Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/gbs6xbXceN9vpVyNYAgQFooglqc.roa
File: gbs6xbXceN9vpVyNYAgQFooglqc.roa (raw, json)
Hash identifier: E0mrP8Au3g9eQD/AMah98JrBnPlpOZwmiRaisiZWiks=
Subject key identifier: 81:BB:3A:C5:B5:DC:78:DF:6F:A5:5C:8D:60:08:10:16:8A:20:96:A7
Certificate issuer: /CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931
Certificate serial: 01856CF86619A0332897834134EA9962C76C
Authority key identifier: 58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/gbs6xbXceN9vpVyNYAgQFooglqc.roa
Signing time: Sun 01 Jan 2023 10:54:56 +0000
ROA not before: Sun 01 Jan 2023 10:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207995
IP address blocks: 217.198.48.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:66:19:a0:33:28:97:83:41:34:ea:99:62:c7:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931
Validity
Not Before: Jan 1 10:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81bb3ac5b5dc78df6fa55c8d600810168a2096a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:fa:a5:57:ce:b5:25:c0:58:90:db:4f:d5:10:
ad:93:e9:2f:7b:be:61:41:ca:48:67:ab:d6:31:65:
8e:18:14:2d:4e:bf:9c:e5:7d:da:8b:0e:08:01:95:
f2:ec:22:65:7c:b5:6d:71:4f:2c:75:4c:ae:65:c6:
d2:0d:f9:f6:66:1c:da:7f:7e:1d:25:d4:f3:00:21:
da:ea:28:84:f8:fe:21:fb:f1:21:e2:71:1e:b1:b4:
c9:f0:d2:de:89:45:e3:92:54:16:c5:18:11:5f:8e:
4b:59:03:12:59:4e:7b:7d:04:8f:f3:e9:45:0a:2b:
1c:a2:b3:83:d9:a5:e9:1d:b3:7b:3d:54:90:fa:90:
91:24:9a:b7:a0:e9:e6:d9:a8:94:6b:4c:21:af:a2:
a8:3b:36:51:62:2a:bd:d6:1f:5d:2a:0a:49:49:d2:
48:5d:4f:90:43:18:95:de:11:4d:7c:3c:bb:59:56:
b9:a2:a8:96:67:48:a4:54:93:f7:e6:3e:98:0a:54:
dc:20:bc:e5:cf:87:a8:f8:bb:6f:62:b3:e1:78:4b:
87:5a:fe:f9:d3:68:77:e9:26:10:ee:2d:84:19:62:
14:7e:68:73:bb:cc:25:6e:70:24:8b:ce:83:19:5b:
b0:3a:c8:05:e2:8d:69:90:b6:a8:b8:ad:da:aa:18:
8c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BB:3A:C5:B5:DC:78:DF:6F:A5:5C:8D:60:08:10:16:8A:20:96:A7
X509v3 Authority Key Identifier:
keyid:58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/gbs6xbXceN9vpVyNYAgQFooglqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.48.0/21
Signature Algorithm: sha256WithRSAEncryption
65:a6:2b:a8:f7:26:09:3d:66:ba:8f:3a:d5:c9:59:95:3d:73:
ac:9c:a4:a1:e4:a8:ab:06:e7:58:2d:7b:74:07:f3:37:bf:77:
bf:a9:f9:73:14:99:ff:41:85:49:2c:12:27:4e:5d:44:10:ee:
0c:32:6a:4b:88:74:5d:76:2f:23:95:ab:d0:4c:2f:1b:e9:e5:
01:99:46:cd:ba:ba:42:8e:30:41:f6:54:dc:2c:3e:22:05:0b:
4c:69:94:26:aa:3e:0f:8f:27:a3:78:11:99:76:f8:c5:d3:46:
03:dc:a1:47:25:a5:bb:7c:f9:f2:56:9b:46:23:45:01:43:13:
06:6d:a9:4d:ac:55:a2:24:6d:92:44:cc:3f:50:33:25:c6:28:
53:7d:62:ba:8e:eb:5d:95:dd:97:1c:e3:65:b7:62:24:51:5b:
76:54:ba:19:b0:54:d7:6a:25:cb:e6:24:e8:70:1e:ac:1e:77:
07:d7:be:b1:9e:46:54:06:a1:c2:bd:99:98:6b:8b:ea:52:2b:
bf:7a:cf:66:4b:03:04:64:f7:84:49:4d:64:35:e9:30:ec:e7:
61:de:c9:fe:be:30:a9:6d:48:20:01:5b:cd:6d:0d:29:9c:9f:
35:7c:07:00:9b:cf:fe:c7:a0:e1:5c:06:10:cd:52:32:33:78:
37:e8:60:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:12 2024 by rpki-client on console-ams.rpki-client.org