Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/gZtVVE3cM-3pGibgIAaCJGnD54E.roa
File: gZtVVE3cM-3pGibgIAaCJGnD54E.roa (raw, json)
Hash identifier: hlnqqiQ8944p5krV58MHNTVvyPHJUVBKWiHmQQ/sTmA=
Subject key identifier: 81:9B:55:54:4D:DC:33:ED:E9:1A:26:E0:20:06:82:24:69:C3:E7:81
Certificate issuer: /CN=96179b39d1c1d28f5063ca921d6007e363e1c60b
Certificate serial: 01856EA6920EB0E9DF32B7947CE117D1DD8E
Authority key identifier: 96:17:9B:39:D1:C1:D2:8F:50:63:CA:92:1D:60:07:E3:63:E1:C6:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhebOdHB0o9QY8qSHWAH42Phxgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/gZtVVE3cM-3pGibgIAaCJGnD54E.roa
Signing time: Sun 01 Jan 2023 18:44:48 +0000
ROA not before: Sun 01 Jan 2023 18:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209633
IP address blocks: 139.28.184.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:92:0e:b0:e9:df:32:b7:94:7c:e1:17:d1:dd:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96179b39d1c1d28f5063ca921d6007e363e1c60b
Validity
Not Before: Jan 1 18:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=819b55544ddc33ede91a26e02006822469c3e781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:65:f6:a4:42:fb:ad:83:36:80:6a:b0:d6:13:
93:c5:7b:8b:0f:63:49:ce:19:fc:52:ea:1a:20:4c:
3a:60:8c:14:8a:45:1b:b6:89:4f:3c:ac:15:17:7c:
75:74:f1:cd:6d:f1:cb:5f:7d:49:a1:a2:98:8d:46:
f5:c4:dd:ef:e9:56:87:6b:c9:a9:e3:91:07:5f:e6:
9f:3c:fd:9d:93:7c:e7:7d:67:25:10:79:22:29:7b:
2f:97:d1:fe:89:87:f3:10:86:9c:56:65:26:23:35:
73:21:6d:26:76:5a:15:50:66:51:71:6e:be:9f:43:
c1:65:a8:93:7f:b7:e4:b1:ba:ae:96:43:00:d7:62:
39:57:3f:2d:8f:45:9a:8c:e8:75:c7:7b:4c:38:3b:
1d:83:33:c5:5a:a2:b1:9a:ca:2e:70:67:1d:48:7c:
28:a9:99:cb:f4:0f:ab:28:18:ee:83:88:de:b7:42:
d0:e6:ea:7f:f5:1f:2a:77:60:bb:83:35:61:ac:58:
b1:57:cb:65:16:bb:83:dd:b8:3f:36:34:7d:56:83:
c8:00:c9:fc:f0:c1:88:1e:fe:60:0c:f5:32:ac:05:
7d:b4:cd:46:3e:44:d3:0d:5c:9f:de:08:d0:7b:8c:
ab:11:be:37:8e:0b:b3:b4:0c:39:52:c3:c6:92:0b:
9f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:9B:55:54:4D:DC:33:ED:E9:1A:26:E0:20:06:82:24:69:C3:E7:81
X509v3 Authority Key Identifier:
keyid:96:17:9B:39:D1:C1:D2:8F:50:63:CA:92:1D:60:07:E3:63:E1:C6:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhebOdHB0o9QY8qSHWAH42Phxgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/gZtVVE3cM-3pGibgIAaCJGnD54E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/lhebOdHB0o9QY8qSHWAH42Phxgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.184.0/22
Signature Algorithm: sha256WithRSAEncryption
84:e9:31:9d:b2:95:9f:85:04:e8:15:21:75:fd:01:db:a5:4b:
c1:45:c0:1c:dc:26:a2:06:c6:d6:4e:4f:c2:4e:65:9b:c4:a1:
a6:7a:79:22:fa:bf:75:16:45:89:6c:ec:4d:81:32:95:cf:fa:
eb:12:8e:39:78:c8:c9:a9:fe:46:c0:69:99:18:7b:db:6a:00:
6f:a6:0f:0f:8c:f4:e8:25:78:b7:50:87:b3:b1:28:0d:fd:99:
4c:65:f7:b4:a3:d1:e8:e3:25:e9:1b:f0:2c:7a:61:f7:bb:e5:
8d:61:8a:20:2e:29:3e:3f:f4:67:18:38:1d:b4:9f:49:e4:12:
da:9f:3d:18:75:77:d6:b1:37:2a:4c:ef:73:31:f8:84:9c:1e:
06:f4:f6:5b:88:58:60:cf:6d:0a:56:ad:e9:3a:39:5d:2c:69:
31:8d:56:bc:7f:79:aa:1d:a4:8c:ce:88:cb:8c:59:5a:ec:82:
a4:26:db:95:22:ce:77:24:73:28:5c:df:6f:fa:0a:4a:7a:b3:
1c:f4:6e:b7:01:da:a9:b6:f8:4e:dc:f7:ef:74:e2:46:1c:5a:
82:e0:8b:86:d9:3b:66:17:78:f2:43:5a:08:cd:9e:fe:a9:66:
59:25:ed:f7:de:36:92:55:cb:7c:d0:db:c3:19:0f:8b:79:e3:
82:d6:1b:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:44 2024 by rpki-client on console.sobornost.net