Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/f84198-2bdb-447d-8722-d8869311499a/1/gMqWqx3nD60dI9aMvayK6SfUamc.roa
File: gMqWqx3nD60dI9aMvayK6SfUamc.roa (raw, json)
Hash identifier: Gdl3FNj0foaQLyklkIwU3s3n9+F5Jxkqsn4Q2QIV9nc=
Subject key identifier: 80:CA:96:AB:1D:E7:0F:AD:1D:23:D6:8C:BD:AC:8A:E9:27:D4:6A:67
Certificate issuer: /CN=6e489fe1c7e20a0b0c63842c45c16c57631785d3
Certificate serial: 018572C3819E56823BF5377606064144D68F
Authority key identifier: 6E:48:9F:E1:C7:E2:0A:0B:0C:63:84:2C:45:C1:6C:57:63:17:85:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkif4cfiCgsMY4QsRcFsV2MXhdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/f84198-2bdb-447d-8722-d8869311499a/1/gMqWqx3nD60dI9aMvayK6SfUamc.roa
Signing time: Mon 02 Jan 2023 13:54:53 +0000
ROA not before: Mon 02 Jan 2023 13:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34958
IP address blocks: 193.43.215.0/24 maxlen: 24
193.189.147.0/24 maxlen: 24
2001:67c:25e8::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:81:9e:56:82:3b:f5:37:76:06:06:41:44:d6:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e489fe1c7e20a0b0c63842c45c16c57631785d3
Validity
Not Before: Jan 2 13:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80ca96ab1de70fad1d23d68cbdac8ae927d46a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8c:83:d0:eb:10:6d:c1:56:03:55:08:f9:32:
b0:a1:94:5a:d8:cb:27:c6:e0:2e:85:8b:8c:4e:32:
ab:8a:34:79:33:c3:01:e0:b7:98:39:dc:55:c3:ff:
ee:db:aa:06:20:2a:b7:85:0b:02:18:10:a4:b1:e3:
d8:08:45:7e:52:0b:e2:9c:a8:f3:cd:af:31:35:41:
2d:86:3e:31:1b:68:d8:85:df:9c:7a:9e:fc:60:5c:
aa:69:88:ec:9b:31:83:bc:d7:6d:d7:c6:a5:3d:03:
82:fb:23:d9:a7:50:40:a9:c2:91:7e:25:08:3b:44:
df:e5:c6:25:26:d5:ef:c6:50:28:27:03:6b:43:f8:
b0:10:4f:46:6e:74:80:21:6d:23:56:99:98:dc:b8:
92:d2:49:fd:dc:4b:4d:cd:20:5a:85:48:3a:71:8c:
33:1c:c4:ec:bf:3d:20:95:00:b2:b3:4d:72:10:80:
ed:10:b5:50:0f:b3:c5:20:2e:44:66:e6:08:10:e9:
98:c1:42:80:63:2d:9f:df:88:ac:0f:bd:7e:81:03:
d8:5a:88:a7:0b:2f:40:62:6d:2d:32:ab:15:2c:af:
e7:27:50:4a:13:79:1f:5f:82:6e:12:b8:b0:bc:66:
0a:bd:f6:cd:d4:17:ba:db:36:e8:1d:a7:37:23:9d:
2b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CA:96:AB:1D:E7:0F:AD:1D:23:D6:8C:BD:AC:8A:E9:27:D4:6A:67
X509v3 Authority Key Identifier:
keyid:6E:48:9F:E1:C7:E2:0A:0B:0C:63:84:2C:45:C1:6C:57:63:17:85:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkif4cfiCgsMY4QsRcFsV2MXhdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f84198-2bdb-447d-8722-d8869311499a/1/gMqWqx3nD60dI9aMvayK6SfUamc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f84198-2bdb-447d-8722-d8869311499a/1/bkif4cfiCgsMY4QsRcFsV2MXhdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.215.0/24
193.189.147.0/24
IPv6:
2001:67c:25e8::/48
Signature Algorithm: sha256WithRSAEncryption
23:38:dc:bd:48:19:ab:2c:59:84:e6:13:fb:ab:0b:20:a8:0d:
d4:2f:08:dd:96:09:e4:1e:4e:ce:a5:2d:f9:b9:fe:dc:fa:18:
9e:3a:d4:96:84:11:1c:75:2d:35:86:ee:17:8c:3f:14:7a:8d:
b4:93:1e:f2:0e:3a:a0:68:5d:7e:5f:15:9b:dd:5d:ed:4e:ca:
64:f2:48:71:63:62:c8:75:11:4f:50:fc:9e:ef:ec:1a:1f:a2:
e7:a6:78:27:54:62:cc:78:46:c2:c3:f8:1f:68:12:57:24:d3:
61:59:48:a6:f1:61:71:de:e4:be:07:20:85:ef:28:86:32:ed:
5c:84:86:b8:89:c0:52:ef:62:52:ad:b9:a2:0e:b5:d2:a6:24:
4f:9f:a9:02:64:ec:02:bf:d0:d8:fd:43:e5:1d:ab:bc:2f:c4:
25:ce:4f:6a:e5:bb:88:da:e0:30:06:45:e9:25:bf:95:e6:29:
3b:9c:55:cb:90:d2:de:40:b9:e8:b0:53:4d:bc:e2:44:25:70:
bd:c3:3a:c4:b4:de:22:36:cf:43:56:09:21:27:8d:bd:46:d1:
71:d4:71:68:73:f1:9b:2f:17:f1:e0:c5:25:3e:42:5f:b3:be:
a2:b7:8e:c5:f9:95:19:2f:11:ed:d2:a9:42:c6:58:32:ce:38:
35:bb:30:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:13 2024 by rpki-client on console-ams.rpki-client.org