Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/gsCwPqr2W7sFqCiMN4aXN5osDxk.roa
File: gsCwPqr2W7sFqCiMN4aXN5osDxk.roa (raw, json)
Hash identifier: EriropE76INcHe42mgLKCMzL7bO/xcDCQV+Szucg5YI=
Subject key identifier: 82:C0:B0:3E:AA:F6:5B:BB:05:A8:28:8C:37:86:97:37:9A:2C:0F:19
Certificate issuer: /CN=97da420008cfb9193499278ef558bd42d61c7f75
Certificate serial: 0185704291F6837224A126403706BD9219E7
Authority key identifier: 97:DA:42:00:08:CF:B9:19:34:99:27:8E:F5:58:BD:42:D6:1C:7F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/gsCwPqr2W7sFqCiMN4aXN5osDxk.roa
Signing time: Mon 02 Jan 2023 02:14:48 +0000
ROA not before: Mon 02 Jan 2023 02:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30900
IP address blocks: 185.108.128.0/22 maxlen: 22
2a01:6280::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:91:f6:83:72:24:a1:26:40:37:06:bd:92:19:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97da420008cfb9193499278ef558bd42d61c7f75
Validity
Not Before: Jan 2 02:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82c0b03eaaf65bbb05a8288c378697379a2c0f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1f:3d:62:7a:d8:65:86:6c:e7:07:c8:82:dc:
64:73:cf:33:03:d0:d2:c4:a1:11:ff:be:a4:20:d8:
a0:ed:99:22:67:f6:0d:19:c6:6f:9b:cf:5e:33:78:
9c:cc:dc:07:60:94:ca:c2:5a:e4:20:0a:d2:88:c2:
1c:4d:41:b5:ea:fc:23:01:fa:da:a8:2b:37:0d:e0:
02:fd:2f:34:26:ca:0c:2b:3b:d6:1d:26:4e:23:cd:
10:d0:e7:3b:ee:c6:2f:06:ae:48:fb:24:f5:18:5a:
0e:61:a5:10:79:2e:9c:1f:77:8f:99:e0:4f:e8:b7:
d6:67:32:a3:b1:e0:8f:87:a4:ab:e5:87:49:f6:49:
1d:40:18:26:8d:43:eb:83:98:96:2d:0d:bd:59:06:
5a:22:77:94:29:60:1e:26:05:dd:28:6b:77:4d:23:
9f:3a:e4:13:bc:cd:ec:63:e3:30:0f:30:f7:42:e4:
f1:d1:a0:88:07:71:e6:c4:74:b4:be:6a:96:3c:74:
24:ab:0d:72:60:ee:84:1e:f6:0d:1f:44:5e:ab:e1:
89:f5:40:64:8a:ee:fa:0c:bf:c6:b0:6a:bd:61:93:
b2:38:28:c2:4b:db:2f:b5:9c:83:b2:ae:01:a9:19:
b9:ff:ad:82:5b:6a:6e:b9:ac:6b:53:db:e3:23:b4:
b6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C0:B0:3E:AA:F6:5B:BB:05:A8:28:8C:37:86:97:37:9A:2C:0F:19
X509v3 Authority Key Identifier:
keyid:97:DA:42:00:08:CF:B9:19:34:99:27:8E:F5:58:BD:42:D6:1C:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/gsCwPqr2W7sFqCiMN4aXN5osDxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/139044-9ebc-4559-ba10-a38e1eca4fd4/1/l9pCAAjPuRk0mSeO9Vi9QtYcf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.128.0/22
IPv6:
2a01:6280::/32
Signature Algorithm: sha256WithRSAEncryption
36:55:48:46:13:dd:08:3c:37:a5:58:e9:84:ff:de:88:93:db:
b7:97:14:7b:cc:60:33:21:f9:78:09:90:1d:c1:a0:ba:78:cd:
0e:3f:37:5a:b2:a9:69:d4:02:43:22:91:7e:18:b7:ed:ea:63:
69:cf:af:5b:40:5c:af:f8:94:90:66:56:eb:03:e2:94:68:d5:
42:d8:4a:cc:4e:36:07:aa:a0:ab:d3:25:8a:bf:76:13:00:9b:
5a:ee:b9:43:0a:67:55:ba:43:05:db:45:75:b8:a6:b0:c7:5a:
38:ba:e4:eb:ad:ec:c2:39:61:88:98:8d:84:dd:b2:cd:95:c0:
ed:ea:8e:0c:1b:08:d9:9f:6b:b2:45:4f:9f:b2:64:73:a9:3c:
a6:83:85:d2:10:d9:dc:2c:95:5d:75:ed:b6:b6:be:8f:2e:2a:
04:d7:75:f2:18:5a:07:70:37:49:a2:91:93:4d:19:de:0c:cf:
14:a8:ba:fe:2d:f0:58:97:8e:b6:22:53:9a:9b:2d:c7:22:bb:
64:c1:94:1b:f3:cf:16:54:6e:8a:fd:7c:ba:c2:9a:82:af:72:
01:5b:a0:e8:ca:55:f1:3e:71:06:a1:4a:d3:f8:90:f5:90:a1:
13:65:7b:4e:ec:17:9a:ac:95:46:60:5e:7a:4d:f7:d1:4a:d3:
41:fb:ab:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:27 2024 by rpki-client on console-ams.rpki-client.org