Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/0f7594-f048-473d-a39a-ddb9e4db98c6/1/gZeNVTA5YRWVWWWX3NOc4SM0hJQ.roa
File: gZeNVTA5YRWVWWWX3NOc4SM0hJQ.roa (raw, json)
Hash identifier: XzmwQ/ORBPyhK7SG6UhRPYzQs6bTA0OsKSSyzNvc3pk=
Subject key identifier: 81:97:8D:55:30:39:61:15:95:59:65:97:DC:D3:9C:E1:23:34:84:94
Certificate issuer: /CN=0f21b78ce97b0f5fb3d88bf95cfbb08b2fbea8e5
Certificate serial: 0187B48F95D18747D4ABD164640AF71996CE
Authority key identifier: 0F:21:B7:8C:E9:7B:0F:5F:B3:D8:8B:F9:5C:FB:B0:8B:2F:BE:A8:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyG3jOl7D1-z2Iv5XPuwiy--qOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/0f7594-f048-473d-a39a-ddb9e4db98c6/1/gZeNVTA5YRWVWWWX3NOc4SM0hJQ.roa
Signing time: Mon 24 Apr 2023 18:38:41 +0000
ROA not before: Mon 24 Apr 2023 18:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35280
IP address blocks: 132.68.0.0/16 maxlen: 16
132.69.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b4:8f:95:d1:87:47:d4:ab:d1:64:64:0a:f7:19:96:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f21b78ce97b0f5fb3d88bf95cfbb08b2fbea8e5
Validity
Not Before: Apr 24 18:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81978d553039611595596597dcd39ce123348494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0f:0e:60:1f:98:ea:4e:fc:c6:9f:7c:3e:ec:
92:30:06:74:ee:ea:5c:3a:29:3e:9c:25:5e:6e:65:
25:66:0f:7e:a0:ae:a6:46:6a:f7:9c:dd:af:b7:2d:
6a:32:96:09:3c:36:4b:2d:af:26:c0:fa:19:91:b2:
f2:15:1f:b3:a8:93:52:02:dc:7a:e7:8e:ff:fc:c8:
9c:30:83:04:84:4f:4d:aa:bc:1c:c8:75:af:4b:c1:
2e:44:2a:bf:c5:f1:1d:56:c9:f3:9e:47:a5:16:20:
25:a9:11:31:e1:3a:4f:56:66:3b:03:37:72:eb:d2:
15:6a:80:34:4e:f5:5e:07:6f:13:16:ff:e3:41:19:
ad:1f:e3:39:ae:50:78:3f:a1:7e:16:ef:5c:ea:03:
cc:25:9e:85:fa:cc:ab:1b:44:42:4f:28:36:77:0e:
2b:64:ea:7b:94:1a:c8:8d:bd:50:81:b5:64:67:c6:
93:5c:e1:cb:c3:f1:c5:63:31:10:08:d2:6c:20:39:
90:63:59:1b:88:07:e2:7c:79:90:ac:ba:37:5b:34:
52:87:a6:6d:db:c0:a8:3a:10:67:67:b5:b7:9f:fa:
f8:30:a2:71:86:c4:ad:b2:02:d3:bd:0c:a1:62:c5:
1f:23:eb:fa:9f:16:fd:9d:a8:cc:af:e0:6d:92:e3:
2b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:97:8D:55:30:39:61:15:95:59:65:97:DC:D3:9C:E1:23:34:84:94
X509v3 Authority Key Identifier:
keyid:0F:21:B7:8C:E9:7B:0F:5F:B3:D8:8B:F9:5C:FB:B0:8B:2F:BE:A8:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyG3jOl7D1-z2Iv5XPuwiy--qOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/0f7594-f048-473d-a39a-ddb9e4db98c6/1/gZeNVTA5YRWVWWWX3NOc4SM0hJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/0f7594-f048-473d-a39a-ddb9e4db98c6/1/DyG3jOl7D1-z2Iv5XPuwiy--qOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.68.0.0/15
Signature Algorithm: sha256WithRSAEncryption
6a:94:3c:f0:14:6f:1d:ec:c6:4c:a8:fc:5e:0c:9e:b7:eb:4f:
3a:3f:0d:7b:41:60:43:95:35:d8:84:62:d3:bd:90:1e:d3:0b:
07:42:f4:62:e8:63:3a:4f:12:bf:54:43:09:19:56:08:cc:ea:
80:e0:be:eb:96:b4:ce:0d:8e:9b:11:cf:51:b9:fe:28:ac:86:
b3:c5:13:17:ab:ee:62:5b:96:c8:7e:f8:5d:88:97:56:57:9d:
0e:a8:42:e2:9f:0a:ca:9c:49:93:e1:2e:2c:e6:c1:d5:2c:ee:
20:95:89:9b:eb:02:16:8d:6c:11:aa:2c:3c:db:8a:a8:93:b2:
4a:21:25:77:a4:5f:18:7f:4f:a4:01:46:7e:db:ee:77:e3:07:
da:2a:2a:6d:09:9d:04:35:b8:94:8c:cd:93:d3:ac:d8:90:40:
e3:de:a8:1e:55:c2:c5:57:f4:e0:bd:d4:af:a0:32:0e:d9:27:
8f:c3:22:50:35:c5:ad:50:c1:a8:f5:29:be:e8:b9:a3:e5:7c:
49:e5:e7:a6:6b:3c:01:80:97:13:c1:67:6c:10:40:3a:00:ce:
f4:df:ec:51:95:42:98:4b:4e:c0:69:d5:bb:34:76:c5:d2:fd:
af:8d:0b:fc:27:3b:76:7d:20:50:54:b0:79:31:d2:e2:aa:a5:
31:6a:7c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:56 2024 by rpki-client on console-fra.rpki-client.org