Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5b78f4-771d-4756-a389-b42fa00f57de/1/gU2lCbhir9daQTwgPmYg8KIF8Zg.roa
File: gU2lCbhir9daQTwgPmYg8KIF8Zg.roa (raw, json)
Hash identifier: PWjktlSeiquJk2BSVX03W0mEYMyGWkmO1WwL8U0kPsg=
Subject key identifier: 81:4D:A5:09:B8:62:AF:D7:5A:41:3C:20:3E:66:20:F0:A2:05:F1:98
Certificate issuer: /CN=19d199c3d20f434d8c0a0a2ef5e52346665ca864
Certificate serial: 01856BCA29A0B389744540A4D561827192A7
Authority key identifier: 19:D1:99:C3:D2:0F:43:4D:8C:0A:0A:2E:F5:E5:23:46:66:5C:A8:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdGZw9IPQ02MCgou9eUjRmZcqGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5b78f4-771d-4756-a389-b42fa00f57de/1/gU2lCbhir9daQTwgPmYg8KIF8Zg.roa
Signing time: Sun 01 Jan 2023 05:24:48 +0000
ROA not before: Sun 01 Jan 2023 05:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63268
IP address blocks: 193.201.56.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:29:a0:b3:89:74:45:40:a4:d5:61:82:71:92:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d199c3d20f434d8c0a0a2ef5e52346665ca864
Validity
Not Before: Jan 1 05:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=814da509b862afd75a413c203e6620f0a205f198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:85:54:87:bb:29:9c:38:68:89:be:2f:c8:9f:
b3:b2:57:d7:80:78:a4:53:05:cf:7a:91:3e:92:ad:
8d:7a:af:41:0f:62:fe:fa:a2:ff:bd:2b:88:07:f2:
92:f3:d1:49:49:af:24:70:5b:e0:5d:7e:89:34:81:
be:75:ac:95:b9:5f:2c:b0:77:e6:60:7f:03:72:6c:
02:73:a1:d8:d5:7a:3d:5b:84:4a:a4:96:87:10:1c:
6d:60:d0:89:5f:2f:b3:98:a2:f1:b8:17:37:0e:87:
59:56:f2:1e:fe:5d:1a:3f:de:1d:70:3b:18:3d:4e:
35:a5:ce:e1:42:e0:2b:f1:74:e3:0d:b2:66:bc:07:
2e:88:8e:74:1a:b4:d8:a0:94:01:66:9a:96:d9:48:
33:ff:40:ba:33:49:83:78:8b:48:d3:3b:62:62:40:
89:78:3b:58:8d:fc:84:b3:96:2d:e7:3d:80:47:1b:
b1:17:29:08:3f:51:53:55:06:6b:a3:1b:c0:29:74:
52:59:69:b9:a0:f3:31:c4:55:62:9c:b3:dd:c0:7d:
59:65:ae:06:76:c6:65:c2:c5:a3:68:f3:f0:62:b1:
d7:d3:6a:41:17:85:2a:f2:2f:e6:ec:40:5d:81:71:
d9:29:53:16:9d:fb:cf:81:86:8b:05:0e:2c:0b:22:
3a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4D:A5:09:B8:62:AF:D7:5A:41:3C:20:3E:66:20:F0:A2:05:F1:98
X509v3 Authority Key Identifier:
keyid:19:D1:99:C3:D2:0F:43:4D:8C:0A:0A:2E:F5:E5:23:46:66:5C:A8:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdGZw9IPQ02MCgou9eUjRmZcqGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5b78f4-771d-4756-a389-b42fa00f57de/1/gU2lCbhir9daQTwgPmYg8KIF8Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5b78f4-771d-4756-a389-b42fa00f57de/1/GdGZw9IPQ02MCgou9eUjRmZcqGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.56.0/22
Signature Algorithm: sha256WithRSAEncryption
00:33:40:2c:72:6f:d9:73:12:c2:69:54:c2:73:ed:10:46:b4:
6a:df:66:6b:91:a2:e1:46:75:38:86:4a:56:40:55:37:ae:ee:
b1:03:a0:12:4c:a9:3b:05:87:c8:81:84:ba:21:db:93:52:9c:
6a:f5:8c:74:c1:e3:e0:0e:1f:fd:0d:59:e5:01:4f:34:fd:c7:
58:97:a0:f1:c7:f4:e5:62:e6:ef:88:2b:fe:05:57:fd:6c:5d:
41:64:93:d5:4f:df:c8:a4:9f:86:c3:f7:ad:da:07:01:3d:d4:
58:29:24:18:b9:1a:88:5b:bc:25:37:df:69:4e:5f:15:c1:4b:
9e:7a:1f:9d:5d:92:9c:f8:1d:4c:ed:64:bf:93:a2:3a:e3:a0:
bb:12:ed:53:4a:ec:2a:72:f9:bb:b6:fa:d9:f9:d3:c1:3d:e1:
92:ce:04:5d:6c:1a:fc:a7:f3:2a:4a:26:8e:b5:87:e4:ff:d1:
ba:ca:d4:e2:d9:6f:46:59:64:62:ec:4f:f3:67:3e:26:ac:e3:
ff:f6:25:41:da:9d:21:de:8c:6f:79:cf:83:4b:e6:75:48:3e:
cf:aa:97:66:bf:68:2e:47:bd:b7:95:15:04:77:a0:8b:35:09:
d7:ac:1a:76:bd:ae:20:d8:01:d3:a1:4d:82:38:0e:70:63:ba:
b0:e1:20:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:48 2024 by rpki-client on console-ams.rpki-client.org