Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/G1ZjLdDdYgUTPCFEW0GWRix13gY.roa
File: G1ZjLdDdYgUTPCFEW0GWRix13gY.roa (raw, json)
Hash identifier: OBn+SyhEoXq78aClex03EL8aNgFOPhsmIWvyY09R/L0=
Subject key identifier: 1B:56:63:2D:D0:DD:62:05:13:3C:21:44:5B:41:96:46:2C:75:DE:06
Certificate issuer: /CN=3188fae3ebbb3d74feeddcf507f83e67db8850a2
Certificate serial: 018570E76B0F9A6454500DDF96C500E5218E
Authority key identifier: 31:88:FA:E3:EB:BB:3D:74:FE:ED:DC:F5:07:F8:3E:67:DB:88:50:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYj64-u7PXT-7dz1B_g-Z9uIUKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/G1ZjLdDdYgUTPCFEW0GWRix13gY.roa
Signing time: Mon 02 Jan 2023 05:14:52 +0000
ROA not before: Mon 02 Jan 2023 05:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62313
IP address blocks: 185.141.200.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:6b:0f:9a:64:54:50:0d:df:96:c5:00:e5:21:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3188fae3ebbb3d74feeddcf507f83e67db8850a2
Validity
Not Before: Jan 2 05:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b56632dd0dd6205133c21445b4196462c75de06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:95:73:d3:b0:8d:61:5d:22:0e:98:3f:00:10:
0a:a5:0d:e9:c0:b1:76:21:6e:f5:c3:15:d9:db:38:
82:4f:89:d6:be:b0:ee:66:6d:d0:72:f7:b2:5a:01:
00:7f:51:13:bc:6c:cc:00:ff:be:84:d2:ef:58:79:
9e:bf:5f:62:71:a4:bf:b9:df:17:24:31:34:e9:e5:
19:0e:f6:2c:a4:6e:da:60:7c:b1:42:b7:34:1b:32:
f2:6e:37:6e:16:1f:01:70:74:56:16:9c:9e:c9:9a:
37:7c:81:bb:88:28:5d:11:5a:96:10:3d:91:5d:df:
2a:1c:35:0d:e5:89:39:2b:00:94:32:f3:fd:48:0c:
74:79:0f:39:06:36:32:88:3e:44:7c:b8:5f:b2:a2:
be:00:ea:d4:e5:27:51:bb:61:8c:5e:0a:67:02:1e:
8d:70:6c:b9:9b:3f:db:98:0a:a0:d3:8e:4b:11:2d:
d1:1b:06:32:c5:07:e9:3b:f9:37:44:ca:1b:02:8b:
cf:f6:b8:a3:b7:78:ca:96:21:b8:b9:3e:5b:7e:45:
e9:10:25:ce:e2:b0:01:83:24:a4:6e:cc:c2:b2:1c:
14:87:e1:da:e0:dd:93:5e:63:64:6a:b6:7b:7f:4b:
6b:d8:53:bf:5f:ae:e5:92:2b:a1:de:53:f4:ae:07:
e0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:56:63:2D:D0:DD:62:05:13:3C:21:44:5B:41:96:46:2C:75:DE:06
X509v3 Authority Key Identifier:
keyid:31:88:FA:E3:EB:BB:3D:74:FE:ED:DC:F5:07:F8:3E:67:DB:88:50:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYj64-u7PXT-7dz1B_g-Z9uIUKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/G1ZjLdDdYgUTPCFEW0GWRix13gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/MYj64-u7PXT-7dz1B_g-Z9uIUKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.200.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:c1:c8:56:91:f0:23:9b:d9:89:6f:25:20:e1:ff:8d:4a:d7:
08:59:ed:c4:f5:63:39:c9:5c:67:94:aa:8f:9d:06:9a:f8:67:
75:25:dd:41:79:ba:fe:66:02:65:d1:82:d2:03:95:68:a5:9f:
67:16:f0:89:10:84:d4:31:22:97:66:b6:e1:75:f1:d0:12:aa:
01:25:c2:a3:97:e0:a1:1b:47:a0:68:ef:7d:f0:f7:6f:d4:03:
bf:e2:63:cd:46:fc:0a:64:21:3e:e7:fe:26:5c:5c:f3:bb:5b:
df:19:0d:ff:d4:c9:a4:bd:7a:c3:60:72:07:91:52:ab:b3:f1:
61:c4:c0:32:e0:af:59:58:77:e8:da:30:b3:47:57:83:54:1a:
83:c2:8f:50:c7:ae:59:c0:3c:f3:1a:d1:fb:23:c8:65:98:02:
ce:a3:4b:8d:60:4f:e6:2b:21:60:a8:d9:7c:7d:8c:b3:b1:98:
95:94:e1:0b:72:bb:2e:bb:7d:6d:f1:04:ef:f3:60:f7:c8:09:
86:48:6a:d0:36:ac:9e:f9:64:e8:f3:11:b5:61:0d:be:88:97:
1f:25:e0:19:e2:64:0e:ea:7e:f6:25:0b:c6:64:0c:3e:b7:75:
94:c2:93:b4:d8:07:16:d2:d5:2b:b4:2e:0e:cc:af:66:eb:e2:
10:d8:e2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:46 2023 by rpki-client on console-ams.rpki-client.org