Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GNgd_HGqUiJ8vHPhVBypgGoASvU.roa
File: GNgd_HGqUiJ8vHPhVBypgGoASvU.roa (raw, json)
Hash identifier: VTYFW9qp3oF/11ZazlTZcSiJLXnE0Slxq1/Rv7bfdGs=
Subject key identifier: 18:D8:1D:FC:71:AA:52:22:7C:BC:73:E1:54:1C:A9:80:6A:00:4A:F5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192D6CE9C4DA46682E979B7F5289FCBB33A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GNgd_HGqUiJ8vHPhVBypgGoASvU.roa
Signing time: Tue 29 Oct 2024 05:45:17 +0000
ROA not before: Tue 29 Oct 2024 05:45:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214280
IP address blocks: 45.128.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 13:57:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d6:ce:9c:4d:a4:66:82:e9:79:b7:f5:28:9f:cb:b3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 29 05:45:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18d81dfc71aa52227cbc73e1541ca9806a004af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3f:26:71:09:42:59:7e:64:3e:23:7c:95:76:
4d:a9:ef:31:d9:1a:a7:22:92:8b:b3:a3:dd:38:d6:
3a:0c:2e:02:40:2a:b3:d1:ca:6f:c1:ec:46:30:aa:
a4:16:58:f3:27:0d:a8:f5:9c:21:1e:c0:09:25:20:
27:bf:33:a5:b5:d9:6b:24:e4:2d:c4:77:21:1f:94:
b2:6a:ab:98:84:bd:26:87:31:41:2c:d6:b3:0a:78:
5a:66:24:33:87:31:14:3f:f1:bc:46:54:64:f5:82:
e5:3c:1b:19:d2:f4:38:b1:c5:52:ab:21:b3:13:b1:
51:e8:be:0e:67:da:19:e3:ee:a1:67:0b:5c:2f:49:
80:53:d3:62:be:c0:52:2e:38:54:c4:ab:45:d0:42:
8a:41:0a:f0:0f:1f:af:18:4f:75:a3:fd:bc:42:09:
4c:f0:a6:b4:29:a1:8a:0d:51:14:45:3f:41:53:97:
11:03:fc:15:a7:4f:9f:b4:23:fa:c0:b0:68:a4:cd:
dd:9f:8c:96:b9:51:7d:11:83:48:53:2b:f3:ac:ac:
7c:5c:5e:9c:ea:54:10:11:54:a2:d0:bb:d4:e0:b3:
4b:5a:e5:5a:e4:55:a9:51:32:cd:e4:7a:66:e1:ce:
c4:19:dc:16:c9:d8:ae:0c:c1:31:92:f1:dd:ea:1c:
16:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D8:1D:FC:71:AA:52:22:7C:BC:73:E1:54:1C:A9:80:6A:00:4A:F5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GNgd_HGqUiJ8vHPhVBypgGoASvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.99.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d5:d8:44:6a:e2:bf:9a:99:4b:3a:93:3b:af:17:a2:a6:07:
6c:f6:98:e3:82:bc:83:67:5f:46:22:de:6d:a6:28:9f:fc:ca:
e8:c9:c0:ff:17:1d:c3:71:29:04:8e:09:29:de:60:e7:11:f5:
99:06:e2:d1:7f:79:d1:43:e3:d4:2a:ec:03:63:a0:8f:58:de:
54:c3:c5:31:b6:c1:c3:88:0a:7f:a2:d3:94:94:a6:70:f1:19:
2c:ef:27:bb:33:25:6f:3b:c4:51:63:c2:f1:61:66:11:01:be:
0b:50:90:ab:85:79:7c:ae:5c:ca:43:a9:14:24:a3:06:92:b1:
b1:e9:a3:fa:fe:b5:a0:2f:a7:67:e0:a3:4a:3a:a1:fa:b1:67:
85:7b:c6:a4:b7:34:8b:ac:5b:bf:ef:cc:2f:cf:28:65:b1:88:
a4:14:23:7f:05:31:f0:ba:35:e2:96:54:00:ec:e7:da:55:bd:
89:52:c2:5a:ce:25:63:2e:f4:25:33:5f:17:96:87:d3:8c:e6:
59:3a:02:b9:97:37:54:ae:d1:bc:87:8c:78:c0:c8:0d:1e:76:
57:9a:cd:08:ac:89:57:4e:77:a9:57:0b:84:14:74:b6:33:9f:
40:d4:37:41:2f:71:1f:ba:5b:db:5b:c3:59:53:0e:88:77:ac:
f3:a4:95:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 16:32:39 2024 by rpki-client on console-fra.rpki-client.org