Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gsJa-VyGfS2HEeUdaTDBUVWRfsY.roa
File: gsJa-VyGfS2HEeUdaTDBUVWRfsY.roa (raw, json)
Hash identifier: AlD2YTAIR7VC3KI8kionv52r3WLvWdydHZmNy8i2jIQ=
Subject key identifier: 82:C2:5A:F9:5C:86:7D:2D:87:11:E5:1D:69:30:C1:51:55:91:7E:C6
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01889E5813E2388156DD7B2982C17403DCE8
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gsJa-VyGfS2HEeUdaTDBUVWRfsY.roa
Signing time: Fri 09 Jun 2023 04:09:12 +0000
ROA not before: Fri 09 Jun 2023 04:09:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41944
IP address blocks: 195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9e:58:13:e2:38:81:56:dd:7b:29:82:c1:74:03:dc:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 9 04:09:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82c25af95c867d2d8711e51d6930c15155917ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f2:90:5a:8b:1f:c4:38:de:c6:db:b1:a6:87:
97:27:20:66:19:49:ef:75:42:63:ef:75:e8:68:69:
43:73:f4:a2:be:13:e1:5e:8b:8e:13:36:7c:57:6e:
96:cc:5a:21:08:82:e2:da:fb:95:79:f7:d0:63:6b:
53:66:6a:ba:83:8f:15:2b:21:3b:34:07:a7:f5:7d:
a7:4a:8b:c8:4a:76:58:53:82:d8:b9:fc:eb:6a:fa:
67:4b:ca:ba:90:23:7f:97:9d:de:38:49:fb:e7:d4:
7c:ef:d3:16:b7:66:13:95:92:ac:d1:61:e7:0a:c0:
1e:82:3b:f8:e1:df:02:d8:44:51:8b:b1:af:33:43:
db:ba:c0:b0:8b:59:db:53:2e:c8:52:a7:f8:64:59:
9e:f5:2f:d6:3f:79:ad:98:a1:78:4d:3b:fa:7a:ac:
d2:44:bd:96:c8:af:fa:6d:a7:c7:30:3b:31:fc:67:
d8:1d:47:0e:ea:cc:6b:8c:92:7a:2b:85:11:94:b2:
82:f2:8f:2a:54:61:f2:39:43:f4:a8:b1:05:08:e7:
9d:8c:86:25:64:cb:17:8e:6f:02:d2:95:d3:49:42:
f5:fc:78:d7:54:0b:a7:04:06:7e:73:99:b7:cf:f7:
9e:d4:01:df:1a:d3:cc:d9:f5:9f:1f:e5:1c:d9:51:
35:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C2:5A:F9:5C:86:7D:2D:87:11:E5:1D:69:30:C1:51:55:91:7E:C6
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gsJa-VyGfS2HEeUdaTDBUVWRfsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.205.0/24
194.58.43.0/24
195.133.12.0/24
195.133.94.0/24
212.192.7.0/24
212.192.30.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:79:87:02:b3:70:45:f9:25:49:0c:71:90:c4:2e:6c:67:84:
6a:61:53:ad:00:69:52:72:a1:91:b0:09:29:b2:d6:6f:cc:28:
77:23:f5:67:47:70:b0:25:d1:b1:4c:c9:7c:09:5e:c0:3c:29:
e9:19:26:53:67:12:4b:60:54:c0:d3:7a:6b:51:fc:76:cc:58:
f7:e6:d7:cd:d1:2b:79:c6:75:5f:36:4f:dc:22:8f:c6:b0:91:
b7:64:93:e5:75:3c:73:4f:85:84:29:9b:67:37:ba:f1:30:07:
72:51:22:de:84:21:6d:25:7b:72:b3:23:75:53:9d:12:31:35:
9f:2b:f2:cc:5c:96:ff:50:f1:85:3c:d2:d7:06:e1:90:57:dd:
4c:57:9a:ca:c6:df:b4:6a:11:cf:c2:95:e3:4c:9a:ed:64:f5:
53:fa:ec:75:5c:c2:5a:20:53:6c:d5:1d:2a:65:0c:c5:fd:01:
7e:67:2a:68:8a:99:1b:cc:98:52:48:9a:a1:60:dc:36:98:a3:
05:13:29:b9:d4:80:9e:5f:94:9b:8c:45:b9:62:a8:0c:ba:04:
33:a0:1a:81:79:81:95:1d:af:1f:a2:86:14:a9:62:c4:c4:a4:
cb:33:a3:17:78:5f:23:f6:b0:f6:cf:e2:fe:25:86:a9:1e:ec:
8d:2d:80:a8
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYieWBPiOIFW3XspgsF0A9zoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwNjA5MDQwOTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmMyNWFmOTVjODY3ZDJkODcxMWU1MWQ2OTMwYzE1MTU1OTE3ZWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhPKQWosfxDjextuxpoeXJyBmGUnv
dUJj73XoaGlDc/SivhPhXouOEzZ8V26WzFohCILi2vuVeffQY2tTZmq6g48VKyE7
NAen9X2nSovISnZYU4LYufzravpnS8q6kCN/l53eOEn759R879MWt2YTlZKs0WHn
CsAegjv44d8C2ERRi7GvM0PbusCwi1nbUy7IUqf4ZFme9S/WP3mtmKF4TTv6eqzS
RL2WyK/6bafHMDsx/GfYHUcO6sxrjJJ6K4URlLKC8o8qVGHyOUP0qLEFCOedjIYl
ZMsXjm8C0pXTSUL1/HjXVAunBAZ+c5m3z/ee1AHfGtPM2fWfH+Uc2VE1iwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFILCWvlchn0thxHlHWkwwVFVkX7GMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvZ3NKYS1WeUdmUzJIRWVVZGFUREJVVldSZnNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAwXzNAwQA
wjorAwQAw4UMAwQAw4VeAwQA1MAHAwQA1MAeMA0GCSqGSIb3DQEBCwUAA4IBAQAO
eYcCs3BF+SVJDHGQxC5sZ4RqYVOtAGlScqGRsAkpstZvzCh3I/VnR3CwJdGxTMl8
CV7APCnpGSZTZxJLYFTA03prUfx2zFj35tfN0St5xnVfNk/cIo/GsJG3ZJPldTxz
T4WEKZtnN7rxMAdyUSLehCFtJXtysyN1U50SMTWfK/LMXJb/UPGFPNLXBuGQV91M
V5rKxt+0ahHPwpXjTJrtZPVT+ux1XMJaIFNs1R0qZQzF/QF+ZypoipkbzJhSSJqh
YNw2mKMFEym51ICeX5SbjEW5YqgMugQzoBqBeYGVHa8fooYUqWLExKTLM6MXeF8j
9rD2z+L+JYapHuyNLYCo
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:03 2023 by rpki-client on console-ams.rpki-client.org