Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/gLCX5sNFZcfy474uCHjBgTS0jdI.roa
File: gLCX5sNFZcfy474uCHjBgTS0jdI.roa (raw, json)
Hash identifier: 2ZrWaaAymBNlXKrydO48QU+zq4YFHYpwM9WE6U22maA=
Subject key identifier: 80:B0:97:E6:C3:45:65:C7:F2:E3:BE:2E:08:78:C1:81:34:B4:8D:D2
Certificate issuer: /CN=ef1f01881b73c8e9b5d92239229a6e512eca4e7c
Certificate serial: 018570150B4B8C6D83E71699404D369C67AE
Authority key identifier: EF:1F:01:88:1B:73:C8:E9:B5:D9:22:39:22:9A:6E:51:2E:CA:4E:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/gLCX5sNFZcfy474uCHjBgTS0jdI.roa
Signing time: Mon 02 Jan 2023 01:25:05 +0000
ROA not before: Mon 02 Jan 2023 01:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42037
IP address blocks: 185.155.182.0/24 maxlen: 24
2a00:8c40:238::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:0b:4b:8c:6d:83:e7:16:99:40:4d:36:9c:67:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1f01881b73c8e9b5d92239229a6e512eca4e7c
Validity
Not Before: Jan 2 01:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80b097e6c34565c7f2e3be2e0878c18134b48dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3a:b9:08:1d:37:aa:fc:29:a9:de:b2:80:b2:
67:6a:c3:50:a6:e8:85:8a:07:bd:cd:0a:41:2f:7b:
53:03:65:54:39:6e:23:a9:84:b8:1e:8d:48:b5:c5:
d1:36:7e:01:7b:c0:4f:14:46:36:d3:15:8b:76:ff:
3e:e0:b7:60:2e:c6:f9:75:3d:2c:1f:f8:2f:c4:52:
db:18:ad:ef:e6:2b:b7:e1:2f:34:be:1f:eb:df:f4:
2b:a9:7c:3d:0a:3c:f0:15:14:27:48:51:9b:70:ae:
a6:e4:14:de:64:3e:4c:c8:97:b6:39:20:9b:85:b3:
1f:ee:a3:a8:67:fb:6d:5a:0c:62:8a:9c:7f:a3:39:
65:9a:cb:7a:92:45:40:ff:9c:c3:52:98:7f:8f:11:
b8:76:b2:32:83:64:51:c4:b7:ef:4c:6a:08:23:3a:
38:b3:0d:b0:ed:ff:9b:b0:52:91:b5:30:b5:28:36:
cd:99:2d:93:bd:a0:01:a8:c4:da:9b:52:25:8b:47:
da:4a:3a:27:d1:c7:24:9f:3d:19:54:54:d0:76:5d:
cb:0e:a1:83:33:1e:3a:a7:4c:52:d6:a3:4d:25:ac:
db:f7:33:c6:2c:c5:1a:df:61:68:f8:c3:26:2c:9f:
1c:d2:91:fb:ad:f3:d1:6f:ee:58:63:c5:b3:e5:63:
85:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B0:97:E6:C3:45:65:C7:F2:E3:BE:2E:08:78:C1:81:34:B4:8D:D2
X509v3 Authority Key Identifier:
keyid:EF:1F:01:88:1B:73:C8:E9:B5:D9:22:39:22:9A:6E:51:2E:CA:4E:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/gLCX5sNFZcfy474uCHjBgTS0jdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/7x8BiBtzyOm12SI5IppuUS7KTnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.182.0/24
IPv6:
2a00:8c40:238::/48
Signature Algorithm: sha256WithRSAEncryption
73:6f:0e:e1:ae:83:18:e2:34:a7:70:28:6d:cc:3e:09:6f:dd:
7e:44:eb:6a:ec:e0:87:9f:39:8c:67:e0:28:4f:f0:84:dc:36:
da:5c:8b:53:08:a6:fd:b2:05:d5:9e:bc:23:8b:07:f6:fb:46:
0a:17:e8:c3:df:fb:fb:23:d5:06:17:54:bb:ce:0e:25:9d:2f:
bc:6b:41:0b:36:9b:3e:7b:17:38:2e:81:cf:cb:cc:a1:24:29:
83:22:21:46:3d:5e:90:c2:2b:e2:f7:4c:32:2b:79:16:db:c0:
42:09:68:7a:ce:23:03:cd:10:9c:cc:c7:78:6d:b6:c6:60:9a:
59:b1:69:a8:e9:01:0d:5e:56:7c:1f:7d:32:05:3a:3c:b3:9e:
15:ea:18:7e:a7:37:91:3a:aa:d9:ff:cd:9e:4e:23:7d:f6:86:
f8:0e:d1:3d:09:09:63:17:4c:e9:e2:74:54:b8:4b:fe:84:28:
bc:c6:51:77:3b:bb:22:6c:70:0d:d9:c6:20:b9:09:bd:89:dc:
86:d2:58:58:ff:43:b4:cf:2e:5f:9c:4d:10:99:96:01:05:45:
63:d1:d9:6e:03:74:1f:fe:77:39:67:56:b5:5c:b4:e4:cc:9f:
58:e6:ae:d4:5e:ad:8d:7f:ff:44:73:5e:bb:e4:f7:d5:bb:72:
ba:35:3d:11
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVwFQtLjG2D5xaZQE02nGeuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmMWYwMTg4MWI3M2M4ZTliNWQ5MjIzOTIyOWE2ZTUxMmVj
YTRlN2MwHhcNMjMwMTAyMDEyNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGIwOTdlNmMzNDU2NWM3ZjJlM2JlMmUwODc4YzE4MTM0YjQ4ZGQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozq5CB03qvwpqd6ygLJnasNQpuiF
ige9zQpBL3tTA2VUOW4jqYS4Ho1ItcXRNn4Be8BPFEY20xWLdv8+4LdgLsb5dT0s
H/gvxFLbGK3v5iu34S80vh/r3/QrqXw9CjzwFRQnSFGbcK6m5BTeZD5MyJe2OSCb
hbMf7qOoZ/ttWgxiipx/ozllmst6kkVA/5zDUph/jxG4drIyg2RRxLfvTGoIIzo4
sw2w7f+bsFKRtTC1KDbNmS2TvaABqMTam1Ili0faSjon0ccknz0ZVFTQdl3LDqGD
Mx46p0xS1qNNJazb9zPGLMUa32Fo+MMmLJ8c0pH7rfPRb+5YY8Wz5WOFIwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFICwl+bDRWXH8uO+Lgh4wYE0tI3SMB8GA1UdIwQY
MBaAFO8fAYgbc8jptdkiOSKablEuyk58MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3g4QmlCdHp5T20xMlNJNUlwcHVVUzdLVG53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS82NzUzOTktODFiZS00ZmVjLTlmODYt
NTUxMzFjYzFlZmVhLzEvZ0xDWDVzTkZaY2Z5NDc0dUNIakJnVFMwamRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS82NzUzOTktODFiZS00ZmVjLTlmODYtNTUxMzFjYzFlZmVh
LzEvN3g4QmlCdHp5T20xMlNJNUlwcHVVUzdLVG53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuZu2MA8E
AgACMAkDBwAqAIxAAjgwDQYJKoZIhvcNAQELBQADggEBAHNvDuGugxjiNKdwKG3M
Pglv3X5E62rs4IefOYxn4ChP8ITcNtpci1MIpv2yBdWevCOLB/b7RgoX6MPf+/sj
1QYXVLvODiWdL7xrQQs2mz57Fzgugc/LzKEkKYMiIUY9XpDCK+L3TDIreRbbwEIJ
aHrOIwPNEJzMx3httsZgmlmxaajpAQ1eVnwffTIFOjyznhXqGH6nN5E6qtn/zZ5O
I332hvgO0T0JCWMXTOnidFS4S/6EKLzGUXc7uyJscA3ZxiC5Cb2J3IbSWFj/Q7TP
Ll+cTRCZlgEFRWPR2W4DdB/+dzlnVrVctOTMn1jmrtRerY1//0RzXrvk99W7cro1
PRE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:45 2024 by rpki-client on console-fra.rpki-client.org