Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GbNj6xNHhfANoHT-8s3qJu0QzDc.roa
File: GbNj6xNHhfANoHT-8s3qJu0QzDc.roa (raw, json)
Hash identifier: pKA9vbE5fiCaLaJKKon/gnlSU7OfeuHWpXbcG40LL6A=
Subject key identifier: 19:B3:63:EB:13:47:85:F0:0D:A0:74:FE:F2:CD:EA:26:ED:10:CC:37
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 0191696307F7A4020361AE9E37EC7D1525A1
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GbNj6xNHhfANoHT-8s3qJu0QzDc.roa
Signing time: Mon 19 Aug 2024 06:46:23 +0000
ROA not before: Mon 19 Aug 2024 06:46:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20910
IP address blocks: 62.84.0.0/19 maxlen: 32
62.84.0.0/20 maxlen: 32
62.205.192.0/18 maxlen: 32
77.38.128.0/17 maxlen: 32
79.135.128.0/19 maxlen: 32
80.254.208.0/20 maxlen: 32
85.115.96.0/19 maxlen: 32
85.254.120.0/23 maxlen: 23
87.226.0.0/17 maxlen: 32
89.18.192.0/19 maxlen: 32
89.201.0.0/17 maxlen: 32
91.142.0.0/20 maxlen: 32
91.188.32.0/19 maxlen: 32
93.177.192.0/18 maxlen: 32
94.30.128.0/17 maxlen: 32
109.110.0.0/19 maxlen: 32
136.169.0.0/17 maxlen: 32
185.144.184.0/22 maxlen: 32
188.112.128.0/18 maxlen: 32
195.62.128.0/19 maxlen: 32
195.244.128.0/20 maxlen: 32
213.180.96.0/19 maxlen: 32
217.198.224.0/20 maxlen: 32
217.199.96.0/19 maxlen: 32
2a00:9000::/29 maxlen: 32
2a00:f4a0::/29 maxlen: 32
2a03:6740::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 23 Sep 2024 08:36:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:69:63:07:f7:a4:02:03:61:ae:9e:37:ec:7d:15:25:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Aug 19 06:46:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19b363eb134785f00da074fef2cdea26ed10cc37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2d:6f:8a:ef:f1:fb:22:e5:18:fa:8d:08:6b:
d9:df:10:61:b9:0e:e9:96:8c:2b:13:fb:47:b1:c6:
1d:cc:3c:f6:3a:4a:5d:4b:be:f5:06:61:88:80:94:
85:b2:8b:c9:33:2b:7a:f9:cf:e6:6a:26:50:a0:dd:
b6:4b:02:6c:f1:e9:b9:8d:de:88:f4:92:9a:15:f6:
dc:9a:58:a2:e6:81:36:c7:6a:ea:c1:22:2c:0b:5a:
b8:bf:3e:bf:d5:41:67:85:58:9d:42:1b:d9:49:64:
9b:ea:3f:8f:f4:4b:e2:ef:23:e8:a7:43:06:35:9f:
4a:a5:39:e7:e9:e5:bd:38:5c:14:12:e0:f9:0e:a1:
20:e1:25:ee:1d:01:3e:7e:ce:06:99:f2:ae:13:fb:
e9:2d:c7:d5:13:37:18:3b:7b:a5:7f:f8:97:da:ba:
48:6b:7a:17:41:04:5d:b3:a0:62:21:65:8e:8e:a9:
e6:ee:7d:c5:7c:e3:83:03:c5:c7:70:be:64:e2:2f:
c0:11:f4:e2:d1:dc:e7:57:a7:8f:90:68:f6:2d:d1:
1c:58:82:ad:54:e6:a5:12:13:07:de:1d:0b:31:44:
7e:14:e3:ef:83:73:fa:38:18:7f:2c:32:71:48:97:
ac:07:c0:0b:bc:8a:52:f6:2c:55:37:93:43:74:b7:
05:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B3:63:EB:13:47:85:F0:0D:A0:74:FE:F2:CD:EA:26:ED:10:CC:37
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GbNj6xNHhfANoHT-8s3qJu0QzDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.0.0/19
62.205.192.0/18
77.38.128.0/17
79.135.128.0/19
80.254.208.0/20
85.115.96.0/19
85.254.120.0/23
87.226.0.0/17
89.18.192.0/19
89.201.0.0/17
91.142.0.0/20
91.188.32.0/19
93.177.192.0/18
94.30.128.0/17
109.110.0.0/19
136.169.0.0/17
185.144.184.0/22
188.112.128.0/18
195.62.128.0/19
195.244.128.0/20
213.180.96.0/19
217.198.224.0/20
217.199.96.0/19
IPv6:
2a00:9000::/29
2a00:f4a0::/29
2a03:6740::/29
Signature Algorithm: sha256WithRSAEncryption
49:e2:ee:19:1c:4a:a2:11:a5:e4:67:8a:f9:42:ea:69:8c:07:
85:28:26:83:50:77:b8:05:b4:ed:7e:ae:6d:17:fb:df:16:c4:
43:36:31:31:e3:64:1e:1b:e7:31:2c:27:e0:37:6f:dd:91:70:
25:a4:ec:a1:3c:47:3e:d6:d0:b1:c3:4a:fd:09:7f:3f:db:16:
cb:97:00:3f:a5:7d:9b:73:64:f6:79:63:ef:1e:8e:4a:86:2d:
c8:03:7f:be:77:15:01:76:65:64:c9:4b:a9:8b:98:23:53:2f:
df:34:a4:e5:27:a2:2f:bc:0d:9f:6f:51:25:da:36:e8:c5:3b:
b4:70:d8:12:bf:84:15:36:b5:50:2b:5d:42:af:7e:84:67:33:
5a:cb:d9:31:3f:1d:6e:42:e3:9d:a9:fa:5b:3a:c9:8f:15:3d:
c1:ee:b8:fb:36:e7:dd:2e:9f:42:ad:c4:cb:47:81:27:87:0d:
29:a3:64:f8:74:8a:9e:14:c2:a5:07:83:4b:0c:25:f9:89:18:
e7:91:1b:2c:e4:df:e2:bc:83:a2:45:48:55:99:c5:ef:d0:90:
74:f8:94:3f:2d:12:48:90:42:c7:d6:1a:24:a9:f3:04:98:1c:
75:e6:f1:e2:44:25:3c:99:ee:11:54:3c:a2:0a:8a:be:8a:fa:
1a:cf:a6:e5
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZFpYwf3pAIDYa6eN+x9FSWhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm
YzQxZWMwHhcNMjQwODE5MDY0NjIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWIzNjNlYjEzNDc4NWYwMGRhMDc0ZmVmMmNkZWEyNmVkMTBjYzM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuS1viu/x+yLlGPqNCGvZ3xBhuQ7p
lowrE/tHscYdzDz2OkpdS771BmGIgJSFsovJMyt6+c/maiZQoN22SwJs8em5jd6I
9JKaFfbcmlii5oE2x2rqwSIsC1q4vz6/1UFnhVidQhvZSWSb6j+P9Evi7yPop0MG
NZ9KpTnn6eW9OFwUEuD5DqEg4SXuHQE+fs4GmfKuE/vpLcfVEzcYO3ulf/iX2rpI
a3oXQQRds6BiIWWOjqnm7n3FfOODA8XHcL5k4i/AEfTi0dznV6ePkGj2LdEcWIKt
VOalEhMH3h0LMUR+FOPvg3P6OBh/LDJxSJesB8ALvIpS9ixVN5NDdLcFoQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFBmzY+sTR4XwDaB0/vLN6ibtEMw3MB8GA1UdIwQY
MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt
NTU1NGQ2ZTE2ODZmLzEvR2JOajZ4TkhoZkFOb0hULThzM3FKdTBRekRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm
LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHEBggrBgEFBQcBBwEB/wSBtDCBsTCBkQQCAAEwgYoDBAU+
VAADBAY+zcADBAdNJoADBAVPh4ADBARQ/tADBAVVc2ADBAFV/ngDBAdX4gADBAVZ
EsADBAdZyQADBARbjgADBAVbvCADBAZdscADBAdeHoADBAVtbgADBAeIqQADBAK5
kLgDBAa8cIADBAXDPoADBATD9IADBAXVtGADBATZxuADBAXZx2AwGwQCAAIwFQMF
AyoAkAADBQMqAPSgAwUDKgNnQDANBgkqhkiG9w0BAQsFAAOCAQEASeLuGRxKohGl
5GeK+ULqaYwHhSgmg1B3uAW07X6ubRf73xbEQzYxMeNkHhvnMSwn4Ddv3ZFwJaTs
oTxHPtbQscNK/Ql/P9sWy5cAP6V9m3Nk9nlj7x6OSoYtyAN/vncVAXZlZMlLqYuY
I1Mv3zSk5SeiL7wNn29RJdo26MU7tHDYEr+EFTa1UCtdQq9+hGczWsvZMT8dbkLj
nan6WzrJjxU9we64+zbn3S6fQq3Ey0eBJ4cNKaNk+HSKnhTCpQeDSwwl+YkY55Eb
LOTf4ryDokVIVZnF79CQdPiUPy0SSJBCx9YaJKnzBJgcdebx4kQlPJnuEVQ8ogqK
vor6Gs+m5Q==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:02 2025 by rpki-client