Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/goVG1Maj2kJyU1I0W57p8An6Pa4.roa
File: goVG1Maj2kJyU1I0W57p8An6Pa4.roa (raw, json)
Hash identifier: RJNuIZUBIPIFzklsf/lA6/C5YR/PaHqMHR8iE68o5g4=
Subject key identifier: 82:85:46:D4:C6:A3:DA:42:72:53:52:34:5B:9E:E9:F0:09:FA:3D:AE
Certificate issuer: /CN=ef7fd5d33061a9de920af1c2a13513d46dd24612
Certificate serial: 018F5814E9FD9AA4E439089B8C4269ED1E5A
Authority key identifier: EF:7F:D5:D3:30:61:A9:DE:92:0A:F1:C2:A1:35:13:D4:6D:D2:46:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73_V0zBhqd6SCvHCoTUT1G3SRhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/goVG1Maj2kJyU1I0W57p8An6Pa4.roa
Signing time: Wed 08 May 2024 12:01:56 +0000
ROA not before: Wed 08 May 2024 12:01:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 147185
IP address blocks: 193.32.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 12:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:58:14:e9:fd:9a:a4:e4:39:08:9b:8c:42:69:ed:1e:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef7fd5d33061a9de920af1c2a13513d46dd24612
Validity
Not Before: May 8 12:01:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=828546d4c6a3da42725352345b9ee9f009fa3dae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:84:e9:a0:bc:21:fc:d4:19:b1:a1:10:59:96:
a6:15:6b:37:2e:98:e5:19:11:df:fc:71:29:c2:66:
14:35:63:57:0f:5d:25:b7:62:7e:03:f6:ae:c7:09:
ae:5f:93:fb:0e:01:aa:6f:18:96:a5:95:1b:ab:66:
ae:4c:78:cd:e3:56:cd:5e:4c:32:be:e8:1b:cb:82:
aa:42:55:0e:ee:20:d6:07:5b:01:e2:6d:bd:17:18:
10:2d:42:39:aa:82:fd:50:60:0e:2a:28:40:4d:22:
82:b9:b7:d0:ae:ff:10:ec:88:d5:0c:8e:29:d4:a3:
51:7b:00:62:b1:c1:44:a6:a5:63:ef:96:e4:51:b0:
41:14:78:34:96:a6:79:3d:b7:52:f9:49:ad:02:37:
d9:25:a0:fb:f9:c1:c6:75:f3:43:5f:3e:09:4d:ec:
16:fb:3a:72:14:72:df:4b:e7:7e:a0:bd:23:e5:6c:
89:c8:7e:5e:3a:55:88:d1:db:a8:a4:08:df:cf:e3:
60:7c:7a:5d:d6:76:03:a2:81:b0:ba:57:ed:fd:12:
fb:1d:93:9e:1d:9a:56:64:1d:3f:c5:00:30:65:75:
60:54:91:b7:74:56:63:a6:14:db:bc:e6:f8:bc:2b:
55:09:dc:60:89:df:29:a6:c7:d3:6a:13:ed:04:4c:
e2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:85:46:D4:C6:A3:DA:42:72:53:52:34:5B:9E:E9:F0:09:FA:3D:AE
X509v3 Authority Key Identifier:
keyid:EF:7F:D5:D3:30:61:A9:DE:92:0A:F1:C2:A1:35:13:D4:6D:D2:46:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73_V0zBhqd6SCvHCoTUT1G3SRhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/goVG1Maj2kJyU1I0W57p8An6Pa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/73_V0zBhqd6SCvHCoTUT1G3SRhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.247.0/24
Signature Algorithm: sha256WithRSAEncryption
94:23:92:08:34:97:a9:b8:21:63:be:a8:de:7c:bf:fe:a6:54:
ef:1c:ea:78:69:97:d1:fb:f3:8a:67:4b:4d:02:b3:6c:61:61:
6d:fa:55:2b:74:87:9b:61:a5:a0:e7:8e:12:a8:c8:11:c2:0f:
9d:1d:eb:95:78:02:33:15:f5:d4:b4:14:35:19:1b:a2:9b:b3:
33:5f:fa:22:b7:d8:07:c0:27:66:0b:d5:32:2f:2b:05:be:9d:
0f:40:5a:ac:26:9e:f7:96:3b:54:75:32:50:f9:13:40:e2:c9:
5c:8e:98:8b:34:7d:56:d9:ab:34:5f:57:a5:ae:30:20:50:43:
6b:01:3c:7d:62:e0:3e:97:99:05:1a:de:16:f4:38:cf:13:8e:
f1:2f:65:a6:5d:8b:f5:00:94:62:fe:6e:14:79:c9:ca:e8:75:
1f:44:7e:71:b8:f2:6a:be:4d:97:90:21:3a:c4:43:52:aa:27:
a5:5d:22:3a:78:04:28:b3:29:b1:fe:af:a3:4b:85:f5:4a:14:
5f:9d:66:0d:2a:d9:aa:5d:46:88:b7:54:62:52:16:c7:31:13:
5c:ea:21:c1:40:80:fe:6b:36:81:60:ca:6f:b8:1e:80:b8:12:
d4:a4:08:ba:9d:08:71:0f:cd:59:c1:90:7b:e5:e5:5b:95:d3:
31:b5:59:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:47:51 2025 by rpki-client