Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/GPir-Z7fx3ydnhAgoIuAo8veFUU.roa
File: GPir-Z7fx3ydnhAgoIuAo8veFUU.roa (raw, json)
Hash identifier: XWhxlThL9QJg6gdttQ59lfl9adpXzIgsYRyiyA/ZrSY=
Subject key identifier: 18:F8:AB:F9:9E:DF:C7:7C:9D:9E:10:20:A0:8B:80:A3:CB:DE:15:45
Certificate issuer: /CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Certificate serial: 018CC50059F66D0FE25E5BBDCF312B5BFD58
Authority key identifier: 5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/GPir-Z7fx3ydnhAgoIuAo8veFUU.roa
Signing time: Mon 01 Jan 2024 12:29:43 +0000
ROA not before: Mon 01 Jan 2024 12:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 91.210.68.0/24 maxlen: 24
2a11:68c3::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 12 Mar 2024 10:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:59:f6:6d:0f:e2:5e:5b:bd:cf:31:2b:5b:fd:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Validity
Not Before: Jan 1 12:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18f8abf99edfc77c9d9e1020a08b80a3cbde1545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c8:44:f5:1d:80:20:cc:3f:85:0d:9a:e5:d3:
ef:63:66:48:a2:7a:3c:5b:8c:48:f2:ca:89:8b:8a:
14:7c:a4:11:da:0d:99:35:ad:29:e0:76:23:74:85:
f9:6c:3e:fd:61:1a:77:3d:20:9e:70:85:52:d6:bf:
ef:a3:e0:72:96:ae:22:1b:2c:83:66:15:47:e8:69:
1f:b2:d4:79:49:87:ad:57:bc:c6:50:53:3d:cf:23:
db:81:36:9f:93:44:7a:5d:ff:d0:70:ba:98:32:f7:
eb:34:ba:01:0b:8b:c3:d1:3f:32:6d:f7:42:51:f7:
d2:d7:f6:cf:50:4c:89:fa:67:10:48:60:6d:10:84:
d0:31:8e:02:49:8c:22:34:02:bc:55:be:cc:36:3c:
60:75:bc:48:5a:3d:16:48:ae:55:40:90:1d:5f:87:
d7:01:be:72:a9:d8:7a:a1:0d:61:f3:02:bc:56:de:
83:ae:1d:35:03:29:3f:11:9f:b2:43:91:a5:b3:0f:
25:b7:fb:76:c0:79:e6:5a:12:69:35:b4:57:37:03:
13:29:01:4c:a6:7f:d2:b6:a0:7c:0f:0f:a5:5d:8e:
19:5d:9a:7a:ba:0a:29:6c:bf:0b:90:93:80:0d:3e:
99:9e:f2:91:3c:ed:c7:01:3a:bf:07:2e:57:52:8e:
87:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F8:AB:F9:9E:DF:C7:7C:9D:9E:10:20:A0:8B:80:A3:CB:DE:15:45
X509v3 Authority Key Identifier:
keyid:5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/GPir-Z7fx3ydnhAgoIuAo8veFUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/W9dOOd2kANE2Em5sPvsc-TRCd-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.68.0/24
IPv6:
2a11:68c3::/32
Signature Algorithm: sha256WithRSAEncryption
34:84:ad:36:18:34:d0:40:4f:aa:14:c0:81:2a:f6:b0:21:04:
af:34:97:af:a4:1f:3e:78:18:ce:d6:a4:5f:77:61:06:86:82:
46:f9:76:3e:43:0e:f3:1e:81:75:74:47:8b:8c:bc:cc:12:52:
bd:61:59:e0:b0:d8:04:24:fc:66:2f:32:84:6f:17:82:54:9b:
c1:ff:21:7d:a6:6e:d8:98:d9:0b:2c:23:71:5a:08:f1:57:7b:
9a:19:94:b5:5c:4d:85:dc:83:60:8f:ed:c0:bf:ac:7b:50:cf:
95:54:b5:84:07:21:22:da:64:7d:75:2b:22:64:d5:e8:d4:c9:
d6:3a:81:3c:ab:a5:89:e5:60:61:66:7d:06:71:10:13:31:a3:
f4:4c:1e:90:b0:60:b6:ba:66:cb:f3:a4:be:3e:8b:22:b4:fe:
0e:00:49:6d:d0:62:7e:cf:21:ce:5e:19:c4:d4:2d:d5:99:6f:
e8:88:eb:be:55:8a:98:4e:6c:ec:a5:4d:70:6a:fb:38:95:dd:
fc:cc:3d:e5:00:85:12:5a:4d:fa:81:bf:3f:1b:bd:84:da:8f:
ea:5b:77:d0:da:aa:6d:13:ef:0b:81:c8:12:86:92:09:d3:0a:
7d:2c:c9:f4:7e:b0:22:94:51:3b:f6:33:a0:22:3f:8b:2a:01:
76:e5:1e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:14 2024 by rpki-client on console-ams.rpki-client.org