Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/GumGIC4msnBjOJudqlTpnYBKo1s.roa
File: GumGIC4msnBjOJudqlTpnYBKo1s.roa (raw, json)
Hash identifier: ROL21KthODOUDiQJ6IiVSfRzVZGjvAbO36gYZMK0cUs=
Subject key identifier: 1A:E9:86:20:2E:26:B2:70:63:38:9B:9D:AA:54:E9:9D:80:4A:A3:5B
Certificate issuer: /CN=6b475c6fb8033b5e11d7db5f2c997c84ba725ca2
Certificate serial: 01856ED49D9A0E52E740B790D9A5036858FE
Authority key identifier: 6B:47:5C:6F:B8:03:3B:5E:11:D7:DB:5F:2C:99:7C:84:BA:72:5C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/GumGIC4msnBjOJudqlTpnYBKo1s.roa
Signing time: Sun 01 Jan 2023 19:35:05 +0000
ROA not before: Sun 01 Jan 2023 19:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5413
IP address blocks: 91.227.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:9d:9a:0e:52:e7:40:b7:90:d9:a5:03:68:58:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b475c6fb8033b5e11d7db5f2c997c84ba725ca2
Validity
Not Before: Jan 1 19:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ae986202e26b27063389b9daa54e99d804aa35b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b2:27:b0:4f:29:d0:09:bd:66:85:82:02:ee:
3b:3c:79:09:6f:da:ea:01:1d:26:f3:f1:c5:dc:fa:
11:dc:dc:a0:7c:1e:3e:0c:98:4c:e9:a8:37:52:52:
22:f3:f5:46:b6:fb:07:22:38:c3:2b:49:0b:51:c2:
9a:ca:b1:60:55:58:be:73:d4:bd:0a:36:a7:5d:32:
a1:3c:64:74:46:cc:19:e2:94:b2:8b:03:85:f1:6b:
84:15:85:84:18:69:18:fd:ac:d7:45:ae:5a:92:a0:
dc:f1:7c:09:3a:63:7a:cb:c0:9b:a0:46:71:c7:6c:
6a:ca:14:cc:02:3e:4b:12:35:dd:43:37:81:cd:34:
5c:03:8b:32:dd:3d:85:e7:fe:be:10:eb:a6:44:f6:
79:d2:5c:73:93:a2:23:3b:b4:7d:05:53:e5:4f:5a:
8c:a7:f1:2d:32:b2:0c:85:ea:81:69:fb:78:cc:53:
13:23:43:be:d6:e6:0b:5e:d4:bf:56:c6:76:87:f2:
3c:3f:bc:f9:20:da:cb:fb:a9:e0:64:4c:3b:f9:b4:
21:b1:0a:d1:6c:d8:d9:3c:12:ed:c3:7b:92:a1:c8:
63:90:87:5b:97:be:95:e7:d1:ea:d0:91:5f:df:c6:
01:75:ed:d8:f5:d8:83:6a:62:8d:ce:c9:e6:77:95:
6a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E9:86:20:2E:26:B2:70:63:38:9B:9D:AA:54:E9:9D:80:4A:A3:5B
X509v3 Authority Key Identifier:
keyid:6B:47:5C:6F:B8:03:3B:5E:11:D7:DB:5F:2C:99:7C:84:BA:72:5C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/GumGIC4msnBjOJudqlTpnYBKo1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.245.0/24
Signature Algorithm: sha256WithRSAEncryption
16:47:b3:9c:1a:63:9b:17:5f:12:d5:00:27:51:0f:3b:16:b5:
03:58:99:f4:48:c3:c0:bd:96:54:40:78:3a:79:46:dc:01:46:
84:e7:26:02:b6:56:27:ea:49:49:0b:03:db:2b:54:27:33:7a:
86:1e:a6:0a:d4:b4:e2:77:d9:b0:43:f4:97:2f:77:39:a8:2d:
8e:cf:8b:91:1e:77:24:ea:02:09:de:39:14:5d:38:96:e2:04:
24:da:05:16:54:4c:d8:38:eb:ab:a8:f5:54:ce:0f:db:90:3a:
8a:f2:18:86:7f:7c:8b:50:93:d8:b7:04:eb:0a:12:04:94:05:
3f:e8:83:24:a0:06:42:08:80:54:dc:35:02:86:dc:2b:95:b7:
2a:0e:5e:d7:d8:76:d8:7a:03:20:53:86:9e:8f:b8:ac:6c:cf:
cd:6f:84:16:1a:dd:7f:3d:13:b1:e3:04:00:f6:2f:1f:bb:14:
eb:81:4d:8b:86:43:c0:36:01:b7:5d:bc:c7:ac:9d:8f:1c:5f:
5b:33:9a:01:81:d3:24:e8:19:fe:4d:05:65:3a:c0:ee:a3:70:
b9:88:d3:ad:25:6e:c1:3b:f1:57:ac:4b:16:e2:b1:13:31:58:
d9:c0:71:14:88:96:f1:84:d1:b1:0f:7f:ab:2f:18:62:89:0c:
f6:9a:4f:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:12 2024 by rpki-client on console-fra.rpki-client.org