Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/GwqMfrcbMGggGfzzMTnt3m-hz78.roa
File: GwqMfrcbMGggGfzzMTnt3m-hz78.roa (raw, json)
Hash identifier: Fy4PiB6CQpGS/BPL1jMqDBMcHlPyA9oeCfcgTxRhXaQ=
Subject key identifier: 1B:0A:8C:7E:B7:1B:30:68:20:19:FC:F3:31:39:ED:DE:6F:A1:CF:BF
Certificate issuer: /CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Certificate serial: 018E18223E49893A85BD4FD47D28046633E3
Authority key identifier: 8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/GwqMfrcbMGggGfzzMTnt3m-hz78.roa
Signing time: Thu 07 Mar 2024 08:58:01 +0000
ROA not before: Thu 07 Mar 2024 08:58:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213354
IP address blocks: 194.79.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 16 Apr 2024 17:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:22:3e:49:89:3a:85:bd:4f:d4:7d:28:04:66:33:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Validity
Not Before: Mar 7 08:58:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b0a8c7eb71b30682019fcf33139edde6fa1cfbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:09:17:0b:10:8d:0c:d8:8d:4e:12:70:96:67:
4b:da:86:ff:ea:d8:2d:90:02:49:63:10:e7:c5:27:
3b:f5:af:06:d9:ee:ba:a5:77:52:5f:5b:ec:e1:45:
6b:ea:37:03:74:33:06:e2:ec:fd:cf:a3:ec:d1:91:
d6:17:35:4d:fc:0f:0e:97:60:a1:73:45:f3:ca:e6:
ee:c9:97:2f:e2:13:7a:6c:1d:9f:62:b4:42:57:be:
70:e8:f3:4c:75:8b:89:14:ce:14:bb:1d:1b:eb:4c:
58:79:82:25:ac:70:28:44:f2:d9:a5:a0:a8:a4:d1:
a6:e9:a9:56:d6:db:f2:46:71:01:7c:aa:43:b8:1e:
37:9e:54:a6:f4:7c:28:75:78:ea:3f:bf:ea:d6:3c:
c9:93:19:e3:ff:3a:a7:91:6f:13:a7:ea:4d:55:5c:
37:20:82:c9:b0:20:fe:b9:ac:3e:96:ec:7b:2d:71:
74:2b:7d:97:d8:c5:c6:12:6f:47:41:99:7c:26:c2:
67:10:dd:a7:3a:00:3b:cd:4e:b7:18:81:02:e3:05:
72:b7:96:77:5b:e0:ca:87:30:39:23:43:5f:07:68:
59:0e:8f:0d:cc:bc:54:58:80:26:b7:24:d6:a2:33:
76:49:83:e3:33:97:34:0f:31:ab:6e:51:9c:97:29:
cf:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:0A:8C:7E:B7:1B:30:68:20:19:FC:F3:31:39:ED:DE:6F:A1:CF:BF
X509v3 Authority Key Identifier:
keyid:8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/GwqMfrcbMGggGfzzMTnt3m-hz78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/jvZmka06QWUvW9hZYjCzrHQ9Kiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.79.8.0/22
Signature Algorithm: sha256WithRSAEncryption
21:6a:15:d0:ac:97:ef:3e:04:f1:20:d3:6e:c6:cb:e3:95:fb:
72:d6:71:36:6b:29:4d:c5:ac:ae:ae:fc:c8:41:75:65:82:05:
68:b7:a2:b1:7d:34:60:55:51:34:c6:e8:06:f4:03:82:c9:ae:
46:ec:73:e1:cd:c3:86:30:f3:ea:74:10:2a:e8:a9:49:2d:ae:
6f:cb:22:2f:f2:49:8a:52:84:e0:c1:96:d7:38:86:04:a7:f0:
ed:bb:be:9b:0a:75:d2:1b:15:43:4f:81:63:3c:1f:33:11:b8:
0f:9b:d5:93:d0:3f:1a:2d:06:25:a7:c4:46:b5:54:29:8c:a6:
ed:1b:1f:04:a1:96:3a:0c:ae:7f:4c:72:70:cd:12:00:25:c9:
f5:2a:45:f4:ae:1e:01:6e:7f:85:ed:d4:72:1a:20:2e:fa:3a:
f6:09:ac:94:b5:54:21:4b:f9:f6:b6:9a:17:f9:d4:5f:7a:29:
b4:aa:90:4c:39:8c:83:e7:f4:9b:3b:50:95:2a:62:7b:4b:68:
f6:e1:fb:b0:cb:85:67:40:54:c0:9b:7e:58:3a:53:f3:11:a8:
1b:b9:3a:19:0d:b1:40:56:fd:eb:fa:7e:1d:67:5d:d0:13:90:
4a:75:c5:43:b7:37:66:69:f2:c4:bb:75:1d:5a:0a:16:da:94:
da:bf:2f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:17 2024 by rpki-client on console-fra.rpki-client.org