Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/cea5cf-0782-40d1-8913-92712f95e336/1/7_GGPRgMXJr-YCOYaw5EqBRTewY.roa
File: 7_GGPRgMXJr-YCOYaw5EqBRTewY.roa (raw, json)
Hash identifier: 9YdTVPH8SVbNmPuubFLJxoDz0BhwG52Q7a4x/vAzbZ4=
Subject key identifier: EF:F1:86:3D:18:0C:5C:9A:FE:60:23:98:6B:0E:44:A8:14:53:7B:06
Certificate issuer: /CN=3ebd5f8bb5a594d67b5ce807a84c59dde569a775
Certificate serial: 0187E07BCFB03A13F0BECAE71FC4F78B53F1
Authority key identifier: 3E:BD:5F:8B:B5:A5:94:D6:7B:5C:E8:07:A8:4C:59:DD:E5:69:A7:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pr1fi7WllNZ7XOgHqExZ3eVpp3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/cea5cf-0782-40d1-8913-92712f95e336/1/7_GGPRgMXJr-YCOYaw5EqBRTewY.roa
Signing time: Wed 03 May 2023 07:20:23 +0000
ROA not before: Wed 03 May 2023 07:20:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35542
IP address blocks: 193.222.141.0/24 maxlen: 24
80.92.128.0/20 maxlen: 20
185.128.0.0/22 maxlen: 24
185.128.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:7b:cf:b0:3a:13:f0:be:ca:e7:1f:c4:f7:8b:53:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebd5f8bb5a594d67b5ce807a84c59dde569a775
Validity
Not Before: May 3 07:20:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eff1863d180c5c9afe6023986b0e44a814537b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e7:63:33:c1:19:9d:ad:11:04:26:62:c3:87:
f5:ae:db:c8:fe:c1:ad:71:17:0b:55:d2:56:4c:ef:
3c:1c:88:29:f3:fe:d1:96:5e:05:77:51:38:8e:23:
a8:32:79:ab:de:61:64:a8:e5:f3:9e:35:26:34:14:
11:09:72:0c:49:ef:9c:1e:c3:91:7d:75:78:8a:6c:
32:17:5e:75:89:86:59:9f:68:37:e1:22:b8:15:74:
fa:89:5c:14:ba:3d:34:43:03:54:bf:40:59:5b:ca:
0f:00:ac:a4:e5:8d:40:de:83:ee:cc:31:92:f9:d3:
09:f8:2a:e3:ba:3e:c2:67:d9:3e:b8:76:dd:75:3b:
dd:e5:c2:52:e8:89:0b:81:20:5e:bf:75:a4:fc:c5:
23:f3:b8:43:fb:ad:ff:36:87:84:55:80:72:cb:f7:
1d:67:5a:bf:91:0c:e1:bd:89:74:0b:7b:94:1e:45:
27:e2:f2:59:5c:d4:4f:74:83:d9:67:2a:17:87:80:
3d:46:56:f9:66:38:95:0c:ab:e7:23:45:f3:82:b1:
5f:6b:60:6f:e3:6f:ec:43:6a:d1:53:23:d4:2e:65:
7f:21:b3:5d:f3:30:d2:89:11:56:e9:5b:ee:73:75:
ce:1b:55:3c:f2:c9:c4:af:88:0c:f1:f5:77:b6:e0:
c8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F1:86:3D:18:0C:5C:9A:FE:60:23:98:6B:0E:44:A8:14:53:7B:06
X509v3 Authority Key Identifier:
keyid:3E:BD:5F:8B:B5:A5:94:D6:7B:5C:E8:07:A8:4C:59:DD:E5:69:A7:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pr1fi7WllNZ7XOgHqExZ3eVpp3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/cea5cf-0782-40d1-8913-92712f95e336/1/7_GGPRgMXJr-YCOYaw5EqBRTewY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/cea5cf-0782-40d1-8913-92712f95e336/1/Pr1fi7WllNZ7XOgHqExZ3eVpp3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.92.128.0/20
185.128.0.0/22
193.222.141.0/24
Signature Algorithm: sha256WithRSAEncryption
68:61:21:99:e3:8a:48:81:9d:c8:85:13:e7:b3:f0:06:2e:0c:
01:2a:11:82:ce:f1:85:79:93:bd:8d:7b:b4:ba:77:dd:ef:e1:
80:89:05:fa:97:51:53:55:bc:17:8f:61:82:a9:f8:fc:1a:53:
b3:52:41:b6:53:97:a8:bf:2e:ce:d1:cd:f0:8a:9b:8d:34:9c:
0c:ca:b9:df:87:df:95:98:98:50:d3:8c:64:e6:e6:f9:04:bb:
09:93:4f:ce:f4:db:70:c5:24:fc:77:4f:7d:53:3c:c8:dc:e8:
44:19:c5:a8:d8:38:82:8d:fb:b9:74:b8:c2:fb:e6:d6:ff:68:
d1:ea:d8:fb:d3:fb:43:12:4d:73:d4:d7:f4:46:0a:ba:0b:af:
28:8d:5e:01:eb:07:13:f5:1a:8b:37:a9:b6:2a:da:09:b3:7e:
8d:8c:8e:92:05:63:c5:76:69:f3:53:cd:05:47:ac:3e:63:7f:
72:28:8e:b2:0f:ef:33:f3:bc:a9:2a:1b:a5:3e:a9:63:54:14:
cf:bf:75:fb:c0:d3:5f:ac:bd:80:79:24:24:d9:80:77:fd:50:
37:7f:48:27:05:01:f3:73:50:b2:5e:3d:c6:48:c0:f7:90:e2:
48:9d:21:c6:c5:2f:fe:3c:2e:f3:8f:1b:47:8a:83:6e:05:05:
da:c8:f8:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:09 2024 by rpki-client on console-ams.rpki-client.org