Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Gwj_O5gJ_0LEZmaH-8CoVpaBnoo.roa
File: Gwj_O5gJ_0LEZmaH-8CoVpaBnoo.roa (raw, json)
Hash identifier: 5EAu0ubJGm6OMEtMBBlH163H0K5z+CP23rhNZF2nxHQ=
Subject key identifier: 1B:08:FF:3B:98:09:FF:42:C4:66:66:87:FB:C0:A8:56:96:81:9E:8A
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 0190EA846B17E48751B764840C418BD8CEA2
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Gwj_O5gJ_0LEZmaH-8CoVpaBnoo.roa
Signing time: Thu 25 Jul 2024 15:31:05 +0000
ROA not before: Thu 25 Jul 2024 15:31:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59538
IP address blocks: 212.42.208.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 04:38:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ea:84:6b:17:e4:87:51:b7:64:84:0c:41:8b:d8:ce:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jul 25 15:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b08ff3b9809ff42c4666687fbc0a85696819e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:64:88:be:97:1a:cf:d5:07:3f:37:2b:3a:13:
c5:b5:86:85:5a:ec:c8:9c:fa:36:b4:ef:94:01:8f:
62:8b:38:e1:0c:4b:24:12:69:52:9c:60:e7:88:c3:
f7:a5:27:76:5c:d2:39:08:03:68:a4:e6:b1:c3:2b:
dd:04:02:f1:11:f8:26:f7:42:6b:ab:74:e2:63:99:
1b:27:e9:6c:e7:f1:7e:f8:65:7a:17:14:65:a3:be:
18:35:48:4a:aa:f2:cf:f4:a2:10:b6:0e:e4:c1:44:
6e:31:c5:fc:05:f0:cb:3d:14:69:45:1f:64:07:c5:
8c:02:92:8e:b6:1f:d0:a4:24:a9:3a:66:2c:4a:87:
05:12:4b:57:06:96:5e:51:ea:5f:d0:a7:f9:0b:e6:
da:85:c4:6d:41:ec:2e:81:ed:5b:c7:9f:ff:29:d3:
e7:9c:6c:e9:20:aa:3d:e7:16:31:06:59:e0:d6:d6:
35:d4:9e:71:9d:1e:4b:5a:58:fb:3a:3a:02:f6:4f:
a9:2d:d8:0c:01:47:26:e3:e6:c2:ee:5a:b3:62:1e:
d0:a0:b1:7a:86:9c:e2:67:5e:96:d4:55:d7:5d:07:
25:7f:7b:6c:17:d3:59:51:52:f3:e0:bd:f3:19:5a:
6e:bf:70:74:a9:3c:4f:ad:08:58:d3:e6:ac:8a:ea:
59:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:08:FF:3B:98:09:FF:42:C4:66:66:87:FB:C0:A8:56:96:81:9E:8A
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Gwj_O5gJ_0LEZmaH-8CoVpaBnoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.42.208.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:ff:5b:18:b2:28:12:6a:50:17:29:d8:6e:c6:08:34:55:cc:
b6:b0:43:a9:25:8f:64:da:2f:ea:01:3f:82:76:b1:05:d9:1b:
25:8e:99:5e:93:16:71:8c:3d:0d:87:90:9b:1e:9a:27:3e:d9:
95:60:50:ea:25:0f:0f:08:77:c9:83:dc:26:a1:75:b9:14:fe:
0a:5d:88:fc:be:6d:cc:21:e6:92:23:55:a7:01:b6:b2:86:dc:
d0:e2:25:a2:56:09:f9:cb:1c:24:e6:85:a4:69:83:ee:a5:bf:
9b:4b:38:cc:cf:fb:27:ba:2c:8d:49:40:e5:85:c8:1c:13:50:
43:56:6a:cc:58:76:b4:af:e2:e3:a6:c8:f4:85:5d:d2:40:1a:
30:e7:1e:f3:b7:bf:11:e6:44:89:64:8c:3a:26:92:bd:0b:b6:
17:ff:bc:57:f4:06:b9:b5:a8:6f:81:f3:da:ec:90:8b:1c:e1:
48:1d:df:7a:53:d9:ea:cf:49:28:8f:01:29:fc:05:2d:54:54:
be:ae:b3:b0:04:52:ba:ca:e4:1d:48:b5:eb:f4:6f:33:49:64:
32:09:b9:30:6b:d4:0d:4c:6e:9f:67:a6:b5:94:77:94:cf:dd:
56:27:4c:a1:75:48:c1:a3:9c:31:ea:05:b3:4f:66:ba:67:d9:
f1:ce:db:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:00 2025 by rpki-client