Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7gi6BRR3bIFc3KiysSw8aostgBM.roa
File: 7gi6BRR3bIFc3KiysSw8aostgBM.roa (raw, json)
Hash identifier: 6jMl4Hx7riJzFsYY/r27llw82fJL7gIQJbSO+gSWIg0=
Subject key identifier: EE:08:BA:05:14:77:6C:81:5C:DC:A8:B2:B1:2C:3C:6A:8B:2D:80:13
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9F6E4C94CCE32C453EA28A61FA514
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7gi6BRR3bIFc3KiysSw8aostgBM.roa
Signing time: Mon 02 Jan 2023 09:04:50 +0000
ROA not before: Mon 02 Jan 2023 09:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62196
IP address blocks: 2.189.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f6:e4:c9:4c:ce:32:c4:53:ea:28:a6:1f:a5:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee08ba0514776c815cdca8b2b12c3c6a8b2d8013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:06:56:37:ff:a2:97:5d:0e:a8:59:84:9a:10:
90:77:ca:d3:f4:2b:f4:e4:0b:a3:e0:19:3d:1f:09:
8c:b5:ab:5c:bf:2e:2a:b8:02:12:65:31:60:72:72:
91:cd:a2:22:b9:3b:05:ab:fb:d1:34:76:fe:3b:f8:
d1:00:4c:22:6f:aa:55:dc:8d:39:93:2e:a4:ad:53:
e2:c5:2d:6e:c0:eb:8e:3d:5b:f7:eb:3a:e9:39:7e:
44:9f:b2:60:bb:e3:52:2b:5a:1c:69:b9:f5:e3:8d:
17:54:41:b8:09:00:f5:2d:c2:2c:16:b9:1b:0c:78:
cc:c2:13:71:8d:87:6b:c4:bc:a4:e1:ac:62:c9:a1:
7c:2a:db:6c:ca:b5:41:13:2f:81:fb:a8:4d:87:7b:
34:de:52:c0:48:b3:2f:57:fd:2c:45:42:e4:b5:bf:
c7:71:56:88:dd:85:62:d1:21:85:91:5f:f0:17:2c:
b6:de:f9:d1:75:8d:03:4d:e9:72:63:04:93:2c:60:
28:87:3c:87:72:b9:16:94:1a:33:a6:65:75:71:9c:
02:a2:36:53:0f:7c:4e:96:ec:ff:11:2f:65:51:5f:
c2:61:69:bd:4e:89:80:6d:db:49:8b:6c:eb:70:73:
27:fa:2c:7b:98:d9:aa:38:87:b1:90:f1:7a:c1:d1:
ea:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:08:BA:05:14:77:6C:81:5C:DC:A8:B2:B1:2C:3C:6A:8B:2D:80:13
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7gi6BRR3bIFc3KiysSw8aostgBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.189.176.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:a1:c8:08:14:81:4f:6a:4d:0c:fe:a7:42:d0:59:dd:c5:29:
f8:1e:3e:b0:e7:a4:11:73:71:5e:08:a4:c9:7b:7f:c4:89:57:
c7:b2:b1:4c:37:05:93:ab:28:f9:98:a8:cd:37:03:85:ea:a8:
72:b2:90:e9:d5:33:37:8b:62:ac:be:26:40:2e:5a:0c:0f:59:
3c:a8:11:17:65:0f:02:a6:b1:c2:f4:a3:62:8c:9d:f4:8c:7a:
b4:54:5d:3e:bb:6f:42:e6:b1:fc:54:ca:8d:63:1f:37:19:f0:
0a:a1:ee:a5:02:fc:fd:c3:fa:ef:db:99:22:57:21:db:05:d8:
87:ba:03:d8:8c:36:bc:8d:b0:10:85:c0:68:32:50:b1:35:2e:
02:86:e5:c9:fc:b1:b7:87:c3:96:6a:c1:9b:f7:e8:1e:68:a6:
4f:78:d4:fd:72:df:66:37:f8:7d:31:b7:0b:f7:5f:3d:44:2f:
c1:b8:5b:3a:fa:02:c0:68:90:63:e4:97:24:5a:49:f6:99:48:
b4:f2:03:95:70:97:bd:6b:29:f2:cf:8a:b5:7d:0b:39:cd:ef:
85:c0:c5:0a:e3:b2:05:ef:70:c5:64:71:5e:71:57:ca:93:5a:
78:82:cc:ea:ec:14:7d:fb:ab:0d:46:23:55:92:08:36:fd:42:
e2:a7:91:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org