Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/ulAu6BDbmavnXg4aXgUCxp-GMCI.roa
File: ulAu6BDbmavnXg4aXgUCxp-GMCI.roa (raw, json)
Hash identifier: f8O1cL0P0qAVv1yVQ4Xg7X+5MLS119kplB9LOtCmrl4=
Subject key identifier: BA:50:2E:E8:10:DB:99:AB:E7:5E:0E:1A:5E:05:02:C6:9F:86:30:22
Certificate issuer: /CN=86ee201c65d655ee9cfe251f951ea91bba154567
Certificate serial: 018901ED034BD084F9F5E3B6EAE000913EAF
Authority key identifier: 86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/ulAu6BDbmavnXg4aXgUCxp-GMCI.roa
Signing time: Wed 28 Jun 2023 12:14:17 +0000
ROA not before: Wed 28 Jun 2023 12:14:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43054
IP address blocks: 193.200.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Dec 2023 16:53:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:01:ed:03:4b:d0:84:f9:f5:e3:b6:ea:e0:00:91:3e:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86ee201c65d655ee9cfe251f951ea91bba154567
Validity
Not Before: Jun 28 12:14:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba502ee810db99abe75e0e1a5e0502c69f863022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:b3:f3:f9:ec:55:f8:c1:3f:b2:6c:31:73:
b5:6a:5b:a9:9b:44:ef:d5:8e:94:c1:44:0f:11:3f:
1b:74:ab:9c:df:95:80:ed:13:ea:a8:d5:cf:5f:30:
e5:31:ed:29:b9:42:51:c4:9f:80:92:6e:ac:23:26:
f7:2b:9e:26:a7:08:a9:8f:8e:b8:64:7b:4c:c4:d8:
18:27:1d:ed:4b:c2:1f:16:9b:ee:84:66:ee:7e:8d:
a3:08:a9:7b:1b:d9:29:3d:eb:0a:0e:7c:e6:ad:2b:
d2:4e:52:61:45:30:a4:ca:b2:e1:c0:3f:7f:2b:a7:
e4:87:41:09:e0:e3:71:b2:d4:2a:83:e0:90:4e:29:
ef:36:1b:e2:69:18:16:ef:76:8b:b7:c0:cf:7d:31:
f1:43:31:aa:09:bc:ed:f0:d7:4e:8a:e3:36:ed:ef:
f1:41:9c:d5:03:7d:fb:9d:e8:40:87:59:34:49:6e:
d2:63:75:20:44:8b:d7:18:c8:1f:ca:59:f6:c2:7b:
db:b9:1e:39:c8:99:01:2a:ec:5e:15:0d:a3:61:ae:
07:fd:d5:d3:46:ea:bf:1e:41:90:72:49:92:bd:7e:
af:3d:a9:ae:60:a4:b7:b3:de:a4:80:d2:60:ec:86:
41:5a:9d:3b:09:11:16:77:1f:25:0f:82:20:50:2b:
df:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:50:2E:E8:10:DB:99:AB:E7:5E:0E:1A:5E:05:02:C6:9F:86:30:22
X509v3 Authority Key Identifier:
keyid:86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/ulAu6BDbmavnXg4aXgUCxp-GMCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.214.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:50:5d:7b:4f:af:0a:ed:b5:5b:ae:4e:8e:d5:f6:1b:dd:8b:
c7:93:d1:92:5c:b5:e7:fc:17:b5:81:e2:0a:0c:50:24:81:44:
dd:7a:1e:c2:89:ac:f0:60:ee:8f:d7:9d:7e:60:0b:08:f0:f5:
1e:de:72:2b:64:d9:28:7a:29:bd:0e:ec:36:88:83:98:42:5f:
2c:d0:a3:44:4d:70:6a:e0:31:4f:33:53:8c:0b:0e:6c:8d:21:
3c:71:e0:02:06:5c:99:21:b8:bc:3a:8a:f9:45:a8:f3:67:84:
a0:6a:c3:08:ae:b5:07:f2:93:74:26:89:5f:3d:99:63:42:33:
9f:02:a6:4c:f5:7e:e7:10:c2:bf:54:ba:12:be:6e:fc:8c:c9:
2d:6b:f8:53:fe:af:bb:55:cd:f8:e1:ab:b4:c5:f5:4b:7b:8e:
e9:e8:68:89:a1:96:83:21:be:a3:56:ce:0b:a8:da:12:6d:41:
2c:79:40:3a:e7:9b:21:4e:fe:11:3f:88:a7:59:2c:13:f3:3e:
73:0d:61:6b:54:de:54:26:66:0f:a0:c2:d2:36:39:c8:46:d8:
72:91:16:3c:88:e7:c3:11:2d:47:80:10:94:ec:b2:35:51:6e:
ca:c3:c2:d8:ab:4f:db:0c:fb:d6:8b:a7:47:4f:ee:1a:1e:50:
2a:82:b0:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:32 2024 by rpki-client on console-ams.rpki-client.org