Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/GTCeKcmFzyeE7yI3BhS6yJOg7bY.roa
File: GTCeKcmFzyeE7yI3BhS6yJOg7bY.roa (raw, json)
Hash identifier: lMmCM/rHx746pr+yWaUkl/kw3DQ447keSO+40k2TQYU=
Subject key identifier: 19:30:9E:29:C9:85:CF:27:84:EF:22:37:06:14:BA:C8:93:A0:ED:B6
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018CCDF7CCE93A0DA8FFB61311AB12824ED1
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/GTCeKcmFzyeE7yI3BhS6yJOg7bY.roa
Signing time: Wed 03 Jan 2024 06:16:58 +0000
ROA not before: Wed 03 Jan 2024 06:16:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54252
IP address blocks: 185.255.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jan 2024 07:36:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cd:f7:cc:e9:3a:0d:a8:ff:b6:13:11:ab:12:82:4e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 3 06:16:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19309e29c985cf2784ef22370614bac893a0edb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:f9:c6:fa:d7:e9:12:2b:f7:df:60:e9:e2:9a:
b8:d3:2b:39:0f:cc:5f:03:de:32:a9:6f:17:67:75:
8e:81:ad:21:00:b1:ff:f3:f1:92:8d:88:83:8e:f6:
0a:85:74:af:d4:0a:9f:d8:28:47:d5:ff:99:37:41:
e4:b4:91:23:60:6b:42:ac:3b:35:3e:6a:b8:a7:92:
6c:b2:4b:b3:01:29:2c:ec:f3:41:e4:6b:7b:e2:d6:
55:a1:cc:2f:e7:08:0c:9f:28:eb:0f:b1:98:d6:c6:
92:c0:13:41:04:e3:71:89:84:e1:2b:96:27:41:ba:
e2:7f:5d:cf:48:95:25:b6:ae:9a:2c:c5:e1:6c:56:
d4:ed:46:af:09:e4:99:5d:c3:4e:39:af:3e:9b:eb:
ef:80:89:1d:99:44:b3:85:91:09:4d:bb:cd:40:ad:
24:c5:f0:cd:2f:ec:7d:1b:d4:85:75:23:58:6c:bf:
ca:52:db:cb:07:4a:60:24:1a:a8:f3:41:57:9a:d5:
57:58:a4:96:d1:7a:9b:85:f7:43:ef:41:33:3d:2b:
b2:80:44:80:18:34:0c:29:a6:78:0a:f3:76:d2:af:
4e:a0:99:e1:18:09:ba:ca:c9:0e:db:57:a1:77:4e:
bb:7b:fe:c5:51:9e:ac:5e:09:c7:ef:f4:19:54:c6:
37:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:30:9E:29:C9:85:CF:27:84:EF:22:37:06:14:BA:C8:93:A0:ED:B6
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/GTCeKcmFzyeE7yI3BhS6yJOg7bY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:90:27:6d:16:97:ca:f7:11:40:86:49:da:41:f1:b6:0b:df:
9a:b1:d6:c8:f3:73:8f:a5:ea:7c:fe:07:e1:e6:13:e1:1d:57:
bd:e8:83:3f:a8:63:e6:ae:5c:6a:ac:3b:c4:3c:1b:11:f4:06:
45:84:9f:1a:4d:e6:fb:49:1f:2f:98:02:9b:d9:a8:69:c8:c7:
eb:01:33:f8:2c:76:21:da:a8:ba:7b:54:1c:a7:2d:09:56:53:
6f:a1:bd:1f:9f:05:b6:b5:c7:36:d1:0e:59:2d:e1:4e:8a:e0:
f3:df:b2:7f:46:e6:4d:4e:f2:d8:4d:b5:9d:f7:fe:dd:a1:6d:
c1:e4:e1:c6:ec:08:3d:0d:e2:39:0a:20:f7:76:f3:c1:7b:12:
8a:45:52:99:40:91:48:3f:82:a1:5f:34:05:ea:47:6e:99:c8:
f2:d1:82:3b:99:8d:e9:10:ad:26:d1:25:21:1e:fb:28:f0:be:
e1:73:2f:7c:00:9c:05:2a:f1:98:f5:1d:99:98:bd:ae:22:8f:
f1:1b:92:6d:71:e6:d7:6a:db:67:97:a7:0b:e0:c8:5d:77:b4:
13:54:17:e3:64:ae:26:78:f0:05:37:93:55:5f:30:f5:9f:9c:
d3:3a:50:04:d4:6f:87:e9:de:2d:e8:31:47:ae:c6:30:b2:1a:
b4:cc:7b:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzN98zpOg2o/7YTEasSgk7RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZjI0NzI2ZGYzZTc3ZjZmNGM4ZTA0MzY2MTNiMzUxMTBl
ZWFmMzgwHhcNMjQwMTAzMDYxNjU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTMwOWUyOWM5ODVjZjI3ODRlZjIyMzcwNjE0YmFjODkzYTBlZGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9/nG+tfpEiv332Dp4pq40ys5D8xf
A94yqW8XZ3WOga0hALH/8/GSjYiDjvYKhXSv1Aqf2ChH1f+ZN0HktJEjYGtCrDs1
Pmq4p5JsskuzASks7PNB5Gt74tZVocwv5wgMnyjrD7GY1saSwBNBBONxiYThK5Yn
Qbrif13PSJUltq6aLMXhbFbU7UavCeSZXcNOOa8+m+vvgIkdmUSzhZEJTbvNQK0k
xfDNL+x9G9SFdSNYbL/KUtvLB0pgJBqo80FXmtVXWKSW0XqbhfdD70EzPSuygESA
GDQMKaZ4CvN20q9OoJnhGAm6yskO21ehd067e/7FUZ6sXgnH7/QZVMY3iwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBkwninJhc8nhO8iNwYUusiToO22MB8GA1UdIwQY
MBaAFN/yRybfPnf29MjgQ2YTs1EQ7q84MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM19KSEp0OC1kX2IweU9CRFpoT3pVUkR1cnpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOTYwMjQtNjU1NS00ZThkLWFmMzct
NjJiYjZkNjNlNTlkLzEvR1RDZUtjbUZ6eWVFN3lJM0JoUzZ5Sk9nN2JZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOTYwMjQtNjU1NS00ZThkLWFmMzctNjJiYjZkNjNlNTlk
LzEvM19KSEp0OC1kX2IweU9CRFpoT3pVUkR1cnpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf8FMA0G
CSqGSIb3DQEBCwUAA4IBAQCjkCdtFpfK9xFAhknaQfG2C9+asdbI83OPpep8/gfh
5hPhHVe96IM/qGPmrlxqrDvEPBsR9AZFhJ8aTeb7SR8vmAKb2ahpyMfrATP4LHYh
2qi6e1Qcpy0JVlNvob0fnwW2tcc20Q5ZLeFOiuDz37J/RuZNTvLYTbWd9/7doW3B
5OHG7Ag9DeI5CiD3dvPBexKKRVKZQJFIP4KhXzQF6kdumcjy0YI7mY3pEK0m0SUh
Hvso8L7hcy98AJwFKvGY9R2ZmL2uIo/xG5JtcebXattnl6cL4Mhdd7QTVBfjZK4m
ePAFN5NVXzD1n5zTOlAE1G+H6d4t6DFHrsYwshq0zHvt
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org