Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/GyjE6sJ_gaY6HTU_hEFfFHezGck.roa
File: GyjE6sJ_gaY6HTU_hEFfFHezGck.roa (raw, json)
Hash identifier: ilTtmHXFiFUljx9SflfG+I0WGWAVoJ6oDLQNooFNmC8=
Subject key identifier: 1B:28:C4:EA:C2:7F:81:A6:3A:1D:35:3F:84:41:5F:14:77:B3:19:C9
Certificate issuer: /CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Certificate serial: 018BA502576AA0F7B51FF2D87420CB2509F5
Authority key identifier: C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/GyjE6sJ_gaY6HTU_hEFfFHezGck.roa
Signing time: Mon 06 Nov 2023 14:21:15 +0000
ROA not before: Mon 06 Nov 2023 14:21:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5410
IP address blocks: 31.32.0.0/13 maxlen: 24
213.44.0.0/16 maxlen: 24
62.201.128.0/19 maxlen: 24
80.214.248.0/21 maxlen: 24
195.36.128.0/17 maxlen: 24
80.215.0.0/16 maxlen: 24
212.194.0.0/15 maxlen: 24
62.34.0.0/15 maxlen: 24
176.128.0.0/10 maxlen: 24
80.214.192.0/19 maxlen: 24
194.158.96.0/19 maxlen: 24
5.48.0.0/14 maxlen: 24
80.214.0.0/17 maxlen: 24
164.177.0.0/17 maxlen: 24
194.117.192.0/20 maxlen: 24
89.80.0.0/12 maxlen: 24
87.88.0.0/14 maxlen: 14
94.238.0.0/15 maxlen: 24
128.78.0.0/15 maxlen: 24
80.214.128.0/18 maxlen: 24
2001:860::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 07 Nov 2023 07:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:02:57:6a:a0:f7:b5:1f:f2:d8:74:20:cb:25:09:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Validity
Not Before: Nov 6 14:21:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b28c4eac27f81a63a1d353f84415f1477b319c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6d:b7:db:0e:16:1e:51:9d:f9:90:88:85:26:
cb:b5:87:db:5d:d5:ba:5c:39:45:b1:36:6e:0f:9a:
86:70:7c:f5:bc:db:e7:dc:3c:ff:f0:b1:53:63:10:
04:33:52:39:36:6f:60:8d:8c:4a:3b:a0:f4:9f:4d:
86:13:92:4f:54:84:bf:91:6b:30:90:7d:7e:37:5a:
85:90:6f:36:90:0a:d9:bf:9d:59:80:ea:ce:80:59:
fe:8f:62:23:70:ca:05:79:4f:fe:d3:1b:94:12:cf:
d9:13:62:15:54:95:24:b9:2d:33:75:95:0a:1d:b7:
e0:ee:27:be:ef:94:61:54:b5:c9:cf:8d:c9:a3:b8:
44:e9:ba:58:c9:f8:74:34:42:c0:f7:ca:cf:88:84:
47:96:02:68:83:d4:c8:08:d0:67:8f:0b:64:2c:96:
2f:ed:94:f1:6d:65:70:50:01:fc:6e:d0:3d:eb:77:
80:fe:b8:79:0a:68:1d:95:de:7b:9f:b6:b8:96:b0:
ec:c6:20:33:47:c1:40:f2:78:70:bd:b8:7f:4d:f4:
2b:de:03:02:b9:ca:56:e0:09:4c:4a:07:f7:8e:58:
4a:23:3c:0b:6b:1e:ee:0b:0a:11:3b:51:d1:4e:51:
9d:13:cc:ae:81:41:f4:da:fa:12:7f:ad:60:7c:2e:
a0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:28:C4:EA:C2:7F:81:A6:3A:1D:35:3F:84:41:5F:14:77:B3:19:C9
X509v3 Authority Key Identifier:
keyid:C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/GyjE6sJ_gaY6HTU_hEFfFHezGck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/x8JN6ZEB-v33S8opP9bZUGDVCmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.48.0.0/14
31.32.0.0/13
62.34.0.0/15
62.201.128.0/19
80.214.0.0-80.214.223.255
80.214.248.0-80.215.255.255
87.88.0.0/14
89.80.0.0/12
94.238.0.0/15
128.78.0.0/15
164.177.0.0/17
176.128.0.0/10
194.117.192.0/20
194.158.96.0/19
195.36.128.0/17
212.194.0.0/15
213.44.0.0/16
IPv6:
2001:860::/29
Signature Algorithm: sha256WithRSAEncryption
b3:0c:24:1a:79:98:81:73:5c:79:97:43:ac:2f:52:bd:95:84:
f2:fb:90:2b:f4:49:b5:55:4d:b9:b2:19:21:8d:db:ff:ad:2f:
cc:ca:ef:4e:94:5c:8b:e1:75:5e:32:32:8e:f8:9b:1e:c3:c1:
f9:77:c5:5a:6b:ff:c4:93:47:24:6c:04:41:9b:3f:bc:fd:d1:
4a:12:74:11:28:d2:f6:c7:ce:02:e4:a6:66:11:8e:f0:21:40:
e2:1e:03:51:e3:3b:51:58:30:07:b8:cb:7c:3e:d4:3e:07:eb:
40:e0:6b:32:27:e7:02:20:a8:2e:cf:65:e4:1d:bb:e2:7b:88:
79:7b:25:0e:fc:92:be:27:97:1d:11:46:69:cb:3c:d9:46:63:
be:83:70:bd:b7:d8:cd:d8:69:30:3a:74:29:9b:38:9a:20:b2:
ce:40:03:4b:73:fc:25:36:d1:28:f0:93:3a:64:5b:8a:a6:4c:
0a:2e:de:76:81:c5:b3:f4:c7:5b:65:dc:e9:b8:03:3b:ac:f4:
6c:ca:d1:70:49:ec:06:c9:da:79:bd:4f:b6:c2:c7:82:ca:30:
cf:a3:98:b7:3b:53:be:7a:ac:bf:6e:35:5c:08:34:53:0c:93:
ff:73:9b:21:46:b2:4d:4a:00:0e:40:bd:f6:c2:98:58:27:e5:
57:84:8f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:38 2024 by rpki-client on console-fra.rpki-client.org