Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/139ff2-f5d0-49be-910b-b5c945a0ca16/1/GkbJqQJ2VPpPxKycKoIWfJUT0hQ.roa
File: GkbJqQJ2VPpPxKycKoIWfJUT0hQ.roa (raw, json)
Hash identifier: r2eQPa3eVr2oWSFc7aymq/QEZDMyuDwppHjwtgWHsmQ=
Subject key identifier: 1A:46:C9:A9:02:76:54:FA:4F:C4:AC:9C:2A:82:16:7C:95:13:D2:14
Certificate issuer: /CN=319b679c14681089f2d07786df04f779d741c11a
Certificate serial: 01856F14D43A61079833287860E8FFCC4ED5
Authority key identifier: 31:9B:67:9C:14:68:10:89:F2:D0:77:86:DF:04:F7:79:D7:41:C1:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZtnnBRoEIny0HeG3wT3eddBwRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/139ff2-f5d0-49be-910b-b5c945a0ca16/1/GkbJqQJ2VPpPxKycKoIWfJUT0hQ.roa
Signing time: Sun 01 Jan 2023 20:45:14 +0000
ROA not before: Sun 01 Jan 2023 20:45:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197536
IP address blocks: 91.223.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d4:3a:61:07:98:33:28:78:60:e8:ff:cc:4e:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=319b679c14681089f2d07786df04f779d741c11a
Validity
Not Before: Jan 1 20:45:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a46c9a9027654fa4fc4ac9c2a82167c9513d214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:01:cb:4a:63:82:d1:31:62:b5:ab:f0:9c:2c:
df:cf:af:16:fb:17:fa:de:95:1f:69:01:ba:eb:90:
ca:3f:39:b2:99:cd:b4:a6:3f:8f:2f:ea:29:93:e1:
3b:53:a1:0f:1e:b4:42:56:88:25:63:c5:81:69:d3:
4d:44:67:60:ec:29:75:01:4a:6c:4f:af:8f:97:95:
0c:41:55:38:6c:e1:eb:37:f5:a8:61:7c:f5:c4:d9:
34:37:1b:51:c3:52:5c:af:27:0c:16:1f:0b:f1:51:
f4:5e:e3:47:36:97:da:cd:8a:90:a7:86:be:f1:77:
e8:e2:df:1e:a1:fd:25:73:a0:d4:b9:af:b1:5c:d3:
1e:71:a4:20:bf:61:f1:4a:ac:0c:f9:d3:fb:9d:a9:
4e:c0:80:cd:b9:15:18:6f:25:96:bc:28:54:c2:25:
78:9c:43:54:00:42:26:54:95:ec:75:9d:68:2d:f4:
8e:ae:e0:06:33:f2:9f:c9:d0:e3:87:13:c8:d6:70:
9b:32:29:d4:c6:11:ce:c6:63:7f:41:37:ed:0c:17:
8f:52:6f:d0:fe:39:4b:e2:1a:f5:39:b1:69:d0:8b:
33:9b:69:1b:09:b5:ad:9e:a8:8d:32:5f:72:11:b0:
ea:e0:57:a1:48:86:22:11:1d:64:50:0b:9c:36:a1:
e0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:46:C9:A9:02:76:54:FA:4F:C4:AC:9C:2A:82:16:7C:95:13:D2:14
X509v3 Authority Key Identifier:
keyid:31:9B:67:9C:14:68:10:89:F2:D0:77:86:DF:04:F7:79:D7:41:C1:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZtnnBRoEIny0HeG3wT3eddBwRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/139ff2-f5d0-49be-910b-b5c945a0ca16/1/GkbJqQJ2VPpPxKycKoIWfJUT0hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/139ff2-f5d0-49be-910b-b5c945a0ca16/1/MZtnnBRoEIny0HeG3wT3eddBwRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.39.0/24
Signature Algorithm: sha256WithRSAEncryption
25:32:c2:79:ea:20:9b:ab:64:14:7f:c8:6c:bd:b4:11:04:81:
e2:6f:8e:97:2f:d0:13:0d:73:10:a0:a5:ae:27:fd:09:4e:c1:
87:87:8a:b3:19:ce:78:cf:3f:0d:72:9c:29:29:85:3c:fc:82:
20:4f:10:d6:57:4d:6a:b7:f7:26:eb:c7:f9:02:12:42:4b:8e:
e6:a1:36:3e:59:34:f0:fe:99:39:82:67:eb:99:98:68:33:e0:
59:9d:0e:69:d4:07:39:74:f8:7e:b6:3c:1c:d7:0f:e9:64:3f:
54:53:79:8a:83:4e:1d:89:1d:f7:d1:9f:e0:f5:a0:25:0a:84:
00:13:e9:8a:81:de:36:11:72:d3:50:a5:7a:2a:92:d5:dd:d0:
d8:a2:3b:58:63:af:46:37:e1:a6:62:08:af:db:e5:ad:bc:ba:
6e:63:51:42:e9:0b:f0:2d:b4:8b:3f:d7:82:65:d8:1e:fb:c7:
44:81:13:52:12:49:b0:9c:c8:9b:00:2d:36:9b:53:b4:56:25:
96:41:95:55:0e:a7:6f:a5:ef:76:d7:6a:a7:05:bb:49:fe:6b:
c8:3d:98:f6:7c:56:83:87:85:4f:a9:89:32:ac:1e:0d:5e:48:
0f:ae:5d:c5:8b:45:26:36:aa:63:87:d1:10:ae:24:a3:01:33:
dc:03:87:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:34 2024 by rpki-client on console-fra.rpki-client.org