Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c4f2e2-0188-4a43-8503-d2601cc12377/1/Gs13Mrxd6L78dVtnM1ZSv4nYvK8.roa
File: Gs13Mrxd6L78dVtnM1ZSv4nYvK8.roa (raw, json)
Hash identifier: Lo9wffGR5UVbiEK9wQgwU3/FrtqcZDv1l0PzQUedGpk=
Subject key identifier: 1A:CD:77:32:BC:5D:E8:BE:FC:75:5B:67:33:56:52:BF:89:D8:BC:AF
Certificate issuer: /CN=4db952ed1cd7a3803cf4dbfd340ea74963268ba0
Certificate serial: 0185719574AEC9970DDFFE5E4F884FFF34BA
Authority key identifier: 4D:B9:52:ED:1C:D7:A3:80:3C:F4:DB:FD:34:0E:A7:49:63:26:8B:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TblS7RzXo4A89Nv9NA6nSWMmi6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c4f2e2-0188-4a43-8503-d2601cc12377/1/Gs13Mrxd6L78dVtnM1ZSv4nYvK8.roa
Signing time: Mon 02 Jan 2023 08:24:58 +0000
ROA not before: Mon 02 Jan 2023 08:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50578
IP address blocks: 91.238.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:74:ae:c9:97:0d:df:fe:5e:4f:88:4f:ff:34:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4db952ed1cd7a3803cf4dbfd340ea74963268ba0
Validity
Not Before: Jan 2 08:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1acd7732bc5de8befc755b67335652bf89d8bcaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f7:38:7e:ec:91:45:2c:4e:ca:dd:34:80:11:
0d:ab:58:06:41:cb:5a:d7:2b:96:6a:34:ce:a9:72:
7c:d5:cd:8e:d0:e0:e0:98:81:ce:b8:e3:0e:e4:17:
8f:64:ec:8c:33:19:be:14:5b:8a:06:47:8a:6c:eb:
8f:b2:03:31:84:aa:ad:1d:e3:f5:a7:b0:c3:59:cd:
3e:ec:ae:e3:ac:f2:bf:cd:82:81:61:81:40:a9:61:
54:5f:d0:70:88:36:4b:df:bf:20:16:a2:d9:f2:aa:
c5:7f:2d:9a:00:52:f7:dd:68:77:06:b8:c4:99:4a:
c5:97:de:a9:57:1a:d9:c6:d4:48:7c:61:01:79:56:
c0:a3:d6:06:75:46:05:b9:99:73:7c:74:c7:1e:f0:
fc:94:ee:5b:48:ef:ea:21:6b:1d:10:29:51:9d:10:
14:61:e5:7f:9a:6a:c2:14:c3:c7:20:57:e7:2d:3f:
89:0e:1b:40:b5:66:63:c0:52:f7:80:9e:9e:5d:38:
76:4a:35:2f:29:e0:df:d6:63:c0:80:70:cb:8e:b5:
ef:cd:e3:2b:a6:9b:93:b6:b5:5d:db:95:c9:f2:39:
7f:7d:80:b1:4c:97:c5:7c:34:12:fe:7b:5a:27:ff:
30:ef:58:6d:46:33:16:2f:95:c1:03:85:8f:e2:52:
7b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CD:77:32:BC:5D:E8:BE:FC:75:5B:67:33:56:52:BF:89:D8:BC:AF
X509v3 Authority Key Identifier:
keyid:4D:B9:52:ED:1C:D7:A3:80:3C:F4:DB:FD:34:0E:A7:49:63:26:8B:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TblS7RzXo4A89Nv9NA6nSWMmi6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c4f2e2-0188-4a43-8503-d2601cc12377/1/Gs13Mrxd6L78dVtnM1ZSv4nYvK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c4f2e2-0188-4a43-8503-d2601cc12377/1/TblS7RzXo4A89Nv9NA6nSWMmi6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.50.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:bd:ea:cd:05:11:b9:44:78:26:ef:73:69:ca:82:48:ba:f7:
68:85:23:25:30:ed:22:55:03:c6:ad:55:7e:d5:92:07:fc:28:
27:10:9a:75:de:2d:46:b8:75:2f:e0:02:78:ea:95:d3:1e:60:
3d:98:dd:98:f3:e6:30:f7:36:bd:93:fd:01:57:75:a6:e7:7c:
fc:23:bf:e2:e3:98:3f:ad:e9:22:db:8c:6c:43:ef:75:f3:5c:
d0:15:94:67:60:7d:5e:05:c3:86:95:67:03:93:9b:7d:82:89:
51:78:25:ee:e2:58:21:44:40:64:af:bb:17:0b:63:06:5e:c0:
fd:b5:f6:56:27:7f:43:9b:15:f0:ae:91:37:4f:89:c4:27:61:
d6:a1:15:7f:a1:c4:df:f8:d4:f3:b4:f6:02:e2:4c:c3:8c:22:
aa:39:74:07:a4:65:0b:2a:b1:22:dd:90:f2:10:c5:e9:69:55:
7b:69:ab:17:ec:77:0f:6d:fb:b8:c9:18:55:5f:34:7a:e9:c5:
58:9b:42:eb:a4:89:21:8d:cd:ac:9c:aa:7a:80:04:a6:ce:eb:
4b:27:22:9b:12:d6:ad:63:8f:f2:e8:d5:14:b4:2e:36:78:91:
cd:2b:75:9f:2f:fe:78:a4:9f:f4:3e:8b:59:fc:ba:fe:9a:df:
3d:1f:8a:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxlXSuyZcN3/5eT4hP/zS6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkYjk1MmVkMWNkN2EzODAzY2Y0ZGJmZDM0MGVhNzQ5NjMy
NjhiYTAwHhcNMjMwMTAyMDgyNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYWNkNzczMmJjNWRlOGJlZmM3NTViNjczMzU2NTJiZjg5ZDhiY2FmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxPc4fuyRRSxOyt00gBENq1gGQcta
1yuWajTOqXJ81c2O0ODgmIHOuOMO5BePZOyMMxm+FFuKBkeKbOuPsgMxhKqtHeP1
p7DDWc0+7K7jrPK/zYKBYYFAqWFUX9BwiDZL378gFqLZ8qrFfy2aAFL33Wh3BrjE
mUrFl96pVxrZxtRIfGEBeVbAo9YGdUYFuZlzfHTHHvD8lO5bSO/qIWsdEClRnRAU
YeV/mmrCFMPHIFfnLT+JDhtAtWZjwFL3gJ6eXTh2SjUvKeDf1mPAgHDLjrXvzeMr
ppuTtrVd25XJ8jl/fYCxTJfFfDQS/ntaJ/8w71htRjMWL5XBA4WP4lJ7sQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBrNdzK8Xei+/HVbZzNWUr+J2LyvMB8GA1UdIwQY
MBaAFE25Uu0c16OAPPTb/TQOp0ljJougMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGJsUzdSelhvNEE4OU52OU5BNm5TV01taTZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9jNGYyZTItMDE4OC00YTQzLTg1MDMt
ZDI2MDFjYzEyMzc3LzEvR3MxM01yeGQ2TDc4ZFZ0bk0xWlN2NG5Zdks4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9jNGYyZTItMDE4OC00YTQzLTg1MDMtZDI2MDFjYzEyMzc3
LzEvVGJsUzdSelhvNEE4OU52OU5BNm5TV01taTZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+4yMA0G
CSqGSIb3DQEBCwUAA4IBAQB/verNBRG5RHgm73NpyoJIuvdohSMlMO0iVQPGrVV+
1ZIH/CgnEJp13i1GuHUv4AJ46pXTHmA9mN2Y8+Yw9za9k/0BV3Wm53z8I7/i45g/
reki24xsQ+9181zQFZRnYH1eBcOGlWcDk5t9golReCXu4lghREBkr7sXC2MGXsD9
tfZWJ39DmxXwrpE3T4nEJ2HWoRV/ocTf+NTztPYC4kzDjCKqOXQHpGULKrEi3ZDy
EMXpaVV7aasX7HcPbfu4yRhVXzR66cVYm0LrpIkhjc2snKp6gASmzutLJyKbEtat
Y4/y6NUUtC42eJHNK3WfL/54pJ/0PotZ/Lr+mt89H4rY
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:56 2024 by rpki-client on console-ams.rpki-client.org