Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/435a3b-0b05-4571-bd2d-f03ce824c76d/1/GkDRIL0S0PnNWvFD8kBQzKQ6V_s.roa
File: GkDRIL0S0PnNWvFD8kBQzKQ6V_s.roa (raw, json)
Hash identifier: e2Kv7Z+tj5XericSxHNkbMZ+MbaJTQbnepXJ2cDoJUw=
Subject key identifier: 1A:40:D1:20:BD:12:D0:F9:CD:5A:F1:43:F2:40:50:CC:A4:3A:57:FB
Certificate issuer: /CN=2dfa9f068edb9fc436354d1a6d9bb421bff630d5
Certificate serial: 018C1B567B89A9C9B47399877A05C5486092
Authority key identifier: 2D:FA:9F:06:8E:DB:9F:C4:36:35:4D:1A:6D:9B:B4:21:BF:F6:30:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LfqfBo7bn8Q2NU0abZu0Ib_2MNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/435a3b-0b05-4571-bd2d-f03ce824c76d/1/GkDRIL0S0PnNWvFD8kBQzKQ6V_s.roa
Signing time: Wed 29 Nov 2023 13:48:21 +0000
ROA not before: Wed 29 Nov 2023 13:48:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59877
IP address blocks: 193.56.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1b:56:7b:89:a9:c9:b4:73:99:87:7a:05:c5:48:60:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfa9f068edb9fc436354d1a6d9bb421bff630d5
Validity
Not Before: Nov 29 13:48:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a40d120bd12d0f9cd5af143f24050cca43a57fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:55:64:00:4a:2e:46:72:fa:fb:4d:6c:b9:fe:
1c:54:5b:e9:7d:f9:ef:ec:5c:ad:1d:d4:02:a1:1e:
a5:78:7a:ab:14:49:b9:31:57:7a:28:38:db:9c:7f:
79:d5:d7:8c:0c:03:b9:27:2c:b4:57:69:51:85:0d:
cf:0b:2f:db:63:4c:07:cd:35:cc:73:05:6e:e8:69:
e7:2f:2d:d3:fd:07:a1:01:79:8d:3d:4b:9d:32:0f:
b3:7c:0b:d2:fa:04:df:af:33:9a:cd:d8:09:e2:42:
b1:3b:fd:58:5e:9a:82:95:c8:70:41:c9:2b:b6:0c:
d0:d2:11:2d:fb:23:ba:d8:be:61:a7:43:eb:78:b4:
ae:59:3d:9e:dc:c9:67:26:be:35:60:49:55:28:3d:
de:fe:18:b8:11:b2:35:b6:e6:38:95:8c:d2:31:3a:
d0:c2:32:67:16:f4:b8:82:c1:1f:20:0d:71:47:05:
12:be:9d:ba:8c:b6:e2:d6:d5:aa:47:e8:32:80:9e:
c0:c3:d0:49:fb:62:2c:9d:32:79:d5:20:df:2c:93:
3d:1d:72:6b:5d:62:a5:e7:bc:82:56:c6:47:2e:e4:
80:96:93:c6:9a:2e:7e:c6:f3:d4:68:c5:54:c5:b7:
12:fe:58:e6:3e:9a:da:b8:1d:4b:9e:cc:fb:44:67:
41:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:40:D1:20:BD:12:D0:F9:CD:5A:F1:43:F2:40:50:CC:A4:3A:57:FB
X509v3 Authority Key Identifier:
keyid:2D:FA:9F:06:8E:DB:9F:C4:36:35:4D:1A:6D:9B:B4:21:BF:F6:30:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LfqfBo7bn8Q2NU0abZu0Ib_2MNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/435a3b-0b05-4571-bd2d-f03ce824c76d/1/GkDRIL0S0PnNWvFD8kBQzKQ6V_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/435a3b-0b05-4571-bd2d-f03ce824c76d/1/LfqfBo7bn8Q2NU0abZu0Ib_2MNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.146.0/24
Signature Algorithm: sha256WithRSAEncryption
33:b2:e7:91:a4:cc:3d:e5:32:a9:f4:f3:f3:95:90:ac:c4:db:
87:00:92:85:67:0d:d2:39:0a:af:0a:ba:fd:d0:e9:29:8a:87:
11:b7:8e:84:54:56:21:df:74:e0:9f:35:e8:48:35:68:f8:8b:
c1:6f:d3:97:b3:4a:21:1d:ba:9e:1c:d6:9c:92:82:9a:63:ad:
00:da:f4:0d:25:a2:8b:c3:b0:00:42:d9:60:f0:25:81:6b:19:
05:64:91:ae:29:12:7a:ad:5e:06:ae:f4:80:e1:2a:3c:2f:ce:
9f:29:e2:45:f8:40:3b:8b:3c:fa:b7:88:e0:92:93:a4:ca:e5:
bf:3d:09:62:dd:3b:da:a4:44:71:6e:fd:ad:47:95:72:16:92:
77:81:a8:4e:86:be:29:22:50:50:06:94:32:b5:18:66:17:78:
77:10:37:d6:0d:56:a8:80:99:50:59:72:48:91:ac:db:ff:a2:
e7:83:96:a9:ce:aa:fd:af:a0:a2:c9:b6:d8:22:a0:41:fd:8a:
65:90:45:40:a6:c9:46:c0:f3:50:33:e0:a6:cc:aa:ed:d3:36:
2f:89:03:15:a7:9b:fd:12:1b:b5:cc:11:d4:7f:f6:22:73:33:
11:4c:65:16:60:2c:a4:58:37:61:2f:3d:10:29:97:69:55:37:
7e:9d:b3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:49 2024 by rpki-client on console-fra.rpki-client.org