Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/gBg_gdtikRPg4J0YCZL3WdxzqDQ.roa
File: gBg_gdtikRPg4J0YCZL3WdxzqDQ.roa (raw, json)
Hash identifier: E440o2l6XkfI0sq4OgxJIQIQUs7cKPCI17T4gBM7Qbs=
Subject key identifier: 80:18:3F:81:DB:62:91:13:E0:E0:9D:18:09:92:F7:59:DC:73:A8:34
Certificate issuer: /CN=274cc4109b34d144cbeb4e20a6bd3c07591821b5
Certificate serial: 01856E6FC93FDF25089A80519D74EDC694C9
Authority key identifier: 27:4C:C4:10:9B:34:D1:44:CB:EB:4E:20:A6:BD:3C:07:59:18:21:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0zEEJs00UTL604gpr08B1kYIbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/gBg_gdtikRPg4J0YCZL3WdxzqDQ.roa
Signing time: Sun 01 Jan 2023 17:44:57 +0000
ROA not before: Sun 01 Jan 2023 17:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50474
IP address blocks: 185.246.44.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:c9:3f:df:25:08:9a:80:51:9d:74:ed:c6:94:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=274cc4109b34d144cbeb4e20a6bd3c07591821b5
Validity
Not Before: Jan 1 17:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80183f81db629113e0e09d180992f759dc73a834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e3:e3:34:9e:3b:db:f5:c8:fe:ca:ae:1a:2e:
d5:5b:75:ce:36:2b:7c:61:55:7c:ec:74:8d:17:d0:
45:c8:a0:24:1b:ae:8e:04:6f:5d:6d:6f:a8:bb:60:
ec:79:7d:07:4d:30:9a:2c:19:9d:56:29:95:3a:4c:
77:8b:6f:13:77:e6:40:25:56:3e:bd:13:08:43:c6:
9a:a3:8a:6c:93:96:40:33:a9:1b:f7:5d:e4:63:20:
33:0b:11:87:ae:79:d5:f1:b5:96:d2:14:f1:3a:95:
95:c8:b6:60:88:2e:00:2d:1c:0a:ca:59:f9:d6:2c:
f9:65:45:5c:23:c0:b8:07:70:96:38:23:00:56:01:
c9:54:af:be:85:69:84:1d:39:63:dc:ce:d5:a1:6c:
70:a2:0f:72:46:5b:3d:5e:58:66:4d:66:22:95:00:
4a:a7:7f:d3:d4:42:60:af:32:c3:be:fe:d8:48:57:
8a:07:4a:f1:9f:51:58:7d:48:a3:16:23:b5:f5:e8:
94:c5:fe:28:e3:d6:6b:5a:3a:3e:65:a8:7b:01:df:
e0:b9:2b:19:d0:6d:0c:58:01:31:fe:50:c5:e5:ef:
c0:00:72:36:d6:6b:f4:61:0f:33:d5:23:6f:af:bc:
8d:38:23:f7:fe:36:48:59:59:ab:5f:e0:75:39:50:
5a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:18:3F:81:DB:62:91:13:E0:E0:9D:18:09:92:F7:59:DC:73:A8:34
X509v3 Authority Key Identifier:
keyid:27:4C:C4:10:9B:34:D1:44:CB:EB:4E:20:A6:BD:3C:07:59:18:21:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0zEEJs00UTL604gpr08B1kYIbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/gBg_gdtikRPg4J0YCZL3WdxzqDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.44.0/22
Signature Algorithm: sha256WithRSAEncryption
68:d1:f1:53:c7:2a:28:b2:31:79:dd:15:f9:bb:e5:0f:4d:8d:
99:78:b4:3f:f5:c5:4e:4c:27:21:7b:08:35:f9:7a:6e:67:1b:
a1:05:cc:59:4f:bb:55:bf:8a:50:f8:87:67:b5:4d:4c:9b:0f:
b0:a5:ea:83:c7:be:95:3a:b2:f2:74:fa:22:0a:18:d1:a6:89:
db:72:e0:cb:43:16:8a:95:4c:c5:6c:df:0f:ed:b0:33:e6:a9:
ec:03:05:e1:73:bb:12:eb:16:8d:22:be:a3:56:97:7a:65:4c:
4b:89:42:96:6d:54:5f:f9:dc:27:4d:44:98:ca:4b:77:ff:e9:
cd:17:2d:e1:79:b7:1c:32:9e:96:6d:77:8d:24:2c:7b:3e:bb:
33:03:94:1b:82:62:2e:84:50:bd:7b:86:bf:1f:59:3c:65:00:
27:77:a6:6a:e5:aa:7d:c7:bb:25:dd:33:f9:6e:a4:d9:93:8c:
f8:c5:2f:23:fe:27:01:45:3b:5f:b5:c2:ec:99:ff:0c:ae:c2:
cc:5f:f9:d9:9c:2a:fd:24:0a:a1:4b:b6:8a:94:c2:fd:ae:04:
5b:f1:6c:c3:5d:2b:39:ac:07:0c:74:14:14:d1:c2:42:19:65:
c4:a0:97:41:c4:15:cc:f1:90:bf:b0:5d:37:58:86:aa:a0:e0:
0f:e7:32:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:48 2024 by rpki-client on console-fra.rpki-client.org