Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a24874-98d3-4734-8efa-8c253c459271/1/gx_qIIXIhwKCzrPLH0k86PM9p00.roa
File: gx_qIIXIhwKCzrPLH0k86PM9p00.roa (raw, json)
Hash identifier: S40SSIjRUMNrs2YjGJzBdeOz13GP8WOqda39V6wqgmI=
Subject key identifier: 83:1F:EA:20:85:C8:87:02:82:CE:B3:CB:1F:49:3C:E8:F3:3D:A7:4D
Certificate issuer: /CN=b61a72bfa4caabcba4ec0484137a516f9f344346
Certificate serial: 018572A8006765D442BB74BAE9CC0762A9A4
Authority key identifier: B6:1A:72:BF:A4:CA:AB:CB:A4:EC:04:84:13:7A:51:6F:9F:34:43:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thpyv6TKq8uk7ASEE3pRb580Q0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a24874-98d3-4734-8efa-8c253c459271/1/gx_qIIXIhwKCzrPLH0k86PM9p00.roa
Signing time: Mon 02 Jan 2023 13:24:50 +0000
ROA not before: Mon 02 Jan 2023 13:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56652
IP address blocks: 31.41.48.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a8:00:67:65:d4:42:bb:74:ba:e9:cc:07:62:a9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61a72bfa4caabcba4ec0484137a516f9f344346
Validity
Not Before: Jan 2 13:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=831fea2085c8870282ceb3cb1f493ce8f33da74d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:db:89:38:13:5d:7a:5d:16:48:70:2c:7c:f9:
3d:d8:80:27:a3:7c:2e:59:6b:4f:d9:85:52:27:c0:
5c:e5:1d:c1:a8:ef:09:16:b0:7b:de:97:98:98:22:
44:0d:6d:ad:9a:0c:1e:21:42:d9:0f:0a:d1:33:fb:
67:a3:6c:14:e4:53:10:cd:de:37:05:ed:8d:44:51:
09:7f:5d:33:fd:fa:b9:2c:2e:92:9a:87:50:39:a2:
64:c0:82:2e:d4:f2:0d:c5:2a:0e:58:fa:72:c6:ba:
a4:8f:6b:12:55:a5:cc:82:eb:d8:82:82:d6:20:d5:
cf:55:33:d0:9f:cc:85:7e:af:48:81:b7:f5:94:a9:
81:17:e8:87:b6:1f:2b:2b:a6:a9:54:b8:7e:11:d3:
eb:7e:e7:85:e8:8d:97:b9:67:c6:e6:9d:b2:a5:5b:
f0:e9:b3:35:97:b8:9c:75:68:ce:13:a8:94:7b:bf:
ea:0b:9c:d4:36:36:ea:a1:58:3a:88:05:b5:fc:5f:
25:65:3a:71:27:4f:95:7e:fa:c2:a4:c4:fe:82:8a:
60:c9:59:85:76:d3:f6:4c:60:d9:1e:2a:7b:e6:ac:
74:e9:ce:21:2b:05:cd:60:10:5c:3c:56:d3:b1:08:
e8:81:1d:e2:bf:c0:1c:6b:43:86:6d:4c:95:1c:9a:
8f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:1F:EA:20:85:C8:87:02:82:CE:B3:CB:1F:49:3C:E8:F3:3D:A7:4D
X509v3 Authority Key Identifier:
keyid:B6:1A:72:BF:A4:CA:AB:CB:A4:EC:04:84:13:7A:51:6F:9F:34:43:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thpyv6TKq8uk7ASEE3pRb580Q0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a24874-98d3-4734-8efa-8c253c459271/1/gx_qIIXIhwKCzrPLH0k86PM9p00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a24874-98d3-4734-8efa-8c253c459271/1/thpyv6TKq8uk7ASEE3pRb580Q0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.48.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:1d:aa:e2:fc:aa:56:1b:2f:cb:17:41:a4:78:b6:35:ba:8b:
ce:2f:60:b8:35:0e:8d:a7:24:d8:d5:34:98:e5:fc:93:35:c0:
e2:df:3e:9a:03:46:d6:37:02:86:06:54:47:2c:e2:74:e6:6d:
1e:2c:e1:06:4d:3a:11:97:22:13:82:d7:43:14:5f:64:aa:1e:
60:ed:bf:b8:c6:de:4f:c3:b6:24:78:7f:16:68:8e:34:61:4a:
c2:0f:26:f1:9f:03:46:0b:6f:79:bb:78:24:c7:de:d2:71:55:
a7:5e:c2:45:09:20:a0:a9:64:d6:74:7a:02:49:76:7c:31:69:
d1:ff:bd:74:8d:b2:3e:3e:fd:a8:da:12:b3:27:03:4a:44:d4:
3a:d4:bb:50:6e:55:88:86:61:f8:ca:e4:e7:91:7a:f4:21:c2:
e7:b3:6b:dc:25:0d:b3:ef:98:6d:13:a8:a7:45:8d:65:94:88:
b5:3b:5f:a7:72:e9:7c:3d:8c:02:30:bd:12:ee:32:08:fe:88:
71:e2:4f:91:4a:6c:f0:72:24:65:de:f4:e1:a5:4a:b4:3c:b0:
fb:bb:2a:8f:ae:cd:4b:8d:69:1a:b6:87:64:f8:ad:e9:6f:57:
ce:ec:76:cb:07:24:a8:f5:8b:cb:e7:74:86:62:3c:ba:ae:2b:
b7:a7:37:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:00 2024 by rpki-client on console-fra.rpki-client.org