Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/GVBoXPRXnLDaXXP8ezuSptqER9I.roa
File: GVBoXPRXnLDaXXP8ezuSptqER9I.roa (raw, json)
Hash identifier: 2lO8fQ22Ce212YlfAQe4OsWEggpWMSOhjwNInHjDlVE=
Subject key identifier: 19:50:68:5C:F4:57:9C:B0:DA:5D:73:FC:7B:3B:92:A6:DA:84:47:D2
Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Certificate serial: 018570CBFB8E5E0C643A21B65B63D7C73793
Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/GVBoXPRXnLDaXXP8ezuSptqER9I.roa
Signing time: Mon 02 Jan 2023 04:44:54 +0000
ROA not before: Mon 02 Jan 2023 04:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24589
IP address blocks: 193.0.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:fb:8e:5e:0c:64:3a:21:b6:5b:63:d7:c7:37:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Validity
Not Before: Jan 2 04:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1950685cf4579cb0da5d73fc7b3b92a6da8447d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:cd:6b:e2:8c:66:8f:07:28:40:64:2e:93:14:
b9:69:a3:5d:dd:4b:9a:c6:76:12:e5:ec:b9:5a:5d:
3d:8d:f8:76:e9:32:77:76:85:b4:36:1e:6d:8c:93:
b1:c5:6e:10:61:ac:59:68:87:e7:f8:ab:68:9b:bf:
35:b2:8b:73:72:4f:ae:fb:6c:bd:04:f5:45:58:4f:
ab:86:8c:32:7e:a9:5b:8e:84:6e:2a:5f:be:e6:d2:
83:f6:33:23:33:3c:e8:3e:e1:97:e2:8d:59:d7:7b:
11:6f:c9:b3:bd:6e:5b:d2:75:f4:9a:ba:d0:b3:ff:
6e:1a:ac:84:7a:11:bc:70:92:3a:19:f2:b9:69:94:
81:4c:22:7a:ca:2f:e4:32:46:6c:1c:2a:71:41:8c:
ce:79:f8:de:77:58:a8:57:32:83:8d:ae:83:7c:1a:
f5:5b:2e:25:c5:32:bd:23:2e:0d:26:30:ac:0f:06:
d4:e8:e8:22:f0:12:10:15:a7:df:91:79:28:e0:a5:
c7:e9:16:76:f5:f0:83:da:9e:cd:2a:f0:0c:05:ca:
be:bf:de:04:b6:2a:0d:43:ed:63:c4:db:3d:9b:c3:
6c:29:2a:b7:28:06:6c:85:51:1e:96:bc:0c:7f:64:
e4:5a:f0:7d:77:ee:53:85:14:c1:c1:e7:31:15:28:
c9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:50:68:5C:F4:57:9C:B0:DA:5D:73:FC:7B:3B:92:A6:DA:84:47:D2
X509v3 Authority Key Identifier:
keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/GVBoXPRXnLDaXXP8ezuSptqER9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.239.0/24
Signature Algorithm: sha256WithRSAEncryption
80:e5:94:e8:be:c1:e9:32:3b:ed:fa:28:8c:d0:c6:ab:89:ee:
85:ca:c7:b2:1a:23:be:3c:d0:42:d1:ac:20:a4:f4:d9:61:64:
95:3d:49:97:f7:5a:5a:34:68:46:bf:73:bd:50:e5:dc:1d:d5:
8f:c9:d9:38:03:1e:13:50:32:98:eb:86:88:cd:7d:e9:a7:78:
87:b2:c8:1c:fd:e3:7b:58:98:84:6b:4b:b2:2c:6a:23:c6:d3:
6d:88:f5:a5:1d:3c:c6:64:23:06:fe:ea:d8:d4:a2:f0:37:83:
bb:b4:f1:66:d2:51:04:52:42:2c:96:ed:a4:81:2c:aa:74:20:
43:63:76:62:8a:eb:a5:f0:0e:0b:8e:aa:0b:92:d1:53:00:63:
0b:7d:f9:42:d2:e5:e1:db:23:0a:50:b7:df:62:6c:81:8d:65:
88:07:39:82:22:bd:02:59:a4:df:df:a9:5a:9f:8c:a1:22:99:
90:6e:a1:0a:ad:7f:6e:fd:b7:2d:28:57:2e:f7:82:d1:6b:e9:
55:59:25:87:18:91:71:5b:f1:1d:17:f8:84:f0:b4:50:f6:44:
70:05:d9:8a:9b:1d:bf:d8:02:f1:ee:46:c9:6a:df:bb:15:c1:
f3:92:81:5e:d8:e1:bf:06:d2:3f:49:aa:f7:42:6b:cf:de:9b:
10:a3:17:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwy/uOXgxkOiG2W2PXxzeTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NzhhZDgxNjhlMDljZjkyZDRlMDQ5ODI1N2Y4ZTljZWFi
ZjA2OTIwHhcNMjMwMTAyMDQ0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTUwNjg1Y2Y0NTc5Y2IwZGE1ZDczZmM3YjNiOTJhNmRhODQ0N2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjc1r4oxmjwcoQGQukxS5aaNd3Uua
xnYS5ey5Wl09jfh26TJ3doW0Nh5tjJOxxW4QYaxZaIfn+Ktom781sotzck+u+2y9
BPVFWE+rhowyfqlbjoRuKl++5tKD9jMjMzzoPuGX4o1Z13sRb8mzvW5b0nX0mrrQ
s/9uGqyEehG8cJI6GfK5aZSBTCJ6yi/kMkZsHCpxQYzOefjed1ioVzKDja6DfBr1
Wy4lxTK9Iy4NJjCsDwbU6Ogi8BIQFaffkXko4KXH6RZ29fCD2p7NKvAMBcq+v94E
tioNQ+1jxNs9m8NsKSq3KAZshVEelrwMf2TkWvB9d+5ThRTBwecxFSjJ9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBlQaFz0V5yw2l1z/Hs7kqbahEfSMB8GA1UdIwQY
MBaAFId4rYFo4Jz5LU4EmCV/jpzqvwaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAt
YWE5ZDY5MTgxMWU3LzEvR1ZCb1hQUlhuTERhWFhQOGV6dVNwdHFFUjlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAtYWE5ZDY5MTgxMWU3
LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQDvMA0G
CSqGSIb3DQEBCwUAA4IBAQCA5ZTovsHpMjvt+iiM0Marie6FyseyGiO+PNBC0awg
pPTZYWSVPUmX91paNGhGv3O9UOXcHdWPydk4Ax4TUDKY64aIzX3pp3iHssgc/eN7
WJiEa0uyLGojxtNtiPWlHTzGZCMG/urY1KLwN4O7tPFm0lEEUkIslu2kgSyqdCBD
Y3Ziiuul8A4LjqoLktFTAGMLfflC0uXh2yMKULffYmyBjWWIBzmCIr0CWaTf36la
n4yhIpmQbqEKrX9u/bctKFcu94LRa+lVWSWHGJFxW/EdF/iE8LRQ9kRwBdmKmx2/
2ALx7kbJat+7FcHzkoFe2OG/BtI/Sar3QmvP3psQoxfX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:33 2024 by rpki-client on console-fra.rpki-client.org