Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/gqIhn9mEaoQKZ9EVJRQdKfies7U.roa
File: gqIhn9mEaoQKZ9EVJRQdKfies7U.roa (raw, json)
Hash identifier: qYSDCL88QyFNPN57qXgjeYjLYnyuVVUK3J1vRTBmHOo=
Subject key identifier: 82:A2:21:9F:D9:84:6A:84:0A:67:D1:15:25:14:1D:29:F8:9E:B3:B5
Certificate issuer: /CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51
Certificate serial: 018B61B5F31D10C1011B15274736650DE6CF
Authority key identifier: D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/gqIhn9mEaoQKZ9EVJRQdKfies7U.roa
Signing time: Tue 24 Oct 2023 12:43:16 +0000
ROA not before: Tue 24 Oct 2023 12:43:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 217.147.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:61:b5:f3:1d:10:c1:01:1b:15:27:47:36:65:0d:e6:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51
Validity
Not Before: Oct 24 12:43:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82a2219fd9846a840a67d11525141d29f89eb3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9d:d9:47:df:98:69:5e:87:ff:b4:a2:13:84:
da:b3:5c:1b:c3:1f:0f:27:3d:53:3a:77:47:fa:48:
10:56:32:13:cd:e1:28:1e:82:ee:6e:fb:9c:a7:d2:
df:c9:e1:1a:77:7f:45:8f:79:2a:29:68:62:e6:0d:
71:ca:bd:68:11:0e:67:29:26:eb:c1:cb:65:2e:0f:
f9:a3:a3:90:d4:75:f1:e1:b1:ec:43:a7:e4:71:56:
e1:7d:66:91:83:a3:90:55:57:92:5e:a1:bb:1a:b2:
d3:0b:cc:b9:4c:eb:0a:7a:c2:63:be:1b:63:7d:0d:
bf:28:ca:61:d7:96:12:be:1c:46:2b:56:39:73:7e:
99:45:4a:1a:48:42:b9:78:6e:8b:04:cf:25:64:40:
9b:15:dc:0b:23:a1:4e:89:1a:0f:d5:0d:b2:4f:0b:
dd:5b:5d:78:58:b4:ae:f5:58:31:9f:47:8c:14:0b:
19:ea:90:bc:c0:ff:e0:66:1a:8f:87:c2:4c:53:f2:
fa:92:c8:61:f8:b9:1f:12:8c:2f:4b:73:77:85:6f:
c8:5d:79:57:ba:3b:83:db:19:40:90:67:41:37:a1:
ae:d3:ad:06:ae:8c:12:10:f2:e2:72:48:69:6c:7c:
5b:1b:2d:d5:30:bf:49:d5:cc:01:57:05:85:e7:de:
ae:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A2:21:9F:D9:84:6A:84:0A:67:D1:15:25:14:1D:29:F8:9E:B3:B5
X509v3 Authority Key Identifier:
keyid:D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/gqIhn9mEaoQKZ9EVJRQdKfies7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.180.0/24
Signature Algorithm: sha256WithRSAEncryption
89:ea:83:e1:27:c5:ce:b2:34:6d:cd:74:2b:b4:d7:20:1a:71:
7d:6d:d2:d6:15:11:aa:92:2b:d3:85:47:78:8d:4f:f8:45:33:
19:13:c7:22:a5:c3:76:1c:19:5a:05:11:6e:97:70:dc:47:2c:
65:17:42:e0:05:8a:91:a1:e3:ca:2e:ed:23:94:dc:71:ce:ea:
a4:15:3f:6a:82:40:07:56:65:0c:5c:ed:6e:df:dd:ec:da:8e:
f1:02:91:82:30:ce:66:95:50:92:42:ac:32:3d:b1:ec:71:48:
a6:3c:1b:08:a1:e1:7b:82:8c:29:ed:d1:9f:71:da:0a:08:ed:
17:0c:f4:23:a1:76:af:9d:e5:19:0e:6a:da:0c:77:c6:a8:79:
f1:3f:49:f7:bd:25:63:9e:26:80:63:e9:53:a4:10:f5:8f:1e:
00:43:3b:9f:38:e0:7a:ab:4f:a8:cf:fb:14:03:c5:a3:d1:b5:
ff:ef:29:db:25:e5:80:67:45:c9:16:cc:4c:32:1a:03:d7:51:
a3:f3:d5:cc:02:3c:17:85:e4:fa:b5:6e:dc:e3:e7:0d:91:4b:
c0:37:61:12:60:3b:97:38:45:1a:15:53:ee:67:fa:4d:5d:ae:
4b:12:f9:71:43:f5:38:1b:0e:2c:0b:d9:0b:05:1b:10:af:62:
1c:ed:a2:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 24 14:45:13 2023 by rpki-client on console-fra.rpki-client.org