Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/gUgmGGCob7dwPG3YWpQQljKnHRI.roa
File: gUgmGGCob7dwPG3YWpQQljKnHRI.roa (raw, json)
Hash identifier: TEuCHVk1it2OUPqUn/gZt1i3B/CvsSS/2vUTz+gYYDw=
Subject key identifier: 81:48:26:18:60:A8:6F:B7:70:3C:6D:D8:5A:94:10:96:32:A7:1D:12
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 018570707F91B25B451EE876268F7C52EEBD
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/gUgmGGCob7dwPG3YWpQQljKnHRI.roa
Signing time: Mon 02 Jan 2023 03:04:58 +0000
ROA not before: Mon 02 Jan 2023 03:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4805
IP address blocks: 57.70.0.0/16 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:7f:91:b2:5b:45:1e:e8:76:26:8f:7c:52:ee:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 2 03:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8148261860a86fb7703c6dd85a94109632a71d12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:28:aa:89:71:37:1f:b6:0c:e7:e2:ba:2f:75:
91:df:95:ec:6d:40:03:37:72:1c:47:13:e3:b4:75:
ef:5d:00:2f:13:02:a9:03:bc:e7:d3:d7:3b:07:83:
a5:ca:3f:69:b4:b6:14:76:c6:16:25:ef:ff:c6:93:
42:b6:3c:70:89:04:63:60:b8:77:94:36:35:24:27:
01:e8:40:c3:00:e8:41:1b:30:94:dd:94:99:eb:a8:
96:45:63:e3:cf:9c:e9:16:97:47:56:57:51:09:2e:
7c:6e:b9:e7:ee:a4:15:4b:3f:bd:f3:63:05:c8:32:
c7:ef:6d:ee:7a:54:bc:55:22:ab:6a:01:29:9f:5b:
7c:10:85:e0:f1:d2:13:ee:b8:01:3f:c1:f6:29:6d:
ac:2d:65:1e:66:dc:fc:db:34:57:62:53:f4:19:03:
57:da:78:bf:e0:a8:d0:fc:f9:80:63:db:a3:d4:7e:
40:f5:b0:49:5c:d0:f1:1d:92:e4:39:70:99:02:3d:
84:8e:60:22:ee:7c:ce:27:1f:f2:15:31:00:06:3e:
a3:eb:3f:dc:98:09:60:03:26:47:68:d7:68:6a:13:
76:8d:c8:31:23:d1:5b:8f:93:e9:7f:fd:89:03:20:
4b:37:2c:7c:63:68:0a:8c:01:14:e4:34:d7:25:81:
40:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:48:26:18:60:A8:6F:B7:70:3C:6D:D8:5A:94:10:96:32:A7:1D:12
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/gUgmGGCob7dwPG3YWpQQljKnHRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3e:33:41:93:cf:f0:9b:6e:56:6f:dd:60:20:dc:69:d6:29:30:
ce:78:8d:4c:ef:54:0f:ef:6e:b3:3c:8d:e9:f9:8b:da:f9:9f:
8a:93:ac:41:77:f1:9b:81:7a:1b:13:8d:e9:72:87:ea:af:c0:
42:9a:26:d4:a8:46:be:f6:54:78:e3:5a:72:1c:c0:25:3c:5f:
1b:30:5f:e7:41:c0:04:f2:72:aa:57:d0:c7:44:b3:d8:f0:62:
87:08:21:25:9a:e3:b9:8e:06:88:7d:c9:7c:49:cb:67:ee:ae:
60:b5:d4:1b:d9:12:c1:ae:35:04:12:02:88:e5:87:0d:63:4a:
ee:4c:9b:61:8c:73:ef:e5:e2:79:b4:48:34:76:e9:a2:5a:68:
f5:86:9a:1d:a0:4a:0b:70:f1:bf:fc:8e:f2:99:10:f2:fe:54:
5e:46:f6:29:3e:2c:ca:96:e4:b6:9f:ae:12:ba:31:90:03:44:
76:d0:bf:ac:0a:cc:a6:dc:53:62:22:e6:ca:b5:d0:10:34:16:
75:e7:8c:5b:7c:46:e3:e8:56:20:83:9e:89:a6:9c:2a:73:44:
5a:2e:b6:01:ad:0a:52:d6:bf:e6:0a:8f:af:1d:c7:0c:51:b9:
bf:dc:23:36:0b:81:3d:de:3d:23:22:ed:45:f0:f1:b5:56:00:
9e:d2:7a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org