Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Gph-ON2hB4xzCyJTzGD8GLeohiU.roa
File: Gph-ON2hB4xzCyJTzGD8GLeohiU.roa (raw, json)
Hash identifier: 6d4U8igQorfE3nckOr5geb0o2cGENahURjYCRAEgWg0=
Subject key identifier: 1A:98:7E:38:DD:A1:07:8C:73:0B:22:53:CC:60:FC:18:B7:A8:86:25
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01912C4A2DEF718E899621CFD775F1DB596C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Gph-ON2hB4xzCyJTzGD8GLeohiU.roa
Signing time: Wed 07 Aug 2024 10:02:24 +0000
ROA not before: Wed 07 Aug 2024 10:02:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.234.0/24 maxlen: 24
62.76.239.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
194.87.189.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Aug 2024 14:55:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2c:4a:2d:ef:71:8e:89:96:21:cf:d7:75:f1:db:59:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 7 10:02:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a987e38dda1078c730b2253cc60fc18b7a88625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:98:58:35:30:0f:61:c3:16:10:db:d3:79:2c:
3f:c7:bc:39:5e:2d:94:29:d3:9b:5e:55:9a:96:14:
c7:51:c3:9b:ac:43:da:f2:95:0b:5d:ac:a0:3f:5a:
d8:f8:25:25:b4:12:59:bd:4c:13:f0:59:d4:ce:4d:
c5:29:a0:22:af:d2:a1:65:91:65:7a:e5:44:90:05:
85:70:c4:1a:80:6a:e1:5d:23:d2:dd:02:61:8c:c5:
b7:06:f3:7c:a9:e1:29:cb:6c:72:6f:43:bb:62:79:
be:c9:4e:75:32:f5:d1:be:d7:4a:f6:4c:c1:c6:12:
9b:91:56:4d:3f:33:04:72:44:da:ca:51:29:2f:12:
d4:45:9f:70:8b:4c:de:12:f5:ff:68:32:2a:ca:7e:
91:65:e4:90:53:6f:49:0e:da:7d:1f:c7:95:2b:8f:
73:1c:3a:54:2b:f9:9b:8c:ae:24:70:1e:6b:0c:48:
ec:fc:0a:52:86:f5:20:6f:26:e3:2e:67:ee:23:3e:
f1:48:45:8a:91:82:07:52:6b:b8:18:0a:a3:60:01:
26:85:60:87:58:c3:67:f9:f2:05:df:4d:62:3f:80:
da:a5:11:48:75:65:43:45:01:bb:92:f5:e6:4c:31:
45:7e:8b:83:ab:9a:cb:e0:29:93:b9:ac:ee:d9:23:
ce:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:98:7E:38:DD:A1:07:8C:73:0B:22:53:CC:60:FC:18:B7:A8:86:25
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Gph-ON2hB4xzCyJTzGD8GLeohiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.234.0/24
62.76.239.0/24
185.72.8.0/24
192.124.176.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.40.0/24
194.58.45.0/24
194.58.68.0/24
194.87.10.0/24
194.87.39.0/24
194.87.47.0/24
194.87.189.0/24
194.87.198.0/24
194.87.227.0/24
195.133.92.0/24
212.192.12.0/23
212.192.15.0/24
212.192.215.0/24
212.192.221.0/24
212.193.2.0/24
Signature Algorithm: sha256WithRSAEncryption
51:88:52:48:29:f9:0c:57:54:92:a3:9e:7e:4e:4a:10:ba:63:
b7:60:92:90:69:49:9b:fd:0f:52:7e:5e:e4:f2:62:e3:64:0e:
ed:4f:17:26:19:70:df:bc:e8:ad:b7:8f:84:d9:cc:d0:7c:13:
f9:9d:d4:91:8a:81:9e:ed:5f:f3:90:15:c5:bb:2e:7c:82:91:
c3:26:0c:82:c0:5f:e8:48:60:4f:50:01:f8:7e:c6:d0:3d:22:
e1:d3:4f:38:be:db:8c:5a:88:be:3b:39:14:5e:95:33:5c:22:
0a:a8:0e:33:e1:61:bc:b0:13:1e:d0:c9:10:73:cc:3a:20:f2:
22:f1:8d:a2:5b:40:a6:2b:7f:50:9e:16:aa:da:04:40:5f:7e:
c0:fa:e4:cc:76:90:ab:73:cb:f1:1c:6c:90:68:f0:65:b5:10:
ca:92:e7:c4:41:f6:03:ad:d2:f7:91:12:0e:3c:9e:c3:73:54:
09:c6:8a:35:e9:b2:09:31:83:f4:5c:fb:c5:b9:ce:80:cb:d3:
59:85:38:02:44:77:46:f8:03:ac:e7:f9:6f:40:2d:e9:52:24:
e9:d8:6f:f7:4a:37:c5:1c:0e:dc:30:ef:d1:22:e7:b0:d0:c7:
6a:37:18:56:e1:42:8e:19:3e:62:56:b8:4d:db:91:04:a5:7b:
ba:6d:70:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 11 17:36:01 2024 by rpki-client on console-ams.rpki-client.org