Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/gdWfGFJeBbQwwcJJfRk6rtU1RgE.roa
File: gdWfGFJeBbQwwcJJfRk6rtU1RgE.roa (raw, json)
Hash identifier: XVdKwOI5YapPhSs2E0N5s+sWjN8ZEwKMozFLonrgknU=
Subject key identifier: 81:D5:9F:18:52:5E:05:B4:30:C1:C2:49:7D:19:3A:AE:D5:35:46:01
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 01882BF1E8D8CF0C8E48A9EDA7109C7E51B2
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/gdWfGFJeBbQwwcJJfRk6rtU1RgE.roa
Signing time: Wed 17 May 2023 23:00:54 +0000
ROA not before: Wed 17 May 2023 23:00:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 51.199.252.0/23 maxlen: 24
51.199.254.0/23 maxlen: 24
2a06:5901:8000::/40 maxlen: 48
2a06:5901:8100::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2b:f1:e8:d8:cf:0c:8e:48:a9:ed:a7:10:9c:7e:51:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: May 17 23:00:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81d59f18525e05b430c1c2497d193aaed5354601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:32:59:e6:e5:92:8c:34:ed:d5:98:24:96:9f:
30:75:34:d2:f6:ad:ec:8d:f2:2f:17:df:d4:b5:77:
03:27:a0:04:2c:c5:9d:f9:28:b2:24:7d:c0:1b:37:
9d:e1:04:47:3e:20:3d:cc:ae:71:25:ac:48:a1:3e:
6d:bd:7b:44:3d:b7:80:e0:28:e6:42:c5:63:d6:ff:
4f:12:43:07:58:e3:09:cf:6a:b0:9d:81:f4:ec:4e:
fa:ed:3e:58:b3:d4:d6:c9:5a:1b:d3:15:f3:f8:91:
06:24:70:df:48:7c:85:8a:57:59:cc:ea:5d:2f:2c:
21:5a:df:a6:25:94:2f:ee:5a:eb:bf:2f:ca:0c:b2:
4c:ea:5a:7f:3e:94:99:b1:d9:63:cb:d5:06:0b:79:
39:31:59:6f:90:66:57:ab:49:3c:14:34:d8:07:91:
4a:1d:77:7c:64:23:c2:08:ba:7a:92:e2:4c:a9:e2:
55:73:83:ab:25:a9:c0:84:38:0e:40:fe:dc:cb:f3:
89:d7:7e:6b:3b:09:f6:21:dc:2d:12:a8:f8:c3:d1:
ea:03:55:51:a1:d3:85:c5:b1:ce:31:c4:23:c3:c3:
43:4d:d8:cb:97:f5:52:44:0a:fb:9c:c8:f6:01:31:
4a:a1:03:53:6a:cc:19:7b:47:52:1e:0c:82:1c:60:
f5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D5:9F:18:52:5E:05:B4:30:C1:C2:49:7D:19:3A:AE:D5:35:46:01
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/gdWfGFJeBbQwwcJJfRk6rtU1RgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.199.252.0/22
IPv6:
2a06:5901:8000::/39
Signature Algorithm: sha256WithRSAEncryption
50:ed:8f:50:89:bb:f3:34:cf:04:d5:70:60:da:46:5b:23:5c:
f1:67:d9:e4:31:e7:5e:7c:43:45:57:81:c9:6e:74:4b:d2:f6:
08:cf:18:6c:52:2b:a6:e1:8a:c3:eb:d8:a5:68:89:6b:b1:e1:
ae:5a:83:34:16:ad:d7:1f:57:ff:35:31:64:d4:bf:fe:19:9f:
e4:d6:93:69:a1:9f:20:2d:01:96:ca:23:3a:36:d5:63:3a:4b:
74:ee:cb:31:f6:d4:8f:f9:da:58:17:39:f7:b4:07:be:47:ce:
7d:35:94:62:64:45:8c:eb:12:8b:e4:be:2b:a8:20:01:fe:91:
65:f8:2d:ea:ba:65:11:0c:04:41:29:5a:34:f9:c9:79:39:50:
d7:44:be:d3:ea:ab:9b:cd:46:6b:b7:ed:f6:56:64:3d:7b:66:
86:91:4d:75:9e:7f:cf:45:91:8e:e5:0b:c6:9f:95:45:4a:70:
be:21:67:eb:2a:bb:91:d9:27:d1:92:94:dd:4b:60:50:97:ab:
b3:22:49:33:96:1a:f8:c3:f8:43:18:95:61:57:f1:c4:d6:1f:
93:dd:6a:05:9b:0c:da:f4:b5:00:6b:0c:38:59:e6:32:58:a4:
5e:c2:0b:02:70:86:65:e8:f2:4b:78:d6:f8:b6:a1:e4:75:1c:
83:f1:7f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:06 2024 by rpki-client on console-ams.rpki-client.org