Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb872a-1207-471c-b633-c34bdcb14d75/1/gmBJIOAy6nOh5KLD9kIXwYeFdhg.roa
File: gmBJIOAy6nOh5KLD9kIXwYeFdhg.roa (raw, json)
Hash identifier: zVjXUvp+xWYr8sbH4ymlIJUv3gSKZiqUrxfmk/N2q0Y=
Subject key identifier: 82:60:49:20:E0:32:EA:73:A1:E4:A2:C3:F6:42:17:C1:87:85:76:18
Certificate issuer: /CN=e45060149aff5c4f908feea9b4123fcfddf0513c
Certificate serial: 01856C9CCAE5CBE9F753093F03255102FFE5
Authority key identifier: E4:50:60:14:9A:FF:5C:4F:90:8F:EE:A9:B4:12:3F:CF:DD:F0:51:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5FBgFJr_XE-Qj-6ptBI_z93wUTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb872a-1207-471c-b633-c34bdcb14d75/1/gmBJIOAy6nOh5KLD9kIXwYeFdhg.roa
Signing time: Sun 01 Jan 2023 09:14:52 +0000
ROA not before: Sun 01 Jan 2023 09:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 37.16.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:ca:e5:cb:e9:f7:53:09:3f:03:25:51:02:ff:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e45060149aff5c4f908feea9b4123fcfddf0513c
Validity
Not Before: Jan 1 09:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82604920e032ea73a1e4a2c3f64217c187857618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:70:e0:92:a4:3b:8d:c5:3c:ba:9e:e7:93:43:
3b:50:ec:6d:f8:a1:c5:7f:f9:4b:fa:28:72:08:9d:
47:97:0d:72:a8:e6:5b:57:f7:4d:64:fe:17:52:45:
0a:c1:57:9b:bd:ed:33:88:90:80:f4:40:c2:1d:18:
80:79:ea:d8:56:ba:7b:40:7c:be:98:3e:2c:f8:8c:
64:99:a6:3f:9c:08:f1:a6:0d:96:9c:40:92:14:a8:
27:40:29:ac:43:e7:16:48:f0:5e:02:e8:08:05:fc:
91:9a:29:08:68:44:b8:c9:d1:7e:e1:16:7f:b6:63:
ce:b9:bf:6d:c3:f2:3f:47:0c:0f:d2:84:e9:06:be:
91:50:e4:ee:09:79:a4:3e:d8:c4:6e:08:6f:04:20:
18:07:f9:24:c8:7b:92:a4:77:8b:ba:3f:ac:33:3f:
01:45:24:94:7a:63:c7:7f:20:8b:b4:fe:f4:a3:7a:
54:9e:d1:aa:c8:77:4b:c6:d6:ae:92:fc:21:8b:e7:
3c:ed:84:7e:04:58:a3:72:67:07:3f:de:8e:80:dd:
4a:52:09:62:b3:0c:4b:bb:77:f0:16:44:ad:37:b3:
db:ee:bc:dc:4c:96:73:d8:c7:0a:8b:4b:97:4d:5d:
e0:df:4a:e8:b6:bf:31:64:01:59:b3:8d:7a:3c:1a:
85:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:60:49:20:E0:32:EA:73:A1:E4:A2:C3:F6:42:17:C1:87:85:76:18
X509v3 Authority Key Identifier:
keyid:E4:50:60:14:9A:FF:5C:4F:90:8F:EE:A9:B4:12:3F:CF:DD:F0:51:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5FBgFJr_XE-Qj-6ptBI_z93wUTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb872a-1207-471c-b633-c34bdcb14d75/1/gmBJIOAy6nOh5KLD9kIXwYeFdhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb872a-1207-471c-b633-c34bdcb14d75/1/5FBgFJr_XE-Qj-6ptBI_z93wUTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.91.0/24
Signature Algorithm: sha256WithRSAEncryption
63:53:5b:ca:35:0c:71:41:c9:04:24:d5:46:78:7d:1c:49:47:
39:f6:3a:9f:51:5b:73:e1:eb:64:10:75:da:4f:c6:e6:47:07:
70:5d:3f:d4:e0:dc:b9:8a:94:53:c3:41:02:4c:56:e4:94:37:
a8:10:ae:0f:85:e5:a0:1b:e3:f1:5f:8e:6b:b3:02:b8:ec:88:
8b:b1:76:6a:0e:3f:2f:6c:69:34:40:6a:b2:d6:db:0d:db:14:
aa:4e:e8:b3:10:9f:cd:56:b9:4a:34:b0:41:a0:7a:a9:c2:e4:
0a:d3:22:4a:44:97:3a:20:20:50:27:37:97:d2:83:3e:9d:a2:
0c:dd:14:74:2f:1f:3d:62:0f:1b:4a:df:1b:2f:7a:92:97:09:
18:4e:01:af:23:df:a0:78:7e:35:f8:e8:e2:39:3c:40:dd:43:
63:64:15:96:c2:78:7d:a1:ee:88:9d:ef:7a:d7:db:3e:d5:da:
a6:7d:e3:9a:09:e0:27:24:be:ae:12:c1:fc:9e:75:32:58:88:
53:60:da:11:3f:9a:a0:da:22:3e:6b:75:2a:f0:38:55:82:d2:
ae:ad:7b:44:91:07:40:4d:81:ed:96:be:9b:0a:69:5c:6b:6a:
ed:5c:45:6d:87:c1:2c:24:f6:c7:d0:55:e7:2d:da:a4:63:ce:
7d:29:61:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:13 2024 by rpki-client on console-ams.rpki-client.org