Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/GNxBPGYh_1_8RgEM9Ir5kL7BdFQ.roa
File: GNxBPGYh_1_8RgEM9Ir5kL7BdFQ.roa (raw, json)
Hash identifier: aoKX/O+1v70mbtuNZRNgGD0LOXLLH0EC+BqQjgKDTgw=
Subject key identifier: 18:DC:41:3C:66:21:FF:5F:FC:46:01:0C:F4:8A:F9:90:BE:C1:74:54
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B531C1BFAD1654BE918C6BC5E625007
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/GNxBPGYh_1_8RgEM9Ir5kL7BdFQ.roa
Signing time: Sun 01 Jan 2023 03:14:46 +0000
ROA not before: Sun 01 Jan 2023 03:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42926
IP address blocks: 213.238.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Mar 2023 18:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:1c:1b:fa:d1:65:4b:e9:18:c6:bc:5e:62:50:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18dc413c6621ff5ffc46010cf48af990bec17454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:88:61:ef:f9:6f:6c:81:ef:2f:f1:25:76:1a:
24:ac:86:dd:81:62:2a:ea:18:53:a3:48:3b:10:fe:
c8:d1:63:fd:f9:0a:f5:59:82:91:fd:b4:4d:f0:3c:
82:31:c9:a7:c8:76:3b:dd:39:fe:74:26:60:65:da:
cc:18:7e:30:1b:8b:d7:a6:3d:4b:44:3a:f4:f5:bb:
05:02:01:91:80:9c:d5:18:54:79:db:7a:30:58:74:
4c:76:18:e3:e3:c8:76:3a:64:50:30:cb:97:a1:4e:
5f:df:30:44:2f:bb:f4:c1:0d:52:93:78:e0:24:e7:
66:a1:02:2c:a6:05:10:ea:5f:91:a6:a6:44:31:a8:
c1:14:55:b3:88:64:18:5c:93:88:1e:bd:f6:49:2e:
3b:be:da:ab:7d:e9:8f:9e:c6:bf:83:5c:ae:e3:42:
a2:af:1d:82:ef:82:1f:c2:9b:98:5e:81:c5:8e:a2:
07:ba:1b:93:9e:2a:04:e4:81:e3:3d:7f:f1:11:63:
9e:3d:2c:a6:67:62:9d:17:29:b7:f4:e3:51:01:4e:
f8:54:23:3d:74:6b:0d:fa:6e:21:48:6e:f8:7b:37:
8c:4b:4c:4a:84:8a:e0:c7:e1:ec:f1:36:92:ca:d8:
11:1d:3f:ca:df:b9:33:8a:f2:f0:76:ae:e9:cf:73:
84:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:DC:41:3C:66:21:FF:5F:FC:46:01:0C:F4:8A:F9:90:BE:C1:74:54
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/GNxBPGYh_1_8RgEM9Ir5kL7BdFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.170.0/24
Signature Algorithm: sha256WithRSAEncryption
06:a5:a1:09:4c:e2:36:19:22:08:2d:79:3a:fa:89:b1:56:f5:
0d:33:23:43:9f:22:c6:61:e1:8d:f9:94:8a:66:7b:2f:c9:0d:
51:ee:12:86:61:f7:68:51:7b:2f:77:67:30:9f:df:04:18:83:
9d:f8:67:85:5a:b3:8b:b6:d1:01:b6:4c:8b:b4:b8:9b:6a:68:
89:d3:7b:49:e7:29:b8:37:cd:11:b2:ec:cc:9e:7a:ce:36:66:
9c:94:70:1c:78:3f:bd:42:55:fd:97:3d:fc:4d:16:f9:ed:ce:
f5:f2:f7:ab:ac:9e:9e:83:b2:a8:90:63:b1:86:91:76:c9:3f:
25:f0:71:94:3d:27:0c:2d:93:43:45:d9:c8:cf:6f:8e:30:82:
6c:27:a4:be:4d:68:54:3f:8f:4d:5d:29:c1:bf:99:34:45:6c:
6a:f1:dd:a4:32:a6:61:d7:f2:77:d2:df:00:dd:58:d7:cc:ff:
96:b8:5a:29:a2:3a:e7:c2:44:de:29:9a:da:2a:2d:36:ec:db:
e1:17:aa:f4:c3:9b:ef:28:40:e4:f9:7e:e5:53:a1:f7:ea:8e:
b5:41:95:65:62:e8:26:7e:2f:79:7c:f6:fc:12:bc:5d:6e:7f:
6d:73:43:99:58:c5:af:1b:6f:e0:40:6a:34:75:69:be:d3:02:
6e:9c:8a:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrUxwb+tFlS+kYxrxeYlAHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0Y2JkYTc4YjFkMWI2MTNkZjU2NWZmOTk3MDBiNmFlZTk0
MGRlM2YwHhcNMjMwMTAxMDMxNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOGRjNDEzYzY2MjFmZjVmZmM0NjAxMGNmNDhhZjk5MGJlYzE3NDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk4hh7/lvbIHvL/EldhokrIbdgWIq
6hhTo0g7EP7I0WP9+Qr1WYKR/bRN8DyCMcmnyHY73Tn+dCZgZdrMGH4wG4vXpj1L
RDr09bsFAgGRgJzVGFR523owWHRMdhjj48h2OmRQMMuXoU5f3zBEL7v0wQ1Sk3jg
JOdmoQIspgUQ6l+RpqZEMajBFFWziGQYXJOIHr32SS47vtqrfemPnsa/g1yu40Ki
rx2C74IfwpuYXoHFjqIHuhuTnioE5IHjPX/xEWOePSymZ2KdFym39ONRAU74VCM9
dGsN+m4hSG74ezeMS0xKhIrgx+Hs8TaSytgRHT/K37kzivLwdq7pz3OE6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBjcQTxmIf9f/EYBDPSK+ZC+wXRUMB8GA1UdIwQY
MBaAFFTL2nix0bYT31Zf+ZcAtq7pQN4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYt
Y2QzMTYxNWQwMWE5LzEvR054QlBHWWhfMV84UmdFTTlJcjVrTDdCZEZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYtY2QzMTYxNWQwMWE5
LzEvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1e6qMA0G
CSqGSIb3DQEBCwUAA4IBAQAGpaEJTOI2GSIILXk6+omxVvUNMyNDnyLGYeGN+ZSK
ZnsvyQ1R7hKGYfdoUXsvd2cwn98EGIOd+GeFWrOLttEBtkyLtLibamiJ03tJ5ym4
N80RsuzMnnrONmaclHAceD+9QlX9lz38TRb57c718verrJ6eg7KokGOxhpF2yT8l
8HGUPScMLZNDRdnIz2+OMIJsJ6S+TWhUP49NXSnBv5k0RWxq8d2kMqZh1/J30t8A
3VjXzP+WuFopojrnwkTeKZraKi027NvhF6r0w5vvKEDk+X7lU6H36o61QZVlYugm
fi95fPb8Erxdbn9tc0OZWMWvG2/gQGo0dWm+0wJunIri
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:36 2024 by rpki-client on console-ams.rpki-client.org