Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/gVUt-AaxXWuetJaRzcomaFnAKxc.roa
File: gVUt-AaxXWuetJaRzcomaFnAKxc.roa (raw, json)
Hash identifier: I/aOjenuFAVHlm4jkF0tbE94m42T0MyBMTocVh+YftA=
Subject key identifier: 81:55:2D:F8:06:B1:5D:6B:9E:B4:96:91:CD:CA:26:68:59:C0:2B:17
Certificate issuer: /CN=5ff7352d47db9785f49118092de8704a67f6520d
Certificate serial: 01856C782719CADB7630B244AF77FF935698
Authority key identifier: 5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/gVUt-AaxXWuetJaRzcomaFnAKxc.roa
Signing time: Sun 01 Jan 2023 08:34:51 +0000
ROA not before: Sun 01 Jan 2023 08:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204751
IP address blocks: 185.241.188.0/22 maxlen: 22
2a0c:b080::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:27:19:ca:db:76:30:b2:44:af:77:ff:93:56:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff7352d47db9785f49118092de8704a67f6520d
Validity
Not Before: Jan 1 08:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81552df806b15d6b9eb49691cdca266859c02b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:34:cb:cf:78:5d:e6:e8:be:95:89:e0:0c:67:
0f:a6:e5:07:99:85:f8:85:79:24:dc:f5:d2:48:25:
92:03:5b:d4:03:5f:50:ee:e6:3b:9a:2b:ed:48:21:
ab:1b:e3:6e:41:04:29:9f:22:e7:77:71:83:32:12:
f2:f4:3c:f9:66:1a:54:33:bf:b5:e4:40:32:93:11:
02:cb:07:19:fb:96:e0:f9:6c:a0:d0:54:19:fe:d0:
29:a4:22:75:46:76:1e:a0:1d:e9:11:ed:82:c3:f5:
9d:44:f4:54:48:44:09:85:c5:5f:ef:9e:b0:4e:1c:
0b:4f:f0:c4:c9:de:11:b9:46:31:ba:6c:56:18:a7:
72:a0:ab:c1:1d:b4:36:0e:09:f3:a3:65:f2:3d:ed:
7a:62:9c:29:08:99:65:29:c2:3c:16:19:b9:92:7b:
1e:e3:58:bf:3e:97:75:e6:de:01:b7:9e:ef:b5:9f:
19:36:29:3d:ba:90:4b:1b:3e:9f:fd:21:1a:89:68:
20:46:a6:a0:7e:1f:cd:54:60:f8:92:29:35:56:5a:
3a:6e:b5:a7:8d:e2:ba:41:7b:0b:9d:70:8e:f2:c2:
2a:e9:e2:c8:5b:1c:6f:24:5f:7b:4b:1f:a2:ed:4d:
8f:6c:b0:36:89:05:97:16:ff:c6:50:95:4a:ad:d6:
c3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:55:2D:F8:06:B1:5D:6B:9E:B4:96:91:CD:CA:26:68:59:C0:2B:17
X509v3 Authority Key Identifier:
keyid:5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/gVUt-AaxXWuetJaRzcomaFnAKxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/X_c1LUfbl4X0kRgJLehwSmf2Ug0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.188.0/22
IPv6:
2a0c:b080::/29
Signature Algorithm: sha256WithRSAEncryption
23:e3:9b:77:32:a9:94:2d:cb:58:6e:2e:84:df:bf:5a:3d:4d:
1f:9c:49:c6:f2:4d:54:bc:e9:4e:7a:6f:5a:7b:d5:b1:78:27:
e0:f2:b0:63:ab:1d:53:c6:cd:15:4a:50:79:66:81:3f:ba:21:
5a:8b:ca:43:84:26:80:85:64:58:92:4e:45:50:01:0a:da:09:
34:d9:26:7c:97:4d:ef:32:dd:0e:5e:bd:06:f9:7c:d6:e4:2e:
39:83:2e:1b:20:2d:0e:16:be:eb:d4:89:c7:59:d2:68:26:e7:
b3:3a:a4:77:04:7a:0c:54:05:76:cf:c7:d6:be:a7:5e:81:91:
f4:e9:03:6a:c5:55:0e:d0:b9:ca:8f:ea:cf:5a:ab:99:21:cd:
d5:1d:ec:0c:91:75:da:c6:29:35:ae:36:95:d6:cb:57:ea:85:
4b:2a:23:c4:3f:30:d9:c6:25:bb:d8:a8:87:5d:01:17:c6:ba:
a2:d2:28:83:79:46:7d:da:fd:db:80:36:b5:01:eb:2a:0f:3b:
fa:49:4f:2d:d6:57:8c:ea:5c:7b:1b:00:5d:00:cb:da:9b:f3:
0b:ae:d9:7d:2d:be:f1:a7:e6:a0:ca:58:69:e7:2e:ff:80:4a:
bc:3f:04:69:fd:48:9d:56:e3:57:ac:e4:fd:40:f7:76:ee:c9:
40:c8:54:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:33 2024 by rpki-client on console-ams.rpki-client.org