Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/GXIjLjF3Gboms1gpab-YtKa5j3M.roa
File: GXIjLjF3Gboms1gpab-YtKa5j3M.roa (raw, json)
Hash identifier: 7fQxFex355FBO7yx5sLUnu4nxc68sg064jxjrbWqFVo=
Subject key identifier: 19:72:23:2E:31:77:19:BA:26:B3:58:29:69:BF:98:B4:A6:B9:8F:73
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 01885FDCDE9321A838CDB720A209912D8229
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/GXIjLjF3Gboms1gpab-YtKa5j3M.roa
Signing time: Sun 28 May 2023 00:58:10 +0000
ROA not before: Sun 28 May 2023 00:58:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 188.214.232.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 25 Jun 2023 01:42:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5f:dc:de:93:21:a8:38:cd:b7:20:a2:09:91:2d:82:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: May 28 00:58:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1972232e317719ba26b3582969bf98b4a6b98f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a3:e0:3a:90:39:eb:3e:b0:57:23:20:78:c1:
17:37:cf:9a:a9:a2:dd:2d:c3:71:2d:44:ce:69:24:
c1:f3:36:2d:70:0c:3a:0e:0b:1e:a0:a4:36:5e:33:
26:53:97:f5:75:54:58:1a:08:32:db:18:e0:16:28:
02:1c:e0:30:96:50:1f:1f:52:8d:0f:5e:8a:e2:9a:
a4:96:a7:c9:52:62:9e:2e:b4:f1:80:78:3a:a9:b5:
ad:0a:35:bd:b1:fd:40:e6:9f:e1:9a:90:be:e8:4e:
90:14:4f:a0:63:84:97:31:d8:65:46:f8:f8:50:e5:
fc:17:7c:43:fe:cc:07:5f:3a:0f:f9:b4:da:84:26:
8c:33:b3:1f:5e:da:7a:60:ce:3a:61:5e:e5:92:8c:
ed:40:36:49:ec:82:11:36:58:52:ca:b2:27:70:37:
d2:ac:12:00:99:56:d4:dc:3f:e8:c9:8a:7d:21:f4:
fb:b7:da:02:e6:66:20:a7:94:86:9a:13:46:f4:ce:
6b:5c:7f:a1:23:cb:a2:ff:57:43:80:85:14:68:9b:
7b:75:18:d7:09:54:20:12:5c:f6:2b:7f:5c:11:c6:
90:d0:4b:0b:20:45:45:b2:81:eb:9a:1b:bc:9c:88:
77:33:8f:fd:0f:93:a7:3b:2a:be:34:ed:4a:33:91:
75:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:72:23:2E:31:77:19:BA:26:B3:58:29:69:BF:98:B4:A6:B9:8F:73
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/GXIjLjF3Gboms1gpab-YtKa5j3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.232.0/23
Signature Algorithm: sha256WithRSAEncryption
75:fe:2a:40:2b:1c:88:6f:0d:a8:72:de:63:b4:49:f7:e2:27:
ba:d0:9d:54:91:49:4b:6e:40:ac:11:95:30:e6:e9:d7:b2:9a:
4b:90:39:a8:2d:7f:41:77:86:ee:ad:5c:85:f0:a1:01:ef:07:
6c:dc:cd:26:33:3c:a7:a9:fd:06:8b:74:10:25:3c:57:91:ea:
de:3c:a3:7f:f5:27:d0:04:7c:b0:e1:67:86:c0:0d:1f:90:66:
84:98:6a:af:4a:89:d3:73:c8:b4:11:cd:ad:8b:c9:00:8c:96:
44:3b:2e:ed:ea:08:d2:27:2c:42:81:ee:70:21:5d:35:c7:87:
c7:f7:6c:27:f4:9e:fc:49:01:7e:f5:6d:f7:9b:9b:5c:ba:07:
87:21:f9:c1:7f:a1:4b:6f:b2:c0:54:98:c4:93:3f:b8:e4:b0:
80:e7:f9:76:49:b1:4c:7d:32:b8:2b:ca:ca:18:3f:74:c7:92:
26:63:95:cc:09:f2:6c:ab:04:1c:9e:2b:e7:3e:b2:30:46:04:
b7:22:14:df:2a:b2:42:f9:fb:ac:7f:41:c1:50:83:c9:2a:bb:
68:76:82:be:60:fb:1e:ad:ef:b8:8a:19:da:80:50:7b:3d:32:
c5:9a:c0:f7:ee:d0:1e:f3:89:cd:1d:e0:7a:77:da:5b:7f:38:
a5:12:ed:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org