Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/GC3zfyctyy_afXDuMkgIE9GCZwM.roa
File: GC3zfyctyy_afXDuMkgIE9GCZwM.roa (raw, json)
Hash identifier: ezV7+s+T6cCb7Az8ZyvpUltwQxfu9ZrfYiXaVdPV2Zw=
Subject key identifier: 18:2D:F3:7F:27:2D:CB:2F:DA:7D:70:EE:32:48:08:13:D1:82:67:03
Certificate issuer: /CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Certificate serial: 0185719550E3FCB2E8CD9029CF8A94C85184
Authority key identifier: 1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/GC3zfyctyy_afXDuMkgIE9GCZwM.roa
Signing time: Mon 02 Jan 2023 08:24:48 +0000
ROA not before: Mon 02 Jan 2023 08:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21208
IP address blocks: 91.228.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:50:e3:fc:b2:e8:cd:90:29:cf:8a:94:c8:51:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Validity
Not Before: Jan 2 08:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=182df37f272dcb2fda7d70ee32480813d1826703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:0c:2a:87:a3:1d:99:62:a5:b3:2c:f6:ac:58:
a8:c2:76:5a:59:99:b9:18:4a:28:bf:16:fa:bf:cd:
af:45:a4:fb:b1:f3:56:a4:df:cb:92:db:98:97:4b:
bb:ec:a8:fd:96:be:0e:38:a9:56:73:c7:49:9a:73:
f8:c5:a7:8d:a6:14:92:34:8d:8d:2c:03:e7:21:65:
ce:95:1e:c0:62:52:de:51:b0:e5:bc:f4:0b:0f:e4:
d6:89:cc:14:3d:78:3b:3b:58:e9:77:1d:2a:5c:9b:
17:d2:f0:c5:84:2e:de:ce:84:46:f0:b9:9d:8d:fd:
09:c1:1a:88:3a:93:24:16:90:46:64:67:8f:ad:9a:
e7:ad:a1:38:31:b7:06:84:86:5f:e4:b1:b5:9d:e3:
97:7b:98:5a:b9:43:bd:45:c0:69:6f:75:e8:0b:82:
7b:27:1f:6d:d0:ea:c4:9e:29:a2:00:26:2e:b0:55:
0c:c2:2a:53:c7:7a:16:36:28:8a:16:d1:de:5b:d4:
ac:8c:1b:f8:a9:5b:8e:be:2f:49:d9:76:0d:fd:c6:
37:7e:fc:de:f4:fe:75:53:29:2a:30:a9:97:2c:90:
da:08:01:dd:07:a5:6a:40:ee:9d:e9:72:fb:34:bf:
3c:27:ce:9a:94:07:48:7b:a4:f9:cb:ac:d7:f4:0e:
92:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2D:F3:7F:27:2D:CB:2F:DA:7D:70:EE:32:48:08:13:D1:82:67:03
X509v3 Authority Key Identifier:
keyid:1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/GC3zfyctyy_afXDuMkgIE9GCZwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.188.0/24
Signature Algorithm: sha256WithRSAEncryption
34:63:da:04:92:02:78:49:03:1d:ca:25:3a:cf:e3:b0:60:7a:
7c:5e:81:0e:78:4a:b0:e8:0f:bb:cc:5d:dc:d6:29:84:eb:ee:
97:d0:01:ec:a2:db:56:7d:2c:53:d9:56:7c:8c:2f:af:49:a9:
27:03:29:e3:b0:b7:36:07:2a:bf:a0:44:dc:1c:70:41:21:06:
80:2c:bf:ff:07:26:0c:05:ad:dc:00:aa:b4:ba:36:e9:7a:16:
84:9f:20:52:1f:fa:ef:17:2b:65:7d:75:0e:78:2a:f7:ff:05:
95:16:6c:58:e3:6f:97:6a:54:ec:c2:cc:dc:1f:99:a8:ac:28:
0b:16:1a:06:73:e8:1e:0c:2f:bc:0b:a5:ee:b4:a0:64:69:12:
d2:17:a0:1b:b9:42:78:68:7a:03:bb:19:7b:0a:15:01:cc:95:
70:f9:75:16:cc:98:88:26:e2:74:2a:01:44:06:9c:15:1f:9a:
88:09:12:81:e7:59:ab:10:82:d5:b5:a9:c0:6d:40:1d:79:ad:
32:ab:ec:d8:48:84:49:42:25:ec:a7:ac:c9:00:1c:54:68:3d:
83:70:23:9d:9e:4a:66:73:10:c0:33:3d:6f:70:a2:d9:35:1f:
45:20:69:c2:56:0b:e4:75:f4:36:6d:f3:eb:cd:2e:d9:5f:28:
86:dd:40:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxlVDj/LLozZApz4qUyFGEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmOTAwNGVhMDUzOGM3M2MyM2EzZDFkZmRjMTIxZjBlNjAw
YWNkZjUwHhcNMjMwMTAyMDgyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODJkZjM3ZjI3MmRjYjJmZGE3ZDcwZWUzMjQ4MDgxM2QxODI2NzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgAwqh6MdmWKlsyz2rFiownZaWZm5
GEoovxb6v82vRaT7sfNWpN/LktuYl0u77Kj9lr4OOKlWc8dJmnP4xaeNphSSNI2N
LAPnIWXOlR7AYlLeUbDlvPQLD+TWicwUPXg7O1jpdx0qXJsX0vDFhC7ezoRG8Lmd
jf0JwRqIOpMkFpBGZGePrZrnraE4MbcGhIZf5LG1neOXe5hauUO9RcBpb3XoC4J7
Jx9t0OrEnimiACYusFUMwipTx3oWNiiKFtHeW9SsjBv4qVuOvi9J2XYN/cY3fvze
9P51UykqMKmXLJDaCAHdB6VqQO6d6XL7NL88J86alAdIe6T5y6zX9A6SCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBgt838nLcsv2n1w7jJICBPRgmcDMB8GA1UdIwQY
MBaAFB+QBOoFOMc8I6PR39wSHw5gCs31MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDVBRTZnVTR4endqbzlIZjNCSWZEbUFLemZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8yM2Q3YjctNWFlNi00NjMxLWIxNDIt
NDk2YWJlZTdjZTc5LzEvR0MzemZ5Y3R5eV9hZlhEdU1rZ0lFOUdDWndNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy8yM2Q3YjctNWFlNi00NjMxLWIxNDItNDk2YWJlZTdjZTc5
LzEvSDVBRTZnVTR4endqbzlIZjNCSWZEbUFLemZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+S8MA0G
CSqGSIb3DQEBCwUAA4IBAQA0Y9oEkgJ4SQMdyiU6z+OwYHp8XoEOeEqw6A+7zF3c
1imE6+6X0AHsottWfSxT2VZ8jC+vSaknAynjsLc2Byq/oETcHHBBIQaALL//ByYM
Ba3cAKq0ujbpehaEnyBSH/rvFytlfXUOeCr3/wWVFmxY42+XalTswszcH5morCgL
FhoGc+geDC+8C6XutKBkaRLSF6AbuUJ4aHoDuxl7ChUBzJVw+XUWzJiIJuJ0KgFE
BpwVH5qICRKB51mrEILVtanAbUAdea0yq+zYSIRJQiXsp6zJABxUaD2DcCOdnkpm
cxDAMz1vcKLZNR9FIGnCVgvkdfQ2bfPrzS7ZXyiG3UDk
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:19 2024 by rpki-client on console-fra.rpki-client.org