Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/gGqMGcQF7GPWC26BCtnfZaUzBOY.roa
File: gGqMGcQF7GPWC26BCtnfZaUzBOY.roa (raw, json)
Hash identifier: RSYcYzS/2I32K9gt0Q0oIvomBaJ+s1CWVc0mmSesteQ=
Subject key identifier: 80:6A:8C:19:C4:05:EC:63:D6:0B:6E:81:0A:D9:DF:65:A5:33:04:E6
Certificate issuer: /CN=06c44b821ab5db542cc536c1f88b84baf0621654
Certificate serial: 0187608DDCA03D53339B64B4F0A450D57C21
Authority key identifier: 06:C4:4B:82:1A:B5:DB:54:2C:C5:36:C1:F8:8B:84:BA:F0:62:16:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsRLghq121QsxTbB-IuEuvBiFlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/gGqMGcQF7GPWC26BCtnfZaUzBOY.roa
Signing time: Sat 08 Apr 2023 11:08:42 +0000
ROA not before: Sat 08 Apr 2023 11:08:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203409
IP address blocks: 185.128.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:60:8d:dc:a0:3d:53:33:9b:64:b4:f0:a4:50:d5:7c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c44b821ab5db542cc536c1f88b84baf0621654
Validity
Not Before: Apr 8 11:08:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=806a8c19c405ec63d60b6e810ad9df65a53304e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3c:30:c6:6f:0d:f8:42:56:90:20:7e:49:64:
e4:a4:8c:01:4d:cc:4e:22:d6:b3:22:bb:50:15:85:
a1:02:7c:c9:ab:4e:5b:9f:be:e1:b6:c5:47:27:f8:
4c:22:06:32:24:09:5a:64:7f:32:88:28:90:b9:79:
c0:af:f3:42:d2:22:ac:af:a1:aa:ef:16:68:6f:7c:
a2:d0:41:ce:6c:7f:99:02:23:37:8d:61:37:b9:c9:
19:ff:98:da:90:93:7b:df:6d:81:50:e4:22:37:fb:
94:ce:e6:67:e6:af:f1:87:cf:67:05:9b:de:14:09:
0b:88:83:9e:8b:96:b4:ec:a6:ab:0d:ba:9e:03:7e:
40:45:d0:a0:3d:4f:ad:61:b1:31:13:15:83:13:cf:
d6:5e:53:fe:75:26:ab:df:33:cf:c0:72:14:f4:2a:
b6:4d:74:26:51:e0:2a:c4:98:b8:a7:b6:98:46:23:
f3:01:b2:4a:d7:1b:10:58:ac:2b:83:88:6d:89:33:
6e:00:29:d5:56:b0:a6:db:55:dd:9f:2d:db:82:f1:
d6:a6:f3:f3:b8:2f:89:56:02:67:15:d3:da:4e:da:
8d:ef:a0:ec:83:e0:a0:da:7e:8c:b2:48:a6:a2:63:
65:f7:61:db:d7:51:64:51:f4:1e:1e:2c:63:72:0b:
45:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:6A:8C:19:C4:05:EC:63:D6:0B:6E:81:0A:D9:DF:65:A5:33:04:E6
X509v3 Authority Key Identifier:
keyid:06:C4:4B:82:1A:B5:DB:54:2C:C5:36:C1:F8:8B:84:BA:F0:62:16:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsRLghq121QsxTbB-IuEuvBiFlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/gGqMGcQF7GPWC26BCtnfZaUzBOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/BsRLghq121QsxTbB-IuEuvBiFlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.37.0/24
Signature Algorithm: sha256WithRSAEncryption
23:f0:cc:50:79:26:5e:00:5d:4b:4e:62:ac:fe:f4:26:a0:35:
59:ad:9a:24:7c:d2:3c:aa:e6:20:70:37:ed:19:ba:b5:e9:e3:
c6:39:f8:e8:ff:a6:81:99:7c:d6:2e:1e:ee:20:75:cf:54:ab:
0c:55:72:ae:74:a5:0b:9d:67:91:e4:65:e4:0c:13:28:bf:92:
d0:03:cc:6b:0d:7f:28:5b:48:30:7e:02:aa:12:25:c0:6d:56:
b1:b9:5d:bc:53:7d:52:8d:16:1f:3a:71:c9:b7:3f:06:70:b2:
ef:cc:b9:68:cb:87:d7:93:f7:00:35:27:ae:e6:98:28:74:6e:
d0:55:e7:5f:19:4d:b1:18:85:20:64:ec:bd:21:e4:15:c4:bf:
0c:6c:65:09:3b:cc:23:04:30:fe:24:5e:35:95:95:0c:68:98:
05:16:f3:84:7d:d9:74:57:6a:d1:89:ef:88:f8:93:6d:8c:62:
86:68:78:63:b9:cb:05:81:da:47:18:e6:b2:18:a8:e6:5b:27:
1e:82:34:a8:51:b7:cb:da:50:68:a1:6b:3e:66:f3:e4:56:f6:
26:d4:94:9b:3c:99:e8:89:b8:14:17:aa:e4:a9:9d:fb:f3:e9:
30:83:2e:9f:b4:f7:21:cc:80:e1:a7:41:36:27:5b:19:61:b5:
92:79:b4:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:25 2024 by rpki-client on console-ams.rpki-client.org