Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/GKQ1LOM7azf-S4VuYkLSZTK4j04.roa
File: GKQ1LOM7azf-S4VuYkLSZTK4j04.roa (raw, json)
Hash identifier: wl99QY3y6wIG5KFRozDTmaXLczdWgoiHjnZiLjwMfY8=
Subject key identifier: 18:A4:35:2C:E3:3B:6B:37:FE:4B:85:6E:62:42:D2:65:32:B8:8F:4E
Certificate issuer: /CN=0bed43f409cb35ceb5e77b56d0bbc9a4cc2d2693
Certificate serial: 018668D11205A35982B740A66C3BC1B857E3
Authority key identifier: 0B:ED:43:F4:09:CB:35:CE:B5:E7:7B:56:D0:BB:C9:A4:CC:2D:26:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C-1D9AnLNc6153tW0LvJpMwtJpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/GKQ1LOM7azf-S4VuYkLSZTK4j04.roa
Signing time: Sun 19 Feb 2023 08:36:17 +0000
ROA not before: Sun 19 Feb 2023 08:36:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.176.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:68:d1:12:05:a3:59:82:b7:40:a6:6c:3b:c1:b8:57:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bed43f409cb35ceb5e77b56d0bbc9a4cc2d2693
Validity
Not Before: Feb 19 08:36:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18a4352ce33b6b37fe4b856e6242d26532b88f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:de:a9:be:7d:71:6a:a3:b0:02:ef:24:89:02:
f6:96:d5:2f:09:84:ad:1e:86:46:af:d0:db:84:0e:
64:7f:bf:09:f1:56:af:ee:72:eb:d8:d7:5c:98:b8:
15:98:6d:c4:5a:02:20:07:02:75:bf:02:50:b0:d8:
df:26:e2:a3:e8:d2:67:f5:54:08:4b:6e:59:01:76:
09:bd:c0:01:c9:5b:2f:df:40:97:13:71:4b:0d:30:
20:e7:aa:88:43:da:77:ee:69:6c:9b:6e:3f:5e:fe:
2e:49:bb:39:0e:e2:6b:80:cc:1a:2f:98:ea:52:a3:
45:6b:11:83:ea:92:98:04:28:16:46:7f:6d:5d:20:
d0:0a:f4:4c:32:26:7c:d9:db:89:e2:75:b7:d2:cb:
a5:30:7e:73:57:76:8f:d8:5d:f7:43:a2:ab:9c:38:
44:be:73:ce:e5:c2:4c:b9:ff:ef:bd:2d:22:c9:bf:
7c:e0:66:e4:8c:11:0c:b4:93:c4:e5:6f:2d:fa:0d:
09:d3:d5:77:f6:5c:20:c1:0b:e3:dc:8c:d3:da:3c:
03:f9:e4:d7:dd:d1:13:02:d2:35:e8:de:61:e6:21:
27:d0:fa:12:a3:cb:07:6c:04:2a:12:4a:f0:01:c5:
22:7c:50:f5:8d:76:ea:8b:16:21:0e:0b:7f:23:67:
07:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A4:35:2C:E3:3B:6B:37:FE:4B:85:6E:62:42:D2:65:32:B8:8F:4E
X509v3 Authority Key Identifier:
keyid:0B:ED:43:F4:09:CB:35:CE:B5:E7:7B:56:D0:BB:C9:A4:CC:2D:26:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C-1D9AnLNc6153tW0LvJpMwtJpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/GKQ1LOM7azf-S4VuYkLSZTK4j04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/C-1D9AnLNc6153tW0LvJpMwtJpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.186.0/24
Signature Algorithm: sha256WithRSAEncryption
22:74:3f:1a:9f:43:4a:74:8f:b9:ec:84:6d:53:9b:0b:49:10:
2c:07:e3:a5:28:ee:cd:be:a2:7d:96:16:3d:e4:b6:5f:af:c8:
2a:f2:37:65:7f:83:06:a6:6a:75:cd:9b:bf:26:3a:c9:8a:e9:
eb:88:69:fe:61:d0:4d:cf:e5:0c:7b:e9:5f:6f:74:fb:59:3b:
20:0a:05:1a:d4:8e:27:eb:23:44:44:9c:80:7e:2b:22:ba:b7:
b8:8a:db:3d:46:b9:1c:28:78:57:03:94:29:e8:2d:db:ec:66:
dc:1e:3a:db:5f:5f:63:9c:4f:7e:4f:25:79:a4:6d:49:61:00:
0a:12:a7:90:d6:fd:eb:6f:79:57:54:3b:6e:01:6c:63:93:dc:
c4:0d:ec:5b:c7:e5:82:1e:38:98:0d:e1:a2:c3:6b:36:bc:f8:
21:fc:81:76:c4:c9:5e:88:22:de:e7:c6:1c:44:e6:7a:14:d6:
ae:b8:06:50:9c:38:a9:b3:e0:5a:36:4e:ea:ef:da:6f:29:10:
e2:bf:33:7b:09:08:24:48:cf:15:ed:6a:18:60:ec:e0:f4:73:
43:db:d2:85:c8:69:ba:ec:3a:74:a5:57:62:62:b5:77:1a:eb:
5b:06:64:cb:c5:bc:29:6a:ea:d5:3c:c0:9b:f9:cd:5d:42:1d:
73:f4:92:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:46 2024 by rpki-client on console-ams.rpki-client.org