Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/190cc0-2637-400b-ac93-42e7e15c82f2/1/gbWAQUNlay1TT2mjgIr7gTaGGsw.roa
File: gbWAQUNlay1TT2mjgIr7gTaGGsw.roa (raw, json)
Hash identifier: rWgyR31lP/UaQ8Hc2o1XFejsSr7LRqLKAE22ujuXeFM=
Subject key identifier: 81:B5:80:41:43:65:6B:2D:53:4F:69:A3:80:8A:FB:81:36:86:1A:CC
Certificate issuer: /CN=57b6c9ef13d4acd12abe6d9bb5b3592edf820f29
Certificate serial: 01856FF01617A5B6B8011A8BA1B070152519
Authority key identifier: 57:B6:C9:EF:13:D4:AC:D1:2A:BE:6D:9B:B5:B3:59:2E:DF:82:0F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7bJ7xPUrNEqvm2btbNZLt-CDyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/190cc0-2637-400b-ac93-42e7e15c82f2/1/gbWAQUNlay1TT2mjgIr7gTaGGsw.roa
Signing time: Mon 02 Jan 2023 00:44:43 +0000
ROA not before: Mon 02 Jan 2023 00:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31463
IP address blocks: 91.220.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:16:17:a5:b6:b8:01:1a:8b:a1:b0:70:15:25:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b6c9ef13d4acd12abe6d9bb5b3592edf820f29
Validity
Not Before: Jan 2 00:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81b5804143656b2d534f69a3808afb8136861acc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a6:6e:96:ce:c9:03:92:4c:31:8f:98:aa:6f:
49:c5:76:33:9c:31:c7:ff:8a:80:a0:10:64:d5:2e:
27:f4:c3:db:c0:1d:04:10:cc:d2:d1:1f:a8:2f:c9:
d9:e5:7a:6f:44:d8:25:f0:ca:5f:39:20:6f:05:71:
e5:24:52:17:d5:ba:77:3e:d5:25:a4:71:42:2e:a4:
f2:e5:18:51:71:35:b9:e2:a2:90:92:fa:78:c4:55:
8a:1c:3c:e9:ae:ca:3e:d2:b8:08:4d:0d:27:8e:d1:
56:6b:0e:c6:54:1c:8c:34:ed:8a:9c:10:63:ec:b8:
19:1b:50:25:80:b7:78:d4:42:0d:d3:ca:f6:46:87:
b4:0c:f5:d9:e3:56:7a:19:02:42:d5:47:8d:07:1b:
16:0a:fb:f5:d7:10:a8:2a:84:f7:43:42:2b:b1:b9:
e1:56:0f:6c:00:60:0d:7c:92:41:f3:8c:62:ae:d7:
22:a0:9e:e2:6b:84:56:ea:84:aa:a6:68:e8:d6:7f:
7a:1a:41:c2:f5:18:9f:1e:a2:4b:4a:ab:9a:b6:67:
7e:00:0f:7d:52:69:b3:72:1e:18:5a:c7:c4:3c:d9:
20:e7:29:c0:f3:88:27:65:7e:4b:d2:a1:c0:9c:6b:
a4:53:ef:8c:3a:4f:99:0f:c0:a6:a5:c9:8f:3a:bb:
62:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B5:80:41:43:65:6B:2D:53:4F:69:A3:80:8A:FB:81:36:86:1A:CC
X509v3 Authority Key Identifier:
keyid:57:B6:C9:EF:13:D4:AC:D1:2A:BE:6D:9B:B5:B3:59:2E:DF:82:0F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7bJ7xPUrNEqvm2btbNZLt-CDyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/190cc0-2637-400b-ac93-42e7e15c82f2/1/gbWAQUNlay1TT2mjgIr7gTaGGsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/190cc0-2637-400b-ac93-42e7e15c82f2/1/V7bJ7xPUrNEqvm2btbNZLt-CDyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.24.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:4f:ed:b7:3f:db:95:41:96:dd:71:c2:83:a8:67:cc:a3:f2:
77:c1:4d:fa:fa:18:1d:0d:b9:f3:12:47:7e:7a:2e:c1:7c:e2:
9a:e0:4e:bc:cd:bf:44:ca:8d:fd:0b:44:1d:7a:73:fe:37:d2:
ed:24:b4:5d:25:34:09:f6:31:ad:4e:c5:a0:75:ca:11:12:67:
43:58:af:ac:f3:e8:cf:09:14:f3:d7:5a:e3:2e:a7:f3:8d:9a:
d3:0e:8a:df:70:90:2e:38:76:34:a9:ed:9d:31:ce:b2:18:b8:
f6:bb:3b:57:ad:0f:f3:6a:61:46:94:46:83:55:dd:80:5e:f8:
55:5b:a9:32:32:cf:10:a4:f5:03:53:cd:a2:ab:9a:27:d9:2b:
9e:4b:01:de:31:2f:a6:7b:25:da:fe:48:23:5c:79:bb:dd:95:
bb:46:22:57:0d:96:59:7f:ca:07:77:26:b0:27:b6:84:49:fa:
cf:db:11:95:b8:9e:b1:4d:6e:e4:45:3b:1e:06:ca:4d:42:cb:
8a:de:d4:0b:56:a2:b7:be:23:71:97:37:4d:e2:c0:8b:b6:1a:
74:a6:42:5b:b4:a2:cb:38:22:7f:1b:08:b8:82:3a:ad:b8:ca:
f4:f5:3f:64:c8:cd:3a:e0:38:cc:c8:9c:b0:eb:cd:1b:49:ac:
9e:da:91:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:00 2024 by rpki-client on console-fra.rpki-client.org