Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/gb8EDkrREtaj4wFJ22m1w37ry5U.roa
File: gb8EDkrREtaj4wFJ22m1w37ry5U.roa (raw, json)
Hash identifier: i0rF54ORCo0QisfUs96CksybaDdHDQTcRrglH9s+/3g=
Subject key identifier: 81:BF:04:0E:4A:D1:12:D6:A3:E3:01:49:DB:69:B5:C3:7E:EB:CB:95
Certificate issuer: /CN=01292e03a731796e1d7b148b1dd235d144352f5d
Certificate serial: 018871309F4920E0B35B5C415A8047B00235
Authority key identifier: 01:29:2E:03:A7:31:79:6E:1D:7B:14:8B:1D:D2:35:D1:44:35:2F:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/gb8EDkrREtaj4wFJ22m1w37ry5U.roa
Signing time: Wed 31 May 2023 09:43:11 +0000
ROA not before: Wed 31 May 2023 09:43:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57474
IP address blocks: 195.96.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:30:9f:49:20:e0:b3:5b:5c:41:5a:80:47:b0:02:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01292e03a731796e1d7b148b1dd235d144352f5d
Validity
Not Before: May 31 09:43:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81bf040e4ad112d6a3e30149db69b5c37eebcb95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8c:b7:c4:6c:56:c3:34:8a:68:1e:cf:6b:ae:
58:17:22:a6:fc:ee:c6:e5:40:6f:ce:b4:1c:4e:fe:
74:11:03:59:35:f1:27:14:c1:9b:b7:86:4e:c0:e9:
d6:72:49:7f:3a:c3:e3:98:47:61:de:64:ef:cc:4a:
4d:f0:2b:41:83:b1:6c:65:dc:22:e6:88:5d:83:26:
fe:62:1f:7f:a0:43:64:a7:2e:a0:ca:d8:d9:82:bb:
35:45:a3:d2:7c:02:73:bc:13:a9:8d:2e:3b:2b:9a:
c4:96:27:b8:31:85:72:04:70:4e:7f:0d:b7:80:55:
de:f0:10:76:be:5d:29:8b:00:45:17:8a:96:47:b0:
1a:7d:65:ec:28:1f:38:5a:aa:b5:f5:07:c1:05:05:
60:35:9b:4e:4f:5f:7c:36:92:21:a1:a6:5c:f8:ae:
75:c8:34:d1:4a:a1:5d:1d:cc:12:ac:53:e9:90:75:
4c:7b:1d:4a:4a:94:43:42:33:43:1c:2b:ee:c3:36:
3d:33:65:c2:b1:c8:9f:4a:bf:54:40:0e:e0:47:7a:
de:8f:be:1c:22:41:87:58:a7:74:96:47:24:8a:59:
c4:3a:6b:d3:e2:3d:f9:97:6f:f9:85:83:c7:55:19:
fd:b9:63:3a:7e:0c:a4:1f:48:3b:6a:14:05:ac:5d:
a2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BF:04:0E:4A:D1:12:D6:A3:E3:01:49:DB:69:B5:C3:7E:EB:CB:95
X509v3 Authority Key Identifier:
keyid:01:29:2E:03:A7:31:79:6E:1D:7B:14:8B:1D:D2:35:D1:44:35:2F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/gb8EDkrREtaj4wFJ22m1w37ry5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/ASkuA6cxeW4dexSLHdI10UQ1L10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.153.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:70:83:87:22:3f:65:46:02:2e:03:79:61:7e:bf:2b:d5:b3:
64:d4:30:1e:cb:4c:ee:22:56:a5:52:ba:a9:cc:35:b9:ff:6e:
b2:cc:a9:62:5b:07:3e:14:9d:5c:a8:93:8e:6f:28:3c:2f:b4:
6d:a3:e2:38:ec:fd:cd:35:ef:25:7f:74:f4:52:16:77:53:24:
d9:ab:f5:22:05:e5:02:90:fa:69:85:52:98:4d:04:cc:cc:6f:
91:54:da:89:53:2d:cd:58:d7:14:42:b2:c0:5d:4f:4c:a2:6a:
23:93:c9:17:3a:07:95:b9:6c:68:06:1e:34:2f:b1:c9:8c:56:
4f:e5:8c:77:f1:cd:d8:d3:17:ef:bd:ef:07:85:8b:54:d0:66:
ec:8c:fc:a9:44:73:95:46:a2:66:19:92:77:8a:72:81:ab:65:
db:33:b0:58:24:12:33:1e:e2:e0:90:5f:4c:66:8b:b9:35:62:
5d:c5:20:a3:58:a1:05:1a:d1:e8:61:18:d9:cd:18:f4:6f:24:
c8:4a:f2:8f:2e:82:02:65:ed:7b:dc:6e:42:63:e7:66:d5:2b:
43:f6:81:a2:75:21:5b:c5:14:e0:15:78:af:37:b2:8a:11:6a:
b4:87:ab:04:20:c8:28:56:e7:4f:a9:fc:81:35:75:82:b7:40:
0c:6c:90:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:12 2024 by rpki-client on console-ams.rpki-client.org