Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/GyKQRos5lr4tannM4u5ALlzj2_c.roa
File: GyKQRos5lr4tannM4u5ALlzj2_c.roa (raw, json)
Hash identifier: CjimQTOe4BsaqbJjMT/sm4fc4NEuBF3PIAwXQfo+XMc=
Subject key identifier: 1B:22:90:46:8B:39:96:BE:2D:6A:79:CC:E2:EE:40:2E:5C:E3:DB:F7
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01896354DA1F69B18440A00887FB8BCB9486
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/GyKQRos5lr4tannM4u5ALlzj2_c.roa
Signing time: Mon 17 Jul 2023 10:10:52 +0000
ROA not before: Mon 17 Jul 2023 10:10:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.209.128.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 17 Jul 2023 18:36:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:54:da:1f:69:b1:84:40:a0:08:87:fb:8b:cb:94:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jul 17 10:10:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b2290468b3996be2d6a79cce2ee402e5ce3dbf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ff:3b:08:2d:f4:c5:14:1b:a8:24:95:f7:68:
76:3b:d3:92:8c:43:f0:f6:64:bc:35:ac:fe:26:af:
23:ba:5b:cf:9f:39:1f:a3:44:a8:2b:f8:b7:4f:18:
e4:22:5e:48:00:6c:88:7c:ad:7f:b4:1c:15:43:d1:
e3:7a:ac:55:c5:06:10:69:cb:49:58:70:6a:25:4a:
06:e0:15:e3:c3:c9:4f:61:a6:0b:ca:b9:14:f6:ad:
45:b5:d9:0f:58:b8:9a:e5:55:eb:59:47:91:90:10:
85:fb:34:bf:95:3a:0b:90:9c:1e:8d:1b:49:b1:b8:
14:69:4d:da:33:05:f2:e9:14:cf:fb:fd:15:91:ba:
17:48:af:a7:4b:04:48:93:93:9d:2c:9b:4d:11:37:
d8:bd:c5:4a:bb:ae:e6:5b:38:7b:ad:9f:1e:55:6f:
14:00:52:8a:f0:57:15:0c:1d:5b:8c:25:0c:d5:84:
c3:2c:23:c0:5a:9f:cc:e6:fa:7a:7e:e2:9e:ea:25:
4b:84:a4:36:45:31:fc:2d:eb:cf:86:2e:6d:20:61:
13:c8:87:17:eb:e9:44:8c:9b:fe:0a:39:9b:af:78:
28:ff:41:f7:af:f1:3d:83:aa:1b:b6:90:0c:a6:07:
1e:a5:47:3f:c8:d5:80:b5:5f:da:5e:09:a4:42:1c:
85:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:22:90:46:8B:39:96:BE:2D:6A:79:CC:E2:EE:40:2E:5C:E3:DB:F7
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/GyKQRos5lr4tannM4u5ALlzj2_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.128.0/22
Signature Algorithm: sha256WithRSAEncryption
56:87:3c:0c:65:25:81:a4:23:62:65:2c:ee:71:9b:14:8c:56:
47:bb:a9:a9:ca:a7:c8:5b:f5:e8:13:a5:a1:08:5b:3f:1c:7a:
e4:6f:c7:ba:c6:50:c6:7f:2b:b6:0d:99:aa:3c:a2:50:c4:1e:
1a:64:15:64:db:37:66:9c:fc:43:85:e9:30:05:c9:db:0a:14:
a0:ec:bd:c8:65:75:59:71:00:18:f4:68:2e:f1:b0:3d:22:5b:
52:9a:20:42:97:fb:7b:1a:fb:55:33:33:2d:91:05:be:18:cd:
72:99:97:a7:e8:41:12:cc:6e:59:6b:c8:ec:74:37:4c:88:fb:
0a:b6:33:52:df:96:56:92:49:a6:48:13:ca:8d:f5:a3:1a:ea:
7a:f9:09:04:27:b4:66:60:60:3c:f3:ce:48:c6:44:87:fa:e1:
b8:c9:96:9c:92:76:80:23:46:a6:4f:54:bd:de:b1:17:39:1d:
49:1f:c5:68:54:44:5b:28:7f:9e:44:e2:f6:56:21:a9:46:a3:
e2:8e:63:34:7d:a5:44:f8:ef:5e:a3:57:0b:c2:f0:b4:2b:00:
85:b5:24:36:21:ef:e7:9d:78:18:bd:e0:ff:47:42:9e:38:25:
64:d5:29:db:9f:c0:fe:ef:89:16:45:be:15:ca:ac:27:1a:7d:
e2:7d:6a:57
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYljVNofabGEQKAIh/uLy5SGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5M2RhMjAxOTkwOWQ5ZmMzNzgyOWZkOWVjMjlkOTQ4ZWNm
ZjdjOTIwHhcNMjMwNzE3MTAxMDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjIyOTA0NjhiMzk5NmJlMmQ2YTc5Y2NlMmVlNDAyZTVjZTNkYmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtf87CC30xRQbqCSV92h2O9OSjEPw
9mS8Naz+Jq8julvPnzkfo0SoK/i3TxjkIl5IAGyIfK1/tBwVQ9HjeqxVxQYQactJ
WHBqJUoG4BXjw8lPYaYLyrkU9q1FtdkPWLia5VXrWUeRkBCF+zS/lToLkJwejRtJ
sbgUaU3aMwXy6RTP+/0VkboXSK+nSwRIk5OdLJtNETfYvcVKu67mWzh7rZ8eVW8U
AFKK8FcVDB1bjCUM1YTDLCPAWp/M5vp6fuKe6iVLhKQ2RTH8LevPhi5tIGETyIcX
6+lEjJv+Cjmbr3go/0H3r/E9g6obtpAMpgcepUc/yNWAtV/aXgmkQhyFWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBsikEaLOZa+LWp5zOLuQC5c49v3MB8GA1UdIwQY
MBaAFNk9ogGZCdn8N4Kf2ewp2Ujs/3ySMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgt
ZjVhZGRkZGYxZWM1LzEvR3lLUVJvczVscjR0YW5uTTR1NUFMbHpqMl9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgtZjVhZGRkZGYxZWM1
LzEvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvNGAMA0G
CSqGSIb3DQEBCwUAA4IBAQBWhzwMZSWBpCNiZSzucZsUjFZHu6mpyqfIW/XoE6Wh
CFs/HHrkb8e6xlDGfyu2DZmqPKJQxB4aZBVk2zdmnPxDhekwBcnbChSg7L3IZXVZ
cQAY9Ggu8bA9IltSmiBCl/t7GvtVMzMtkQW+GM1ymZen6EESzG5Za8jsdDdMiPsK
tjNS35ZWkkmmSBPKjfWjGup6+QkEJ7RmYGA8885IxkSH+uG4yZacknaAI0amT1S9
3rEXOR1JH8VoVERbKH+eROL2ViGpRqPijmM0faVE+O9eo1cLwvC0KwCFtSQ2Ie/n
nXgYveD/R0KeOCVk1Snbn8D+74kWRb4VyqwnGn3ifWpX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:54 2024 by rpki-client on console-ams.rpki-client.org