Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/gPdpf8sJPjcWSE_Tg_81stNlk4I.roa
File: gPdpf8sJPjcWSE_Tg_81stNlk4I.roa (raw, json)
Hash identifier: 000uT7fxLiHxw+nWUPuNUQ78vf/7rBzBoY2jZOtVE3M=
Subject key identifier: 80:F7:69:7F:CB:09:3E:37:16:48:4F:D3:83:FF:35:B2:D3:65:93:82
Certificate issuer: /CN=3a5d4a329702e2c9831cd36262bbb7fa7b97de37
Certificate serial: 018BD7DF0EA9C03D6F1E6ECC64EBC2528803
Authority key identifier: 3A:5D:4A:32:97:02:E2:C9:83:1C:D3:62:62:BB:B7:FA:7B:97:DE:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol1KMpcC4smDHNNiYru3-nuX3jc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/gPdpf8sJPjcWSE_Tg_81stNlk4I.roa
Signing time: Thu 16 Nov 2023 11:23:21 +0000
ROA not before: Thu 16 Nov 2023 11:23:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47191
IP address blocks: 216.180.224.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d7:df:0e:a9:c0:3d:6f:1e:6e:cc:64:eb:c2:52:88:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5d4a329702e2c9831cd36262bbb7fa7b97de37
Validity
Not Before: Nov 16 11:23:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80f7697fcb093e3716484fd383ff35b2d3659382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2e:02:92:ef:50:ab:29:c7:0b:01:9e:9b:1a:
de:21:e8:0d:9c:30:df:0a:1e:ad:15:5a:bf:88:92:
ae:cd:2f:a9:6a:be:3e:64:c9:3a:e7:9b:6d:2c:66:
e8:27:66:e7:7d:6f:e9:68:e1:0e:69:09:eb:38:15:
ba:54:01:7a:3d:8a:40:b6:4a:3c:0f:86:b0:33:f3:
45:07:81:91:3c:f4:f8:62:7d:a2:1d:14:c8:0d:2b:
d6:61:33:54:1b:10:2c:b1:9a:66:6f:a6:ee:2e:72:
b8:65:94:e2:ce:c6:f0:32:7c:48:44:07:df:1f:f0:
6d:1c:4f:da:d2:ec:be:67:c3:37:b2:5b:40:75:6c:
a3:7b:db:9c:90:ba:aa:50:c2:32:d0:fd:e4:45:ad:
7b:04:fc:08:d2:f5:17:08:c4:e0:6b:8a:5f:b6:47:
6c:e3:ac:d8:4a:83:9e:4d:d3:26:96:6b:ad:22:23:
31:88:29:31:ee:52:7a:97:09:ae:34:b1:db:3a:6b:
3f:91:6c:11:e9:f1:96:48:74:d8:fa:89:04:86:20:
79:f9:06:81:95:95:d5:73:a9:c0:f2:cf:aa:87:df:
11:95:aa:ab:17:2f:9b:61:1b:2d:a8:b6:61:42:c8:
5b:e3:b3:93:1d:2f:6f:55:16:dd:61:78:16:e0:6f:
f7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F7:69:7F:CB:09:3E:37:16:48:4F:D3:83:FF:35:B2:D3:65:93:82
X509v3 Authority Key Identifier:
keyid:3A:5D:4A:32:97:02:E2:C9:83:1C:D3:62:62:BB:B7:FA:7B:97:DE:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol1KMpcC4smDHNNiYru3-nuX3jc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/gPdpf8sJPjcWSE_Tg_81stNlk4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/Ol1KMpcC4smDHNNiYru3-nuX3jc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.180.224.0/20
Signature Algorithm: sha256WithRSAEncryption
35:75:53:19:3e:77:fd:4d:cd:39:46:27:c7:21:b3:dd:af:82:
d9:92:4b:0a:8f:42:2f:18:6e:71:a3:75:8e:09:00:28:0c:dd:
7f:a8:b5:53:e8:84:df:5b:ef:4c:29:8b:05:8d:91:f7:30:0b:
ef:bc:d5:10:1e:8d:24:80:38:c7:41:47:b1:e2:8b:2f:9d:f7:
1e:16:12:78:b8:89:e2:df:b9:23:6a:15:1f:ac:0a:2d:2d:08:
4d:f1:64:a2:d3:1d:38:5c:0b:76:2d:bc:1d:06:05:03:3d:b4:
49:d2:97:0a:fd:3a:e2:52:a8:84:bc:4c:ee:8f:fc:44:fa:a1:
3a:5c:ca:33:f3:9e:56:dd:a5:2f:ef:4c:d8:a5:4f:22:eb:13:
23:55:5a:da:9c:d8:0b:c1:33:c9:65:88:2b:0d:80:4a:7c:54:
11:fd:3b:df:7b:9f:4c:a3:3e:26:38:38:8d:d5:a4:fc:55:02:
91:06:d4:3e:63:f4:e1:05:9b:c2:62:ab:14:bb:8c:b9:aa:4d:
f0:b3:79:b4:19:ed:7e:1e:b2:60:c8:9e:da:e6:64:23:9a:97:
e7:e4:19:6a:c9:ee:b1:15:a4:64:af:8f:3d:be:77:2b:34:f7:
f9:e1:b0:5e:64:29:43:09:12:f4:ba:f1:52:0d:5b:77:3a:a1:
06:94:b4:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:38:34 2024 by rpki-client on console-fra.rpki-client.org