Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/27086d-37f3-4130-8729-bcedbbd6e574/1/Gk_Qo2rDQ41GlpJGq7dnOmi2Prg.roa
File: Gk_Qo2rDQ41GlpJGq7dnOmi2Prg.roa (raw, json)
Hash identifier: E+lUSG2MxOuthrxI4CtPD//h93+PgDdLNHIaBASkObE=
Subject key identifier: 1A:4F:D0:A3:6A:C3:43:8D:46:96:92:46:AB:B7:67:3A:68:B6:3E:B8
Certificate issuer: /CN=8c7af79da5f2b68986c8356460a43fa42d37f3a6
Certificate serial: 0185703040EA9B52559F9D6FF87A5F657A9D
Authority key identifier: 8C:7A:F7:9D:A5:F2:B6:89:86:C8:35:64:60:A4:3F:A4:2D:37:F3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHr3naXytomGyDVkYKQ_pC0386Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/27086d-37f3-4130-8729-bcedbbd6e574/1/Gk_Qo2rDQ41GlpJGq7dnOmi2Prg.roa
Signing time: Mon 02 Jan 2023 01:54:48 +0000
ROA not before: Mon 02 Jan 2023 01:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24933
IP address blocks: 185.44.32.0/22 maxlen: 22
2a04:9880::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:40:ea:9b:52:55:9f:9d:6f:f8:7a:5f:65:7a:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7af79da5f2b68986c8356460a43fa42d37f3a6
Validity
Not Before: Jan 2 01:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a4fd0a36ac3438d46969246abb7673a68b63eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8c:a5:77:a6:05:74:92:9b:14:64:94:4f:ad:
c3:5a:3b:58:fb:09:cb:c9:14:f3:b4:c0:01:1f:08:
06:10:23:d3:a9:0c:87:3c:04:2d:7e:62:2b:b4:b4:
11:ed:04:9a:d6:88:71:93:c0:18:53:03:70:9d:3e:
2e:a0:35:06:61:bc:6f:90:71:96:ae:7f:f5:62:a6:
21:b0:cd:bf:18:48:20:1a:a0:45:8a:db:77:0e:3c:
64:42:31:4a:ff:d1:64:35:3e:38:a4:b3:7e:ac:87:
1c:79:fb:a3:2b:5a:14:20:de:a6:43:fa:d2:30:dc:
34:bd:c2:19:ce:80:3b:71:14:68:c4:c7:d4:3a:f1:
c4:a4:cc:4f:22:08:ea:c2:3d:e1:e3:7f:ec:4f:6c:
a9:57:7a:de:a5:d3:a5:27:d0:28:df:49:1b:5c:07:
17:f8:6f:ca:a1:62:98:8b:ab:cb:fa:ba:2d:85:c2:
71:1e:33:be:e4:e0:4c:ee:6a:ab:4f:e7:7f:f3:63:
10:3d:97:d0:f2:51:e7:35:7f:e9:02:25:a9:37:b0:
21:ff:53:16:d1:c9:ee:b5:44:f0:cb:5a:f5:93:89:
4d:60:b3:ae:c0:e9:4c:19:99:7c:18:2a:50:76:24:
20:a4:96:6a:88:e0:f1:75:02:0a:4e:22:64:b9:8e:
a9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:4F:D0:A3:6A:C3:43:8D:46:96:92:46:AB:B7:67:3A:68:B6:3E:B8
X509v3 Authority Key Identifier:
keyid:8C:7A:F7:9D:A5:F2:B6:89:86:C8:35:64:60:A4:3F:A4:2D:37:F3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHr3naXytomGyDVkYKQ_pC0386Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27086d-37f3-4130-8729-bcedbbd6e574/1/Gk_Qo2rDQ41GlpJGq7dnOmi2Prg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27086d-37f3-4130-8729-bcedbbd6e574/1/jHr3naXytomGyDVkYKQ_pC0386Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.32.0/22
IPv6:
2a04:9880::/29
Signature Algorithm: sha256WithRSAEncryption
97:10:23:f0:59:cc:6b:00:b1:7f:b0:a7:82:8a:52:d9:0b:54:
4f:fd:0d:ef:40:d6:1d:45:d6:19:0c:d1:f6:34:83:a2:5f:f1:
10:f6:cf:e2:d6:ea:f3:27:ee:0a:b4:1a:63:ec:c9:5a:18:f8:
50:b3:c7:70:3a:db:1d:e7:de:7d:ba:93:dd:5a:90:ca:01:e8:
23:3e:11:a3:1e:22:e1:d8:d1:17:b9:f7:ba:24:4d:8d:66:d8:
17:af:12:cc:79:48:48:10:ea:44:f7:47:01:18:c1:47:52:f1:
6c:b0:e9:c7:a2:92:a5:4e:79:36:62:3e:81:0e:23:5d:eb:c6:
fe:9b:a1:57:b0:92:64:4c:c0:55:ab:f7:e9:45:96:ae:73:75:
88:af:04:3f:a8:f2:95:a7:f2:ce:dc:93:db:54:58:62:ca:4e:
f9:8f:9b:33:05:b6:3c:93:3b:a6:d6:4d:ee:eb:bc:33:97:b3:
64:91:b4:de:e7:2b:3e:2b:28:67:7f:b9:6f:73:0a:21:a5:4f:
3b:5f:b8:bc:0b:1f:32:16:e1:6d:78:76:90:bf:3c:13:ad:f2:
5f:d6:db:12:f2:58:55:aa:18:05:95:9b:5b:f1:0e:1c:63:29:
11:a5:cc:13:6f:f9:da:83:58:ea:c6:5c:67:d1:ef:72:6f:56:
72:db:90:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:38 2024 by rpki-client on console-fra.rpki-client.org