Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/gQ6o4jGp31C5ffvT_MTsTRs93bI.roa
File: gQ6o4jGp31C5ffvT_MTsTRs93bI.roa (raw, json)
Hash identifier: WdB2AUASCK+N0OnYfwzkN9dljgGnS2Wme6OsPt69Z58=
Subject key identifier: 81:0E:A8:E2:31:A9:DF:50:B9:7D:FB:D3:FC:C4:EC:4D:1B:3D:DD:B2
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9EB753B36FE6DA9CC342743391B43
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/gQ6o4jGp31C5ffvT_MTsTRs93bI.roa
Signing time: Mon 02 Jan 2023 09:04:47 +0000
ROA not before: Mon 02 Jan 2023 09:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 582
IP address blocks: 2.179.16.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:eb:75:3b:36:fe:6d:a9:cc:34:27:43:39:1b:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=810ea8e231a9df50b97dfbd3fcc4ec4d1b3dddb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a9:78:e6:29:92:df:78:5e:2d:74:85:6f:52:
b7:69:75:58:84:26:01:3b:09:f7:f1:b9:89:75:7d:
b4:09:cb:43:cc:25:51:a4:1b:cd:2c:2c:ae:d7:47:
3d:43:03:fd:6e:6c:c6:ac:e6:59:c4:6e:69:29:be:
5d:7c:c3:2c:70:8e:49:1d:a2:d5:87:45:01:13:c7:
55:98:04:f5:4d:25:3d:2c:9e:fc:2f:a7:69:05:ad:
9a:eb:91:d0:5f:2b:63:88:3d:32:95:46:86:e7:c0:
29:00:f0:38:ca:6c:3c:ad:64:4a:a3:a3:12:e2:de:
16:45:1f:0e:ed:7b:dd:09:f2:4f:15:75:e9:1d:46:
18:38:94:d5:fc:24:3d:fa:4c:6d:5e:1f:19:20:ca:
fe:d8:e3:05:f8:d4:4c:c2:12:d1:93:60:d7:48:6a:
a3:c2:de:07:54:0f:fd:93:e4:a6:e6:05:90:3b:1b:
92:c0:06:3d:bb:fd:b3:21:b1:65:27:c2:04:83:5c:
8a:2f:2f:d9:03:f1:d1:20:8e:01:aa:ba:d7:ae:6d:
48:ab:41:dd:56:07:06:cb:ce:8c:73:88:86:1e:75:
51:5e:12:80:d4:d0:4f:ca:a0:a6:29:47:5e:7c:8a:
40:4e:5f:37:40:c6:11:df:4e:6e:ae:64:c2:0c:27:
c5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0E:A8:E2:31:A9:DF:50:B9:7D:FB:D3:FC:C4:EC:4D:1B:3D:DD:B2
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/gQ6o4jGp31C5ffvT_MTsTRs93bI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.179.16.0/22
Signature Algorithm: sha256WithRSAEncryption
44:da:42:e9:15:b8:94:51:0d:00:b1:80:a5:49:bd:d5:7f:a9:
d5:85:c2:5c:94:72:8a:9c:52:ca:a2:45:54:6b:50:30:86:0f:
7f:21:b4:88:b9:9a:04:28:e9:8e:57:09:c1:bd:55:c7:b9:c7:
45:93:8b:47:64:1d:31:5a:4a:34:93:32:fa:04:44:b0:f7:7a:
61:e3:0a:8c:64:85:5c:21:19:03:9a:a5:37:76:69:f1:00:49:
43:2b:bd:8a:1f:71:c3:7b:eb:c9:74:be:c6:f8:5b:15:3a:59:
4f:fa:32:ae:c9:29:15:81:27:00:77:c1:8a:0a:8f:5b:cc:55:
16:80:6f:b8:a5:51:e4:3d:cc:ac:84:88:8a:f0:75:eb:18:7a:
ad:ea:66:9b:46:2a:e0:62:67:87:6d:3d:2f:47:46:41:5e:1b:
59:cb:1a:26:c0:16:dd:42:10:09:ad:51:03:12:53:6c:01:2a:
85:84:a4:2c:62:ea:6a:d2:25:c0:95:1a:42:98:57:42:ca:b9:
0e:5c:52:68:06:7f:f7:98:0b:2c:78:36:32:07:15:31:36:20:
c0:84:bd:5e:e5:65:9f:f3:0a:80:6b:bc:18:74:5f:e5:33:ed:
87:a8:9b:18:30:fa:1d:b5:04:35:47:90:f3:2e:fc:69:1d:2a:
c9:aa:10:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:27 2024 by rpki-client on console-fra.rpki-client.org