Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/gzj1Za5vGmum8qirQUpM9r6vK4Q.roa
File: gzj1Za5vGmum8qirQUpM9r6vK4Q.roa (raw, json)
Hash identifier: aedUJb2kw8T99QS0Mak0zpH6FJyRKx2hs8Gx8uytNZI=
Subject key identifier: 83:38:F5:65:AE:6F:1A:6B:A6:F2:A8:AB:41:4A:4C:F6:BE:AF:2B:84
Certificate issuer: /CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Certificate serial: 0185707968546066C3A49053037A000CFBEE
Authority key identifier: E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/gzj1Za5vGmum8qirQUpM9r6vK4Q.roa
Signing time: Mon 02 Jan 2023 03:14:42 +0000
ROA not before: Mon 02 Jan 2023 03:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212362
IP address blocks: 45.129.105.0/24 maxlen: 24
2a0e:47c6::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:68:54:60:66:c3:a4:90:53:03:7a:00:0c:fb:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Validity
Not Before: Jan 2 03:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8338f565ae6f1a6ba6f2a8ab414a4cf6beaf2b84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:71:88:46:91:26:63:ce:a3:f6:e1:52:f2:f9:
4e:21:13:de:96:96:de:17:c3:1a:f4:f2:25:b3:29:
2c:f0:8d:bf:6f:8d:60:69:f6:bb:33:bd:e5:f0:52:
42:fe:6b:fd:24:9d:5e:c1:20:15:4b:2c:0d:b9:25:
83:0c:a4:a1:0d:4c:cb:f4:46:04:28:22:e5:1e:8f:
2a:e5:35:60:5d:f0:81:1f:08:a0:04:cc:1f:e9:2d:
e0:d9:98:98:0e:eb:72:35:c6:b6:f0:e4:1b:ce:4c:
cc:46:b7:c2:55:b3:ed:21:4e:3d:f9:99:cd:fd:8d:
d9:8b:7b:dc:8a:c4:27:e0:f8:be:07:75:ea:d7:5d:
1a:e5:0c:d7:20:2f:bb:65:47:6c:ab:a2:ed:2a:c3:
3d:32:f1:2e:41:c0:78:12:13:8a:63:53:6e:92:a7:
c4:38:d2:08:8d:5f:ee:e0:07:b6:c7:45:74:af:ca:
35:77:87:c4:b5:1e:58:a9:3a:36:a2:e2:5c:74:a1:
30:b4:a8:75:8a:86:af:89:68:2c:ee:5c:89:f6:45:
9d:c5:d3:75:b3:e8:27:52:9c:d9:77:18:c1:9e:42:
11:cd:2b:eb:dc:6b:17:54:08:0b:25:96:3d:2e:a7:
73:c4:9c:2b:8c:9c:0e:12:03:32:5c:00:6b:8a:f5:
88:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:38:F5:65:AE:6F:1A:6B:A6:F2:A8:AB:41:4A:4C:F6:BE:AF:2B:84
X509v3 Authority Key Identifier:
keyid:E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/gzj1Za5vGmum8qirQUpM9r6vK4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/6IwEdx4r-sj2DxtMnL0JOq_ql04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.105.0/24
IPv6:
2a0e:47c6::/32
Signature Algorithm: sha256WithRSAEncryption
2b:67:ba:26:86:47:27:4c:24:2a:4c:f2:30:db:5a:1b:14:a3:
9f:a6:65:a9:3b:be:a8:bb:8d:da:26:e4:9c:0e:ad:ca:9c:e6:
bc:32:05:45:0c:7e:6c:7b:e3:d1:88:b5:5a:e6:ed:b3:b0:c2:
fc:90:17:2e:ca:b1:e2:ae:21:29:55:e2:53:01:53:f0:70:5a:
57:92:ca:4f:67:39:91:11:b1:14:a9:3b:6a:86:ef:ab:65:78:
5f:6b:6b:81:26:da:a0:21:c2:bc:39:96:fb:3c:84:c4:a8:ce:
8e:c7:df:d8:d5:45:57:7b:e5:52:12:09:c4:45:45:12:bc:18:
66:b3:ec:25:dc:0d:92:51:72:fb:24:18:44:c0:48:30:3f:6e:
6c:0d:cd:41:d1:46:90:f6:d3:a9:e7:82:71:a3:f2:81:49:40:
af:0f:28:7c:da:c2:f9:e2:f8:ba:fa:77:87:eb:29:83:f5:e0:
b5:a6:ce:35:90:be:22:94:d8:63:bf:8a:ad:fc:0c:4d:d1:4a:
e1:2c:9a:7d:0a:c8:c3:2d:b7:e5:0d:36:1e:c4:5c:1d:15:a6:
05:ab:3f:0b:04:af:c8:28:af:0d:e1:d9:a0:ab:13:f0:d9:f7:
e9:4b:f8:b3:a8:cb:f6:7b:d9:3e:d6:eb:c9:3c:ad:00:69:8d:
25:37:87:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:44 2024 by rpki-client on console-fra.rpki-client.org