Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/gOz_gzs4paxPN203fTQ25-HCSzc.roa
File: gOz_gzs4paxPN203fTQ25-HCSzc.roa (raw, json)
Hash identifier: eu++7Qy13gHUe2Xy63ZvfP59A51vRmUFhnEI28VEfag=
Subject key identifier: 80:EC:FF:83:3B:38:A5:AC:4F:37:6D:37:7D:34:36:E7:E1:C2:4B:37
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 018570705217F76D76F0570F365578CA0604
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/gOz_gzs4paxPN203fTQ25-HCSzc.roa
Signing time: Mon 02 Jan 2023 03:04:47 +0000
ROA not before: Mon 02 Jan 2023 03:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39756
IP address blocks: 193.223.101.0/24 maxlen: 24
91.209.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:52:17:f7:6d:76:f0:57:0f:36:55:78:ca:06:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Jan 2 03:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80ecff833b38a5ac4f376d377d3436e7e1c24b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9a:9d:15:e9:c5:40:75:35:0c:87:5f:dd:cf:
33:de:f6:9f:c3:6b:d6:44:9e:76:38:c9:10:e0:28:
6e:42:3c:79:60:7c:9b:f1:c2:52:68:8f:2d:8b:75:
5f:c0:74:33:68:58:27:14:ca:98:80:b6:3a:66:8b:
4b:b5:45:fd:a2:b8:44:fb:4e:0e:04:50:61:72:3c:
09:cb:b6:65:98:c7:53:92:6a:f9:bb:d1:38:ce:83:
81:ac:d9:e2:36:d7:e4:dd:9a:54:3f:49:7e:be:f2:
ac:49:bd:c0:83:5e:96:e6:7e:1e:3b:e4:61:90:26:
18:67:18:57:df:f5:9b:6a:e2:44:54:a7:a3:ff:87:
47:1b:49:66:9c:9d:4a:d0:ee:4f:58:ab:25:e2:0a:
e5:94:50:e9:6c:37:79:74:7f:b2:dd:45:4e:91:71:
c2:51:01:ea:2c:ff:85:f4:46:cd:1a:0a:13:3b:36:
a7:03:53:95:e3:7b:1f:e1:33:a3:4c:ee:d0:fc:94:
75:57:3c:eb:b0:09:24:40:75:df:27:09:52:0b:7e:
67:88:b9:8f:28:00:06:7d:7c:45:af:09:b6:26:c9:
36:90:23:32:c6:8d:83:0b:ba:6c:ef:c9:6b:77:23:
67:e8:02:6f:a9:e2:91:a3:bb:0a:6a:59:6a:17:30:
ad:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EC:FF:83:3B:38:A5:AC:4F:37:6D:37:7D:34:36:E7:E1:C2:4B:37
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/gOz_gzs4paxPN203fTQ25-HCSzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.102.0/24
193.223.101.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:33:7f:17:4e:fb:16:43:df:c5:4d:81:07:d2:1b:50:a0:f3:
96:da:65:be:6c:bb:62:4f:bb:57:68:2b:5b:fa:3c:4f:8e:7f:
eb:eb:ee:55:7b:3e:45:7b:9a:b8:cf:b0:78:c0:28:57:68:46:
26:5d:b4:af:8c:c6:d6:5d:aa:1e:ba:6f:8d:a6:6a:a1:1d:fd:
98:dc:fe:94:cf:99:1d:be:b5:54:7f:17:7e:fa:94:b0:5c:89:
f2:23:25:1f:26:24:43:12:85:dc:e0:ea:53:6b:38:1c:2b:b8:
91:48:97:36:c2:ac:a9:ff:ce:7f:23:b8:68:f6:ec:50:da:99:
99:b3:b2:68:43:5a:5e:59:49:0d:e6:7e:bc:a7:d4:96:e8:9f:
d6:30:d7:ac:c1:9c:4c:8c:77:fe:19:27:55:11:90:9d:b3:6c:
61:d8:7e:45:3c:0b:3b:89:3a:65:1c:12:88:89:a4:81:14:13:
eb:0a:96:be:95:bb:d4:70:16:8b:ed:6f:a2:f5:4a:62:a5:ab:
b9:d9:a5:00:42:b0:3b:eb:28:a8:fb:5a:c2:7d:c1:0c:f8:1c:
1c:3e:66:f5:e9:e1:3d:9d:03:aa:16:4e:49:27:72:f2:af:08:
5e:68:98:8a:b9:94:ac:13:39:2b:82:01:26:69:6a:39:ba:dd:
ab:53:ca:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:46 2024 by rpki-client on console-ams.rpki-client.org