Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Gc89kmGdSnouEMFpUfmAdrkAtw0.roa
File: Gc89kmGdSnouEMFpUfmAdrkAtw0.roa (raw, json)
Hash identifier: 7GeRUIUzkuSUuj+TcmaFcV6M0TzTTEb5LExAUY/ln6Q=
Subject key identifier: 19:CF:3D:92:61:9D:4A:7A:2E:10:C1:69:51:F9:80:76:B9:00:B7:0D
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01856F42A66331F91743586BB22BA36416A8
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Gc89kmGdSnouEMFpUfmAdrkAtw0.roa
Signing time: Sun 01 Jan 2023 21:35:16 +0000
ROA not before: Sun 01 Jan 2023 21:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29390
IP address blocks: 94.131.0.0/23 maxlen: 24
2a01:d0:3a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 May 2023 22:27:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a6:63:31:f9:17:43:58:6b:b2:2b:a3:64:16:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 1 21:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19cf3d92619d4a7a2e10c16951f98076b900b70d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b9:74:e4:1c:85:07:f0:cb:8a:9d:c1:f9:57:
a1:a9:fb:ff:32:95:d2:b3:59:9d:03:33:8c:2e:7f:
23:0d:48:a2:b5:55:0a:b3:d5:5b:07:be:90:e0:44:
20:2b:02:2a:27:95:d2:24:58:68:d4:04:97:a0:b4:
be:e5:29:fb:19:f1:04:e9:bc:c4:fe:78:b3:cd:21:
5f:54:83:d7:38:cb:b8:29:07:c7:c9:d6:20:62:dd:
3b:f5:55:ad:39:30:ca:ac:6f:7b:b4:3f:68:f6:85:
8c:fe:7c:57:2a:56:a9:01:f0:da:f7:ea:ec:72:90:
d4:47:37:f2:8d:95:1b:db:d8:11:ad:04:15:c2:4d:
1f:c3:93:c6:d2:c9:b6:16:91:9d:ea:ae:df:67:8b:
c8:9d:6c:aa:f9:9f:02:31:49:f8:0f:69:62:8f:ef:
33:8b:bd:a9:cd:bd:69:f7:1f:79:75:ab:3e:bd:d5:
7b:5b:47:47:92:6f:f0:81:4f:2a:89:d6:16:0f:66:
04:07:bd:6d:ff:05:ea:1b:98:61:fe:b3:6a:37:e7:
70:d3:fc:a3:23:d4:6c:20:3c:80:8f:76:d5:31:7c:
43:8f:fe:29:52:cf:12:70:24:07:eb:4f:58:7a:56:
d6:bb:ac:e9:f7:d6:57:63:c1:77:55:f5:db:b3:11:
82:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CF:3D:92:61:9D:4A:7A:2E:10:C1:69:51:F9:80:76:B9:00:B7:0D
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Gc89kmGdSnouEMFpUfmAdrkAtw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.0.0/23
IPv6:
2a01:d0:3a::/48
Signature Algorithm: sha256WithRSAEncryption
65:dd:6c:f5:e2:08:06:87:a7:dc:66:bd:3f:b0:a6:4f:93:86:
be:21:c9:48:c0:38:a7:7c:58:b8:84:e4:a0:10:2f:36:14:89:
79:9d:33:1c:e5:17:c9:22:e4:3b:54:b5:74:75:c1:2e:1e:62:
dd:c7:08:2a:05:ea:7f:16:18:e9:2c:c4:ab:de:63:dd:6b:03:
7a:08:1f:ad:2c:d9:d6:4f:a3:97:9d:e9:1c:d9:b1:23:7f:7e:
01:57:d0:ca:ec:2d:b3:60:9f:6d:1e:f1:f8:ce:05:e4:8d:b5:
6d:fa:65:96:05:35:32:86:ac:20:95:27:30:2c:a5:0c:80:08:
7f:ec:24:ad:ec:ac:37:e1:40:11:a3:e0:68:23:e9:7e:a0:f1:
d6:47:de:9a:09:35:86:e0:12:96:99:fa:e8:1f:d2:72:55:b9:
1a:1a:f5:ca:0f:04:19:f9:44:28:4c:d5:5b:1f:ed:71:97:8e:
c9:a4:97:c4:ce:31:77:c9:dc:b3:72:71:10:d3:6a:78:1a:84:
82:31:49:65:28:ca:da:54:60:c8:0e:a9:c7:cb:6d:3c:0b:2c:
c8:93:ae:6e:40:d7:b3:d7:18:18:39:09:90:5c:ce:84:75:29:
dd:03:c3:9a:e1:7d:72:a5:1a:a0:0d:10:1f:d9:a6:87:6b:2e:
80:90:70:d6
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVvQqZjMfkXQ1hrsiujZBaoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjMwMTAxMjEzNTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWNmM2Q5MjYxOWQ0YTdhMmUxMGMxNjk1MWY5ODA3NmI5MDBiNzBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrl05ByFB/DLip3B+Vehqfv/MpXS
s1mdAzOMLn8jDUiitVUKs9VbB76Q4EQgKwIqJ5XSJFho1ASXoLS+5Sn7GfEE6bzE
/nizzSFfVIPXOMu4KQfHydYgYt079VWtOTDKrG97tD9o9oWM/nxXKlapAfDa9+rs
cpDURzfyjZUb29gRrQQVwk0fw5PG0sm2FpGd6q7fZ4vInWyq+Z8CMUn4D2lij+8z
i72pzb1p9x95das+vdV7W0dHkm/wgU8qidYWD2YEB71t/wXqG5hh/rNqN+dw0/yj
I9RsIDyAj3bVMXxDj/4pUs8ScCQH609YelbWu6zp99ZXY8F3VfXbsxGC4QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBnPPZJhnUp6LhDBaVH5gHa5ALcNMB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEvR2M4OWttR2RTbm91RU1GcFVmbUFkcmtBdHcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBXoMAMA8E
AgACMAkDBwAqAQDQADowDQYJKoZIhvcNAQELBQADggEBAGXdbPXiCAaHp9xmvT+w
pk+Thr4hyUjAOKd8WLiE5KAQLzYUiXmdMxzlF8ki5DtUtXR1wS4eYt3HCCoF6n8W
GOksxKveY91rA3oIH60s2dZPo5ed6RzZsSN/fgFX0MrsLbNgn20e8fjOBeSNtW36
ZZYFNTKGrCCVJzAspQyACH/sJK3srDfhQBGj4Ggj6X6g8dZH3poJNYbgEpaZ+ugf
0nJVuRoa9coPBBn5RChM1Vsf7XGXjsmkl8TOMXfJ3LNycRDTangahIIxSWUoytpU
YMgOqcfLbTwLLMiTrm5A17PXGBg5CZBczoR1Kd0Dw5rhfXKlGqANEB/ZpodrLoCQ
cNY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org