Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/f59f8e-f544-4fbe-95c3-cff00e4cd2be/1/gagyESEg9SL0bkPuQdCSbxlWo-Q.roa
File: gagyESEg9SL0bkPuQdCSbxlWo-Q.roa (raw, json)
Hash identifier: TWkVHkO6Om7bQCJ4ANHuQeblx5nIQAj4vXmmqV6B//Q=
Subject key identifier: 81:A8:32:11:21:20:F5:22:F4:6E:43:EE:41:D0:92:6F:19:56:A3:E4
Certificate issuer: /CN=b65e3b74fc934b092193aded7eca01da1ef186ad
Certificate serial: 018571279B0CD95C789018AF880770A5EDE8
Authority key identifier: B6:5E:3B:74:FC:93:4B:09:21:93:AD:ED:7E:CA:01:DA:1E:F1:86:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tl47dPyTSwkhk63tfsoB2h7xhq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/f59f8e-f544-4fbe-95c3-cff00e4cd2be/1/gagyESEg9SL0bkPuQdCSbxlWo-Q.roa
Signing time: Mon 02 Jan 2023 06:24:59 +0000
ROA not before: Mon 02 Jan 2023 06:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60491
IP address blocks: 185.30.92.0/22 maxlen: 22
2a00:afe0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:9b:0c:d9:5c:78:90:18:af:88:07:70:a5:ed:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b65e3b74fc934b092193aded7eca01da1ef186ad
Validity
Not Before: Jan 2 06:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81a832112120f522f46e43ee41d0926f1956a3e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:8a:22:7f:ce:21:4f:d2:35:b8:20:f3:c5:
03:0e:e9:a0:fc:06:a6:6e:7e:ee:a4:63:64:ba:3d:
22:a4:9e:f0:f4:4c:4e:29:8e:29:59:d7:8e:f0:0b:
9e:8d:9a:c9:76:66:97:32:21:b8:01:11:1c:ef:69:
60:18:da:fb:7d:1b:87:f1:b3:18:45:9f:a9:50:68:
e4:13:35:cb:1b:79:18:75:c4:47:31:2b:6c:c0:94:
1d:89:a4:ae:20:8a:cc:eb:90:23:24:8c:6f:f4:57:
09:9c:d5:14:f9:04:b1:08:6a:de:73:05:0a:f2:98:
f1:1c:85:f1:2d:f0:13:7f:11:02:14:c8:32:ca:c2:
c9:87:c4:82:ef:aa:95:4a:eb:74:b8:65:1b:d5:90:
62:5a:49:ef:83:d6:ab:c6:89:79:82:cb:d5:6e:f9:
ad:86:71:f6:51:14:e9:cd:bb:2d:53:36:d0:97:e2:
35:0e:d1:d0:ff:bf:fb:40:d8:0d:7d:2e:b4:1c:e7:
fb:db:cb:4c:dc:b2:0b:b9:23:b4:0f:d9:90:64:68:
89:3b:13:ef:fd:74:e9:34:e4:77:28:d1:14:35:ba:
82:24:d3:46:75:d1:f6:cf:66:fe:cd:09:c6:68:84:
5d:85:66:dd:b2:06:d7:bf:fe:ec:4a:4d:cb:4a:18:
e9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A8:32:11:21:20:F5:22:F4:6E:43:EE:41:D0:92:6F:19:56:A3:E4
X509v3 Authority Key Identifier:
keyid:B6:5E:3B:74:FC:93:4B:09:21:93:AD:ED:7E:CA:01:DA:1E:F1:86:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tl47dPyTSwkhk63tfsoB2h7xhq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/f59f8e-f544-4fbe-95c3-cff00e4cd2be/1/gagyESEg9SL0bkPuQdCSbxlWo-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/f59f8e-f544-4fbe-95c3-cff00e4cd2be/1/tl47dPyTSwkhk63tfsoB2h7xhq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.92.0/22
IPv6:
2a00:afe0::/32
Signature Algorithm: sha256WithRSAEncryption
a7:82:d0:c3:0e:19:75:95:dc:9c:ac:56:94:8e:72:0d:72:9b:
10:ad:fe:5b:f6:0b:0b:30:06:a0:d9:9e:ef:2f:f0:b7:5f:70:
5f:f5:7c:75:60:8d:3a:9c:17:1a:63:7c:49:f6:55:7b:68:c0:
23:bb:15:9d:4c:50:79:e3:ef:f1:db:ce:7b:c6:6c:c4:58:46:
53:27:8b:62:60:de:26:80:43:54:79:5d:5f:be:0f:9f:ba:36:
86:42:18:61:cd:c4:fc:d1:55:01:c8:23:25:ea:e5:42:56:bd:
4a:67:da:53:c8:46:6d:6c:93:f4:29:7f:ed:b3:4e:8c:3d:8a:
50:39:45:3b:2a:a2:81:05:b5:0b:40:86:20:58:b9:81:2d:d3:
ba:63:d4:2a:1e:28:63:4b:8e:99:28:83:19:e8:7f:89:39:2b:
1e:40:85:24:d4:5d:92:59:56:62:b6:90:28:60:48:50:41:87:
90:b4:63:05:88:19:f1:b2:f6:71:f1:64:67:64:32:02:39:d8:
0e:65:82:a0:e1:41:c4:ab:70:e3:51:ac:50:4e:e3:76:c3:d7:
1d:42:c4:6b:55:23:a8:c8:f9:93:25:14:c2:b9:cf:f6:a7:65:
27:93:44:bd:9a:cf:9b:a7:e6:ba:6b:27:6f:96:27:b8:be:ae:
c5:bf:44:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:49 2024 by rpki-client on console-fra.rpki-client.org