 2023 13:20:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5500
IP address blocks: 193.93.200.0/22 maxlen: 22
2a02:56c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:2f:48:7a:9e:bf:87:b2:e9:54:4c:12:6e:de:2d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306134bcf59f581d6b76630cfa87867876a29215
Validity
Not Before: Dec 12 13:20:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b684f65556667ef08fcb0b90c827d7c46839a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:01:76:55:42:6d:b7:4b:14:6d:95:7e:4d:e9:
87:64:24:35:82:e2:a9:0f:e1:d4:2f:20:59:fd:a8:
1f:52:9d:68:44:65:39:9c:09:01:fc:71:d5:11:ca:
55:af:d5:fb:12:51:bc:b9:27:c6:2f:05:00:61:d4:
7f:0f:ca:51:05:91:83:8a:f9:da:9f:67:8c:bb:0f:
a1:3d:15:f6:d8:20:e7:e9:95:a9:88:c7:43:08:e5:
27:ec:47:7d:2c:b8:49:ee:82:fc:1d:c6:2f:9c:0f:
13:ad:4c:4b:f2:3a:98:44:5c:f9:f3:dc:69:16:fb:
83:14:73:b5:eb:be:e2:ba:fc:ad:b8:a2:a6:3c:a2:
f5:dc:3a:42:8c:92:ec:f2:1e:6b:5c:fe:a1:e9:05:
25:a0:80:fa:ef:e2:a2:d1:0f:0a:8e:77:f7:30:d8:
12:13:a9:bc:68:3f:41:0c:46:53:9c:4f:fc:a4:38:
9f:74:58:2b:79:00:50:db:66:90:b5:58:ab:d6:41:
ca:03:9a:d9:b5:45:a9:aa:4a:66:78:03:b4:b6:fe:
ba:31:e2:03:cc:4e:da:16:86:b3:a7:b0:c7:6a:a5:
16:68:ad:74:ec:3f:de:aa:b1:0f:06:4c:84:91:22:
e5:64:07:98:65:c1:03:b7:b3:5e:f6:10:a3:9e:c5:
70:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:68:4F:65:55:66:67:EF:08:FC:B0:B9:0C:82:7D:7C:46:83:9A:83
X509v3 Authority Key Identifier:
keyid:30:61:34:BC:F5:9F:58:1D:6B:76:63:0C:FA:87:86:78:76:A2:92:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGE0vPWfWB1rdmMM-oeGeHaikhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a8941a-7250-48ec-aaf8-6d8ea9d1cd73/1/G2hPZVVmZ-8I_LC5DIJ9fEaDmoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a8941a-7250-48ec-aaf8-6d8ea9d1cd73/1/MGE0vPWfWB1rdmMM-oeGeHaikhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.200.0/22
IPv6:
2a02:56c0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:50:ed:2e:d9:2c:4d:c0:d7:12:d0:80:6f:9b:af:a2:70:ff:
e3:a9:f0:5f:59:6a:5b:78:0b:70:48:86:2d:91:db:ed:a0:0a:
a5:d1:af:98:dd:64:f5:a3:e5:75:b7:93:ee:8a:35:99:47:d3:
63:70:db:61:11:61:39:c1:b5:42:00:39:91:26:ec:d7:ec:ac:
5e:95:a2:b2:31:9d:e5:c8:63:b8:74:bd:49:08:6d:91:6a:65:
1a:70:ea:6b:65:4c:74:ca:8e:60:fa:b6:5c:eb:83:53:2b:7f:
33:2d:0b:bf:f9:1d:a9:02:31:ea:8d:f1:dd:2a:d5:81:5e:8d:
71:f3:f8:c4:f7:ab:d4:fa:71:9b:d9:e1:a3:76:c6:33:2f:e5:
9e:c5:c7:8e:3c:1f:97:0d:0f:d9:9b:9f:6d:26:54:6d:5a:d1:
c5:95:bd:64:be:2c:38:4a:2b:d1:f0:4c:6a:4b:5d:46:11:8a:
a9:c3:e0:cf:17:1b:45:6d:94:bb:ed:ca:c8:6d:79:80:fd:99:
14:30:90:cd:d4:62:b4:56:fa:aa:c5:0b:7e:f0:10:58:81:c4:
61:4e:10:38:dc:7b:85:28:35:34:de:f3:83:30:4b:c4:4d:fa:
88:51:6e:d5:cf:34:c9:05:d2:d2:2e:ff:a1:0c:06:b7:04:71:
40:19:a5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:09 2024 by rpki-client on console-fra.rpki-client.org