Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/gLB-e-bInGZYW_jlxbQ6MCJSnxw.roa
File: gLB-e-bInGZYW_jlxbQ6MCJSnxw.roa (raw, json)
Hash identifier: FUztg5eDAy+UEZ+WD3RQ0e2YiEm74z+R+RiGSGXRUEw=
Subject key identifier: 80:B0:7E:7B:E6:C8:9C:66:58:5B:F8:E5:C5:B4:3A:30:22:52:9F:1C
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B4F28AC72D98DD493BEC10728F06A
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/gLB-e-bInGZYW_jlxbQ6MCJSnxw.roa
Signing time: Sun 01 Jan 2023 18:15:01 +0000
ROA not before: Sun 01 Jan 2023 18:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205361
IP address blocks: 45.8.200.0/24 maxlen: 24
5.180.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Dec 2023 15:39:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:4f:28:ac:72:d9:8d:d4:93:be:c1:07:28:f0:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80b07e7be6c89c66585bf8e5c5b43a3022529f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:20:9c:86:6e:f4:21:d9:5c:d9:01:af:a5:62:
b5:e7:5d:58:6a:63:b2:a9:9b:81:fc:ff:60:a8:0e:
de:dc:fe:54:7d:39:88:2e:cc:b3:c4:55:28:47:b6:
39:41:74:e3:5f:c4:88:12:9c:4f:09:24:d3:81:49:
83:99:97:5c:25:a2:b8:b6:46:9a:f7:b7:6d:3a:e8:
1d:88:df:6a:06:cc:ac:ec:16:f4:05:56:e7:b9:73:
45:3c:97:75:34:a6:79:f3:eb:ed:50:8d:a3:4f:3e:
93:3b:7c:0e:cb:9a:ea:08:75:4c:b0:e4:85:48:9a:
0d:55:fb:e8:b8:f4:11:ad:7b:30:f0:b4:bb:a0:90:
9c:89:2c:5c:cf:f2:45:36:53:b6:bf:10:55:15:82:
d9:4b:eb:13:ef:9f:de:d7:8f:dc:af:07:f9:92:70:
17:0a:dd:5b:11:7d:29:85:8e:79:f8:c0:5f:9a:cf:
f2:19:fb:9c:b6:a5:0a:6b:9c:64:41:ab:50:90:b2:
c8:f8:65:43:0d:74:d3:24:69:99:7c:3a:da:1f:de:
00:84:c0:b6:59:3b:d0:36:8a:59:f8:a2:77:28:3e:
e1:e8:04:61:95:f0:45:4a:92:e3:f6:e1:3f:ef:c0:
8e:eb:b5:42:60:1b:d4:06:3a:b1:f3:1e:9f:1e:8a:
50:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B0:7E:7B:E6:C8:9C:66:58:5B:F8:E5:C5:B4:3A:30:22:52:9F:1C
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/gLB-e-bInGZYW_jlxbQ6MCJSnxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.48.0/24
45.8.200.0/24
Signature Algorithm: sha256WithRSAEncryption
53:9a:4c:be:8f:3d:4f:1b:1d:93:8f:a0:cd:db:3b:68:63:2a:
88:71:e3:ff:be:a9:46:7c:8d:41:ae:02:3f:01:1b:77:f6:c6:
24:25:88:21:79:fa:39:e0:6b:67:7b:10:c8:2d:6e:17:83:43:
0f:7a:b5:b2:ed:f8:4f:fc:70:5d:f2:53:40:96:0e:5c:0a:c5:
ee:b3:a4:8f:41:57:60:55:ce:7b:81:fa:6f:a1:57:0a:77:d3:
b7:20:ad:5f:da:84:25:df:13:03:10:36:90:dd:c2:89:bd:d5:
8c:e4:eb:69:fc:24:f4:97:a8:11:1a:8c:83:44:63:60:d7:8b:
a7:aa:b8:e4:c0:b3:f7:8c:e3:36:01:b9:5e:bb:53:43:ef:8c:
3c:65:d6:a5:a6:cc:52:de:7b:be:b4:0b:69:87:b9:75:4c:83:
74:86:db:b6:c6:3e:13:0c:3d:d4:0e:5e:58:9d:d8:6a:0d:19:
5b:ac:3d:8a:b2:ca:a7:37:f4:98:88:0d:ae:b9:4d:1f:27:1e:
44:8c:ba:b5:8d:ba:71:06:99:89:db:83:1b:f9:a1:93:82:4b:
d3:2e:d4:73:4d:3f:92:c0:95:1d:3a:35:0e:da:04:e7:e9:f0:
49:9a:12:c4:d8:08:99:b8:96:73:35:3b:b9:2e:4e:01:f7:be:
54:77:3b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org