Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/GqTjZrcvbKSDQXYWj_AXIAcGev4.roa
File: GqTjZrcvbKSDQXYWj_AXIAcGev4.roa (raw, json)
Hash identifier: X+/Si1BgHvYFgs7xamAavL+j5PoHPskPK4vhyxxY0Zg=
Subject key identifier: 1A:A4:E3:66:B7:2F:6C:A4:83:41:76:16:8F:F0:17:20:07:06:7A:FE
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 019427B54EE1497F133B64939B35FC4F4CFC
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/GqTjZrcvbKSDQXYWj_AXIAcGev4.roa
Signing time: Thu 02 Jan 2025 15:49:41 +0000
ROA not before: Thu 02 Jan 2025 15:49:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3170
IP address blocks: 212.69.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Feb 2025 09:49:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:4e:e1:49:7f:13:3b:64:93:9b:35:fc:4f:4c:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 15:49:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1aa4e366b72f6ca4834176168ff0172007067afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:23:40:a4:63:57:69:90:f1:88:9c:13:08:7f:
a8:2e:47:52:83:36:d8:a3:30:2a:14:20:4e:71:56:
59:f7:48:b7:98:17:32:61:91:8d:ec:9c:a0:48:3e:
91:b1:f8:da:45:6e:c4:7a:66:0d:84:c5:46:ca:46:
b5:ae:bc:ea:a6:4a:ad:2b:bc:91:c1:02:98:2d:54:
3f:f5:de:6a:1a:29:e0:65:28:38:75:46:ca:14:2a:
0c:7f:9b:12:a8:dc:ab:b4:94:2f:31:32:9e:ca:2c:
d0:74:c5:73:c1:61:f7:8e:16:9c:70:ac:22:fc:d4:
e3:2c:ba:2c:6f:16:c2:00:bc:72:f3:aa:28:39:9d:
67:67:39:50:cc:57:67:97:63:27:cc:a0:fd:c6:27:
d1:87:84:38:67:58:58:73:5b:40:4c:83:c1:9b:0f:
8e:d4:e5:07:5c:d6:aa:de:ae:e6:42:d1:ad:60:cd:
10:ca:45:6a:15:da:ed:54:b7:60:4a:ea:88:11:05:
ae:85:e2:2a:9b:9a:e7:a0:fb:76:9e:f3:fc:f6:89:
6b:f8:29:c7:a8:1a:6c:ea:3f:a0:11:07:87:40:bf:
72:37:7e:fc:2a:c5:7c:26:7b:d6:27:b6:66:6d:2a:
dd:76:32:f6:de:c5:0e:75:ba:a6:c2:9e:95:52:be:
34:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A4:E3:66:B7:2F:6C:A4:83:41:76:16:8F:F0:17:20:07:06:7A:FE
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/GqTjZrcvbKSDQXYWj_AXIAcGev4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.0.0/24
Signature Algorithm: sha256WithRSAEncryption
13:55:c3:50:0a:99:e3:7e:a2:fe:ba:6a:6a:79:10:97:d4:05:
a0:2a:a3:5e:83:b3:42:4f:26:01:b4:54:27:13:e0:e4:e7:63:
ac:92:d5:9c:90:ce:eb:4f:13:36:6c:b5:7c:d1:29:dd:a4:58:
58:94:4f:3a:c6:b6:d1:f0:dc:62:aa:30:21:ad:bb:42:5b:81:
30:29:64:8b:ff:12:71:d8:98:37:0d:7a:7a:50:83:57:e3:94:
f0:71:ea:16:c2:74:c8:23:4a:b5:2e:d6:38:ba:8f:65:e8:5b:
44:52:bb:de:a7:46:95:26:f5:6c:56:4d:cb:fc:5b:cd:e3:2e:
de:2b:06:13:fa:fa:f9:83:49:12:72:1e:d0:37:af:f2:ec:d1:
18:eb:3c:d8:58:fc:32:9e:33:56:5d:7b:8d:f8:8b:e4:48:e5:
f6:e5:9b:7c:32:05:79:95:d6:a0:52:12:35:1c:cb:01:24:9b:
d7:b5:04:8c:e4:90:87:4e:e9:30:17:e6:d1:35:11:38:30:99:
13:c5:76:cf:9c:cd:71:2c:b3:44:9c:32:cd:db:17:24:f0:25:
08:36:31:e8:00:56:74:b9:ab:cf:81:50:f1:6d:df:64:64:a6:
0f:97:3f:4e:e2:7c:e7:e4:e4:59:eb:8f:a9:00:2c:ca:f3:36:
ee:5a:68:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:34:42 2025 by rpki-client