Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/gkRKC3lVCkobJH-uQ_GnmqSMMQA.roa
File: gkRKC3lVCkobJH-uQ_GnmqSMMQA.roa (raw, json)
Hash identifier: 8AnigklEYghdNu7j/J1JWCzGhyIbqj4eSoIZ2u4IEhg=
Subject key identifier: 82:44:4A:0B:79:55:0A:4A:1B:24:7F:AE:43:F1:A7:9A:A4:8C:31:00
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 018CC801B5C3DE859325FE4AB81505F0DEAD
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/gkRKC3lVCkobJH-uQ_GnmqSMMQA.roa
Signing time: Tue 02 Jan 2024 02:30:04 +0000
ROA not before: Tue 02 Jan 2024 02:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10557
IP address blocks: 185.131.54.0/24 maxlen: 24
185.131.53.0/24 maxlen: 24
185.131.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 04:29:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:b5:c3:de:85:93:25:fe:4a:b8:15:05:f0:de:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Jan 2 02:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82444a0b79550a4a1b247fae43f1a79aa48c3100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:24:26:50:1e:59:d5:93:af:67:48:f2:93:d7:
42:0f:e5:45:d9:f8:40:87:b6:c3:44:31:b0:bf:ed:
40:84:7f:fb:ad:68:49:2c:07:48:58:a4:7a:cc:39:
80:80:ea:0a:49:ca:fa:0a:ba:f6:ab:15:39:21:86:
56:c1:e1:3a:98:be:fd:f5:c9:85:79:99:63:7d:93:
9e:58:b4:a6:61:1d:aa:03:46:56:cd:9b:32:ac:41:
db:99:25:29:c3:11:3c:3d:19:b7:38:d5:83:fe:c5:
e2:95:6f:0b:ff:a9:dc:3c:93:a3:b6:d0:3f:79:c4:
c0:31:5c:27:32:e2:62:c1:a8:6e:15:88:ef:12:b8:
4b:9b:df:97:d6:a4:01:94:d8:d8:c5:9e:dc:ad:5d:
fb:e5:85:ce:6d:cd:64:25:e7:5c:88:58:7b:38:66:
59:78:aa:a4:df:d1:ee:43:6e:bb:db:5c:43:b0:d8:
af:67:05:e8:d1:93:8a:99:a8:b0:f9:01:74:e5:7b:
41:2e:ad:6d:51:40:2b:63:33:d5:04:f4:d8:7d:40:
e0:22:94:99:8d:6a:35:29:35:37:47:fa:a9:38:8e:
bc:fb:eb:35:ce:01:fb:fb:e9:38:8d:b9:84:6a:e3:
2f:4b:a3:e4:6d:7c:64:37:71:df:23:90:40:1b:80:
24:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:44:4A:0B:79:55:0A:4A:1B:24:7F:AE:43:F1:A7:9A:A4:8C:31:00
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/gkRKC3lVCkobJH-uQ_GnmqSMMQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.53.0-185.131.55.255
Signature Algorithm: sha256WithRSAEncryption
95:c4:b5:6d:02:dc:c7:fc:c3:82:30:80:8d:17:55:63:22:6b:
9a:a2:85:5c:d7:b1:56:df:01:ca:73:eb:47:c9:d0:33:88:c6:
d5:99:f9:1b:49:6f:13:dd:d8:8e:fb:e0:82:78:78:e2:d6:5a:
ce:84:7a:af:9b:a4:f6:4c:ac:c1:51:39:27:d2:d5:da:13:8f:
79:91:a6:b0:43:6c:df:f0:8c:bb:19:3b:7a:a7:dd:8e:81:1a:
eb:b9:d9:27:30:bb:07:68:1a:6e:5e:15:d2:f8:89:fd:9e:e1:
1e:17:54:48:6d:f8:6c:76:d3:8e:9a:01:24:e2:e8:20:91:ba:
e2:49:0e:07:d7:60:fb:09:44:df:cd:d8:ad:28:97:a8:59:85:
69:45:b5:7f:f8:4f:bd:fd:e9:04:49:2b:e9:19:1f:60:5f:41:
a0:75:6b:9c:96:c6:2e:de:88:d4:96:96:00:29:82:6b:7f:fe:
86:7f:9c:77:6d:1f:c5:79:a6:69:3b:a6:de:e0:30:76:eb:6b:
31:f5:8b:2d:2d:cf:eb:86:18:22:ce:ed:d4:4c:b0:9c:bc:ea:
f0:a1:99:e6:04:3b:d6:06:39:77:eb:91:65:98:15:c3:e6:d1:
cd:c3:9a:43:1e:38:59:9e:22:ea:0a:78:03:42:3f:63:1d:fc:
0f:17:60:2e
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYzIAbXD3oWTJf5KuBUF8N6tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMjkwZGIyZjcyOTA1ZjBkYjYyNmIwMDViYWNmMDg4Nzhk
MTdiYWMwHhcNMjQwMTAyMDIzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjQ0NGEwYjc5NTUwYTRhMWIyNDdmYWU0M2YxYTc5YWE0OGMzMTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhiQmUB5Z1ZOvZ0jyk9dCD+VF2fhA
h7bDRDGwv+1AhH/7rWhJLAdIWKR6zDmAgOoKScr6Crr2qxU5IYZWweE6mL799cmF
eZljfZOeWLSmYR2qA0ZWzZsyrEHbmSUpwxE8PRm3ONWD/sXilW8L/6ncPJOjttA/
ecTAMVwnMuJiwahuFYjvErhLm9+X1qQBlNjYxZ7crV375YXObc1kJedciFh7OGZZ
eKqk39HuQ26721xDsNivZwXo0ZOKmaiw+QF05XtBLq1tUUArYzPVBPTYfUDgIpSZ
jWo1KTU3R/qpOI68++s1zgH7++k4jbmEauMvS6PkbXxkN3HfI5BAG4Ak6wIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFIJESgt5VQpKGyR/rkPxp5qkjDEAMB8GA1UdIwQY
MBaAFMopDbL3KQXw22JrAFus8Ih40XusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8yMTY5NzMtNTE2Zi00NTAxLTkxNjQt
N2Y0MzViZjU1MDFjLzEvZ2tSS0MzbFZDa29iSkgtdVFfR25tcVNNTVFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8yMTY5NzMtNTE2Zi00NTAxLTkxNjQtN2Y0MzViZjU1MDFj
LzEveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC5gzUD
BAO5gzAwDQYJKoZIhvcNAQELBQADggEBAJXEtW0C3Mf8w4IwgI0XVWMia5qihVzX
sVbfAcpz60fJ0DOIxtWZ+RtJbxPd2I774IJ4eOLWWs6Eeq+bpPZMrMFROSfS1doT
j3mRprBDbN/wjLsZO3qn3Y6BGuu52ScwuwdoGm5eFdL4if2e4R4XVEht+Gx2046a
ASTi6CCRuuJJDgfXYPsJRN/N2K0ol6hZhWlFtX/4T7396QRJK+kZH2BfQaB1a5yW
xi7eiNSWlgApgmt//oZ/nHdtH8V5pmk7pt7gMHbrazH1iy0tz+uGGCLO7dRMsJy8
6vChmeYEO9YGOXfrkWWYFcPm0c3DmkMeOFmeIuoKeANCP2Md/A8XYC4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:01 2024 by rpki-client on console-fra.rpki-client.org