Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/GL2tttcKsFgC9ysti7FTUXmnlv8.roa
File: GL2tttcKsFgC9ysti7FTUXmnlv8.roa (raw, json)
Hash identifier: gOW4Jez6w+5Bk8Az/KL8QaoSSe7u4cKuWTp/M9jsTu8=
Subject key identifier: 18:BD:AD:B6:D7:0A:B0:58:02:F7:2B:2D:8B:B1:53:51:79:A7:96:FF
Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Certificate serial: 01857445AD680584D67CF1B6326943BE8F4A
Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/GL2tttcKsFgC9ysti7FTUXmnlv8.roa
Signing time: Mon 02 Jan 2023 20:56:41 +0000
ROA not before: Mon 02 Jan 2023 20:56:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59422
IP address blocks: 5.149.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 10:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:74:45:ad:68:05:84:d6:7c:f1:b6:32:69:43:be:8f:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Validity
Not Before: Jan 2 20:56:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18bdadb6d70ab05802f72b2d8bb1535179a796ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:da:e5:50:5a:7f:06:ac:ca:77:a5:f7:c2:4b:
35:b4:ac:28:ff:ae:fe:6a:9f:e2:6c:38:83:4f:eb:
29:88:06:b2:10:dc:ac:88:44:c7:25:3e:98:df:f4:
de:b9:fd:b2:57:97:9c:47:71:60:e3:00:73:f9:4c:
b5:55:1a:4d:4d:e6:17:be:97:e5:24:d0:1f:49:97:
59:2c:cf:69:31:8f:31:79:54:f1:c3:77:59:02:f0:
43:da:54:df:62:cb:16:90:fd:af:c5:ac:42:9d:8e:
78:0f:90:04:0f:94:bc:78:ed:07:ea:2f:2a:22:18:
da:a4:0b:70:03:3e:c1:7c:40:d3:43:ea:50:34:82:
d9:f2:c4:63:64:b1:3b:b5:7a:3c:e8:fe:d4:a0:6a:
1c:e6:cd:f3:58:8c:66:07:c9:56:81:9b:73:7b:b8:
27:46:c3:63:c0:f8:d6:35:92:7a:13:5f:ff:d3:3f:
b5:93:ab:31:67:90:31:2f:51:bd:56:f2:93:29:ff:
77:bf:ff:90:e6:26:46:cc:6a:e0:47:90:fd:f6:1d:
40:28:2d:97:df:8f:7f:0f:35:2f:56:0b:90:b1:d2:
4b:6f:03:e1:c9:2d:c0:49:b9:38:51:7f:f2:ed:f2:
df:44:5c:4c:a1:df:7b:3d:f8:e5:a7:21:d1:49:b4:
7b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BD:AD:B6:D7:0A:B0:58:02:F7:2B:2D:8B:B1:53:51:79:A7:96:FF
X509v3 Authority Key Identifier:
keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/GL2tttcKsFgC9ysti7FTUXmnlv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.107.0/24
Signature Algorithm: sha256WithRSAEncryption
28:67:01:9a:e9:28:48:71:6b:73:ec:9b:96:ba:b9:c2:cf:d4:
d1:1b:05:0e:87:73:8f:cc:aa:82:0a:a4:24:84:cd:5a:55:cc:
5f:06:2b:e8:2e:66:00:56:60:c1:c7:fd:4f:08:19:a0:98:36:
13:19:a0:78:1f:d7:9f:76:45:39:00:b7:2e:e9:18:ba:b8:2a:
d8:46:67:53:ce:72:8c:fa:58:27:9d:aa:e0:d7:86:98:71:a4:
1f:b7:7c:ae:35:0a:c6:07:64:7c:de:ae:3e:be:7b:9c:9c:6a:
b3:9f:f7:21:ee:2d:60:1b:41:34:25:f4:18:20:df:a8:d5:6f:
e2:50:46:bb:64:30:cc:0b:64:8b:83:cd:e2:f0:51:45:f3:1a:
f3:c8:a3:28:e3:a1:2c:15:1b:6a:52:c4:ac:5e:81:d2:85:be:
7c:04:12:1a:64:e0:66:8b:68:82:2a:1c:80:45:e5:d6:c1:25:
26:ab:3b:fd:82:f3:07:8e:d6:67:ae:40:41:d4:5a:a8:cd:af:
0d:ee:aa:b9:86:8f:b8:89:e5:e3:6c:be:55:c7:1e:98:fb:f2:
3c:c5:64:58:10:85:fe:22:da:00:b5:4a:34:21:9d:e4:bc:87:
1c:2f:1e:f6:04:e7:b9:61:b6:22:59:a6:b3:c0:6b:94:98:82:
9d:03:d1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:20 2024 by rpki-client on console-fra.rpki-client.org