Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/gjh_rlU64JSuISFzEIbsKSTd91I.roa
File: gjh_rlU64JSuISFzEIbsKSTd91I.roa (raw, json)
Hash identifier: RRUX1nCETJJtE6STRedgSGto/Z59wfAWJzuL+1wLkgg=
Subject key identifier: 82:38:7F:AE:55:3A:E0:94:AE:21:21:73:10:86:EC:29:24:DD:F7:52
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 0186732A9A8F86788C799B9977DD139AF457
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/gjh_rlU64JSuISFzEIbsKSTd91I.roa
Signing time: Tue 21 Feb 2023 08:50:17 +0000
ROA not before: Tue 21 Feb 2023 08:50:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60847
IP address blocks: 213.226.116.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:73:2a:9a:8f:86:78:8c:79:9b:99:77:dd:13:9a:f4:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Feb 21 08:50:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82387fae553ae094ae2121731086ec2924ddf752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a1:46:2a:67:2f:4c:56:2e:30:19:e4:c1:e5:
c6:89:22:13:e7:c0:9a:fa:f5:48:fd:c7:d7:96:ac:
d7:b9:f3:74:8f:2f:e2:e1:7e:4f:87:1b:b3:b5:60:
2e:0d:52:14:6a:bb:8f:18:b0:d1:4d:d3:b7:6c:65:
8f:3e:e6:d4:c1:10:c3:29:f8:79:98:88:01:3b:65:
6b:39:89:a8:93:68:82:05:06:06:2c:0c:89:ac:67:
fc:87:e6:11:71:af:f2:bb:ab:74:ab:99:0d:20:82:
66:10:21:39:7d:0f:76:cb:e3:5a:9c:e6:92:04:7b:
40:71:b6:1a:4e:9d:9f:34:51:aa:10:cb:02:8a:c6:
fd:cc:77:c3:1f:93:8c:a1:29:4a:63:4d:d5:96:82:
73:b1:c3:8f:b5:b5:08:ad:34:1b:c9:b9:bf:8a:09:
fd:87:99:77:07:85:cd:b7:68:55:de:ae:9b:74:cb:
71:fa:61:f5:1f:e2:49:37:77:70:f7:59:be:91:6c:
ae:8b:80:90:c3:38:f4:23:ad:b9:90:ae:b0:8b:6a:
d5:12:f1:76:d4:8c:f5:8f:ef:69:22:ba:69:d9:a9:
14:43:34:e0:92:89:b4:98:16:a3:04:d8:10:21:61:
fb:70:b6:23:94:e8:c2:e5:e2:f9:24:15:50:16:62:
cd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:38:7F:AE:55:3A:E0:94:AE:21:21:73:10:86:EC:29:24:DD:F7:52
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/gjh_rlU64JSuISFzEIbsKSTd91I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.226.116.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:65:42:4f:7b:db:b4:ee:13:6a:ef:3c:83:9d:f1:0e:52:46:
43:1c:0c:f8:dd:26:4a:06:85:51:3d:83:84:7c:a3:82:e4:f0:
00:92:f4:b2:1f:2f:7d:58:c4:4c:65:00:6e:5d:b0:8e:45:24:
4e:bb:2e:a3:ef:b3:d0:47:25:78:cb:93:9b:78:b1:0c:c5:e2:
ea:a9:e9:7d:16:49:50:c0:4f:3a:ea:e1:14:e9:f8:2e:fd:b6:
f8:3e:e6:34:e6:b3:d6:23:22:c9:20:2e:12:9d:fb:fe:4a:66:
1f:ad:26:5f:4a:2a:19:b5:84:23:0a:9f:38:d6:67:b5:bc:41:
c4:d9:bf:2d:ae:82:37:6c:bb:86:ce:42:d6:78:2d:79:35:de:
22:10:63:01:f9:97:db:78:a2:09:8b:4c:5c:e1:89:e2:d7:06:
44:e9:07:ac:fa:57:25:ef:a5:f5:fb:09:ce:dd:43:26:a6:f6:
91:3f:ac:b4:3d:fa:4e:04:2a:82:97:4a:24:24:eb:61:09:5c:
d6:8b:ec:72:ef:d2:4e:2b:3b:4e:40:ad:58:85:2e:ba:7c:b6:
c8:8b:b3:fb:53:88:b7:08:db:ef:3e:c7:8c:22:d7:fb:4b:ab:
d4:40:d1:e0:e8:7b:80:60:01:b2:d7:c8:90:39:05:9f:ee:50:
84:ef:2d:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZzKpqPhniMeZuZd90TmvRXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx
NzgzZDAwHhcNMjMwMjIxMDg1MDE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjM4N2ZhZTU1M2FlMDk0YWUyMTIxNzMxMDg2ZWMyOTI0ZGRmNzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhaFGKmcvTFYuMBnkweXGiSIT58Ca
+vVI/cfXlqzXufN0jy/i4X5PhxuztWAuDVIUaruPGLDRTdO3bGWPPubUwRDDKfh5
mIgBO2VrOYmok2iCBQYGLAyJrGf8h+YRca/yu6t0q5kNIIJmECE5fQ92y+NanOaS
BHtAcbYaTp2fNFGqEMsCisb9zHfDH5OMoSlKY03VloJzscOPtbUIrTQbybm/ign9
h5l3B4XNt2hV3q6bdMtx+mH1H+JJN3dw91m+kWyui4CQwzj0I625kK6wi2rVEvF2
1Iz1j+9pIrpp2akUQzTgkom0mBajBNgQIWH7cLYjlOjC5eL5JBVQFmLNCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFII4f65VOuCUriEhcxCG7Ckk3fdSMB8GA1UdIwQY
MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt
NjI2NTUyMWY2ZGY3LzEvZ2poX3JsVTY0SlN1SVNGekVJYnNLU1RkOTFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3
LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1eJ0MA0G
CSqGSIb3DQEBCwUAA4IBAQArZUJPe9u07hNq7zyDnfEOUkZDHAz43SZKBoVRPYOE
fKOC5PAAkvSyHy99WMRMZQBuXbCORSROuy6j77PQRyV4y5ObeLEMxeLqqel9FklQ
wE866uEU6fgu/bb4PuY05rPWIyLJIC4Snfv+SmYfrSZfSioZtYQjCp841me1vEHE
2b8troI3bLuGzkLWeC15Nd4iEGMB+ZfbeKIJi0xc4Yni1wZE6Qes+lcl76X1+wnO
3UMmpvaRP6y0PfpOBCqCl0okJOthCVzWi+xy79JOKztOQK1YhS66fLbIi7P7U4i3
CNvvPseMItf7S6vUQNHg6HuAYAGy18iQOQWf7lCE7y0g
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-fra.rpki-client.org