Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/GgIXo0SrFbk1dAucSnOcyJv9TE4.roa
File: GgIXo0SrFbk1dAucSnOcyJv9TE4.roa (raw, json)
Hash identifier: PRDvFYubsRUaeaNOGV6beZ1NJoHhxIHiIuEgiIBSwQs=
Subject key identifier: 1A:02:17:A3:44:AB:15:B9:35:74:0B:9C:4A:73:9C:C8:9B:FD:4C:4E
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018B852F102D0C5CFFCECA9C765EF888AC3F
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/GgIXo0SrFbk1dAucSnOcyJv9TE4.roa
Signing time: Tue 31 Oct 2023 10:02:15 +0000
ROA not before: Tue 31 Oct 2023 10:02:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 149.126.232.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:2f:10:2d:0c:5c:ff:ce:ca:9c:76:5e:f8:88:ac:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Oct 31 10:02:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a0217a344ab15b935740b9c4a739cc89bfd4c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6b:ed:2c:14:ec:87:56:f7:ed:23:99:d8:84:
fa:ee:1e:fb:0b:51:e3:ef:09:71:f2:8d:96:b6:38:
89:1b:f2:7d:e0:1f:32:8b:ca:d2:7e:c9:f0:e6:c7:
0d:f5:73:00:f5:71:3b:66:f4:d9:b7:13:c5:67:6d:
d5:0e:43:05:14:60:84:29:21:89:74:d0:44:f7:64:
83:f3:48:e3:e4:87:b2:a6:fb:3f:5b:a2:22:a1:aa:
c6:01:03:80:28:45:15:1b:e2:e8:11:4c:2d:09:cd:
0e:05:0b:20:a6:31:4f:0d:64:3c:f1:67:49:7e:b0:
e4:66:9c:90:70:c2:49:1b:c0:8f:66:53:9d:04:17:
44:ce:45:57:aa:71:ef:b6:da:a9:5d:cc:27:07:81:
e2:d4:e8:27:9b:4d:2f:5a:ce:23:53:71:bf:51:9b:
5d:e5:bf:7a:76:c6:be:2b:b8:59:8e:c2:db:23:eb:
47:0b:8e:ce:8a:d3:95:0f:ba:38:bf:a6:af:31:3c:
fc:f5:d7:4d:cd:70:ee:ae:ac:14:f0:dd:1f:0d:b4:
61:a1:ae:c6:50:33:6c:92:22:55:fa:a3:4d:0f:87:
b6:ac:4c:ff:c7:f0:8f:2c:02:34:70:2a:a4:be:a0:
82:3c:d8:3b:cc:9d:43:48:60:88:50:a5:71:24:32:
33:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:02:17:A3:44:AB:15:B9:35:74:0B:9C:4A:73:9C:C8:9B:FD:4C:4E
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/GgIXo0SrFbk1dAucSnOcyJv9TE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.126.232.0/21
Signature Algorithm: sha256WithRSAEncryption
00:e1:7d:36:d8:ee:9f:5d:f6:8f:7f:a1:92:98:7a:02:86:31:
b3:94:02:86:4c:10:de:f0:0f:99:97:a1:0c:64:cb:91:26:54:
8c:ee:0c:9b:60:df:5a:c1:e6:49:21:ae:db:bf:04:e3:99:e9:
52:92:c3:a5:6d:54:17:a7:a7:47:e5:04:e9:62:1d:33:fa:1e:
14:b1:9a:57:f3:6b:58:ec:9b:fb:20:20:92:5e:5f:1c:49:b5:
64:b5:07:da:a6:5f:b7:e1:d1:1c:d5:81:c3:6d:8f:aa:71:02:
bb:02:3a:44:5c:12:ab:af:b1:fc:86:db:a4:cd:f3:da:b5:e4:
6b:5c:d4:93:50:d2:65:43:27:ef:c2:23:4a:b4:79:15:60:f1:
30:fa:ea:c8:b6:d9:2b:46:f8:d1:79:df:fa:36:72:d0:8e:4e:
5c:a6:3a:a4:1b:22:c1:08:9c:4b:62:13:3d:67:4d:4d:15:8c:
a4:11:fa:bb:23:5b:ec:2a:ab:2d:6d:35:bb:78:19:e3:65:7a:
7f:07:7f:be:db:ca:d8:54:a9:50:4e:42:79:5c:39:0d:73:bc:
08:95:1a:51:24:b4:c0:01:c5:a9:97:0a:61:ba:df:57:4c:7c:
fa:f4:b9:44:2d:a4:b9:ad:69:94:22:3c:8a:97:1b:af:ef:97:
cc:b5:31:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:04 2024 by rpki-client on console-ams.rpki-client.org