Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ba95fe-4599-4d83-b6bd-e01919fcfedf/1/GfgJNO6FUf_woXl-oUgto1cDzVk.roa
File: GfgJNO6FUf_woXl-oUgto1cDzVk.roa (raw, json)
Hash identifier: Nfn7Aw+k6vruxzryEKCuVQg71nQ0FBg215yDMNKaTxY=
Subject key identifier: 19:F8:09:34:EE:85:51:FF:F0:A1:79:7E:A1:48:2D:A3:57:03:CD:59
Certificate issuer: /CN=8bb0b17dd89b3864249728b9fc2eeae510fde4fb
Certificate serial: 0188BA32FB29A260CCF587DBFEC1EFA9F99A
Authority key identifier: 8B:B0:B1:7D:D8:9B:38:64:24:97:28:B9:FC:2E:EA:E5:10:FD:E4:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7CxfdibOGQklyi5_C7q5RD95Ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ba95fe-4599-4d83-b6bd-e01919fcfedf/1/GfgJNO6FUf_woXl-oUgto1cDzVk.roa
Signing time: Wed 14 Jun 2023 13:58:03 +0000
ROA not before: Wed 14 Jun 2023 13:58:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41751
IP address blocks: 91.206.0.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ba:32:fb:29:a2:60:cc:f5:87:db:fe:c1:ef:a9:f9:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb0b17dd89b3864249728b9fc2eeae510fde4fb
Validity
Not Before: Jun 14 13:58:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19f80934ee8551fff0a1797ea1482da35703cd59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:cc:07:56:4c:c9:5f:0f:a6:0e:f4:b8:bc:08:
81:97:a3:48:25:91:e4:43:85:64:ef:10:18:93:3e:
25:e4:71:e8:51:08:59:8f:e7:55:9b:57:58:a8:6d:
ef:81:79:1e:94:dd:e4:4b:a3:6b:2a:7d:3b:47:4c:
7b:ff:24:d0:40:8b:6d:7f:ea:4f:da:ca:57:86:a3:
3e:67:db:c1:fd:d4:82:15:90:fa:7c:10:72:23:f7:
45:bf:72:13:70:89:bc:f8:47:9f:38:13:56:b2:a8:
f0:65:a3:87:46:f9:ec:7c:23:3f:61:88:34:2e:c2:
fd:a3:5b:21:b0:0b:07:e0:b1:28:ee:fa:9f:83:8c:
71:d6:9c:e0:77:fd:dc:15:41:9d:a9:a1:dc:07:94:
d4:05:cf:21:42:c2:de:cf:0a:13:5f:84:b8:aa:80:
0d:09:9e:f0:e0:b0:1c:05:bf:91:a3:43:95:4e:b6:
ba:ca:f5:9b:bf:d8:fa:8e:18:ea:88:30:f0:3a:63:
03:10:40:1c:d6:d3:c7:f0:46:71:1a:e6:fe:db:73:
60:57:6b:51:0c:0d:a8:1f:06:80:71:24:7a:c7:a0:
06:45:ce:a7:d1:d1:85:01:67:4b:5f:3d:85:5b:9e:
c1:8a:43:5d:2d:7f:38:6b:4f:43:8c:a6:a5:95:28:
bf:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F8:09:34:EE:85:51:FF:F0:A1:79:7E:A1:48:2D:A3:57:03:CD:59
X509v3 Authority Key Identifier:
keyid:8B:B0:B1:7D:D8:9B:38:64:24:97:28:B9:FC:2E:EA:E5:10:FD:E4:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7CxfdibOGQklyi5_C7q5RD95Ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ba95fe-4599-4d83-b6bd-e01919fcfedf/1/GfgJNO6FUf_woXl-oUgto1cDzVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ba95fe-4599-4d83-b6bd-e01919fcfedf/1/i7CxfdibOGQklyi5_C7q5RD95Ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.0.0/23
Signature Algorithm: sha256WithRSAEncryption
37:f6:f0:bd:e5:19:db:63:25:03:0f:74:1c:60:ee:8a:34:f4:
7b:aa:0f:83:da:22:65:32:13:7a:71:d4:99:c4:96:1a:b4:dc:
60:e9:28:d4:9d:bf:79:ca:75:3c:88:9a:ba:a5:49:68:01:2a:
26:8a:ab:87:66:82:64:b3:96:b8:56:a2:29:8a:79:53:fe:ee:
9d:79:56:8f:bc:9e:5d:66:92:f9:c9:a8:f5:6e:83:fc:05:47:
23:0b:42:9f:c4:e6:a1:a1:cf:7f:0e:55:20:52:28:fa:11:55:
a3:1d:2f:c3:90:35:60:f6:b1:9d:33:43:9e:9a:06:5c:5d:c3:
f7:4b:3e:8f:6f:64:05:57:8d:8c:7e:f0:18:51:5e:8a:5b:dd:
4d:10:12:2e:b1:c5:9e:67:ed:ee:02:a8:7d:51:ea:18:6a:8e:
0d:07:af:02:84:f1:51:d0:37:57:4a:1d:32:81:5e:25:3f:03:
fe:dd:d2:0e:53:50:82:cd:90:d8:6c:f0:87:85:7c:c1:05:52:
54:73:09:87:81:49:60:94:f0:22:de:66:6a:92:0a:f9:75:5a:
36:9e:ad:a4:7e:05:a4:e0:bd:c4:94:3a:9f:7c:b4:86:a6:a0:
e5:a1:58:1d:79:3d:b6:72:ef:b8:d4:8e:25:24:95:a7:88:00:
e0:6d:80:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:36 2024 by rpki-client on console-ams.rpki-client.org