Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gm_7d3af8idbhSv_Szw19xH1Zj4.roa
File: gm_7d3af8idbhSv_Szw19xH1Zj4.roa (raw, json)
Hash identifier: rD7XznjojDKTmlJh8M2Niq2HMJXJQtrgpc44BNW1Vf4=
Subject key identifier: 82:6F:FB:77:76:9F:F2:27:5B:85:2B:FF:4B:3C:35:F7:11:F5:66:3E
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018F6A009FB8C14216AD3CFD86CC466F3D7B
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gm_7d3af8idbhSv_Szw19xH1Zj4.roa
Signing time: Sat 11 May 2024 23:32:56 +0000
ROA not before: Sat 11 May 2024 23:32:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42910
IP address blocks: 31.210.50.0/24 maxlen: 24
31.210.51.0/24 maxlen: 24
31.210.53.0/24 maxlen: 24
78.135.78.0/24 maxlen: 24
188.132.170.0/24 maxlen: 24
188.132.211.0/24 maxlen: 24
188.132.215.0/24 maxlen: 24
188.132.218.0/24 maxlen: 24
188.132.227.0/24 maxlen: 24
188.132.228.0/24 maxlen: 24
212.68.36.0/24 maxlen: 24
212.68.38.0/24 maxlen: 24
212.68.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 12:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6a:00:9f:b8:c1:42:16:ad:3c:fd:86:cc:46:6f:3d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 11 23:32:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=826ffb77769ff2275b852bff4b3c35f711f5663e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9f:f1:6c:e0:62:aa:65:a5:2e:4a:57:11:83:
2a:8c:20:62:09:1d:f0:db:df:b6:dd:f1:40:30:84:
8f:b2:28:b1:f6:03:ab:7e:63:4a:05:c4:22:eb:f9:
e2:4d:79:07:39:d6:ba:b7:72:4a:f1:5c:f1:14:c0:
e8:03:f5:10:50:a8:8a:c5:5f:23:60:de:c5:45:a9:
b1:c9:91:0b:90:cd:11:68:5e:eb:e6:5a:2f:61:b5:
a4:31:c2:ae:be:25:a8:cc:8d:a7:0a:de:ee:0b:a4:
37:32:b0:eb:20:a7:af:49:5a:f7:db:60:03:bf:5d:
c6:2b:77:88:9c:2c:0a:69:48:b3:1a:98:71:73:7a:
97:91:12:05:2a:51:ee:1f:8e:51:78:36:79:47:94:
aa:e1:94:38:1d:46:53:ae:97:05:ed:79:e3:b0:78:
42:7a:ed:25:4b:1e:12:ca:8a:d2:4e:93:32:b4:4e:
03:b1:c3:28:4b:7f:93:f7:03:d2:2d:91:d5:55:42:
e3:d0:a1:46:35:f3:4c:24:0f:1d:67:06:cc:68:62:
be:68:a4:4e:68:b7:fd:5c:fd:92:e8:67:5e:43:c6:
42:bd:91:fb:8f:12:4e:20:0d:e1:fc:5b:60:ec:34:
4d:ab:2f:a5:3b:78:d9:a1:20:ac:85:26:a3:63:5c:
78:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:6F:FB:77:76:9F:F2:27:5B:85:2B:FF:4B:3C:35:F7:11:F5:66:3E
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gm_7d3af8idbhSv_Szw19xH1Zj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.50.0/23
31.210.53.0/24
78.135.78.0/24
188.132.170.0/24
188.132.211.0/24
188.132.215.0/24
188.132.218.0/24
188.132.227.0-188.132.228.255
212.68.36.0/24
212.68.38.0/24
212.68.49.0/24
Signature Algorithm: sha256WithRSAEncryption
21:36:15:e1:ee:5f:35:e8:da:e1:7a:82:81:9a:e3:40:cf:c0:
2d:a8:a2:4a:a2:3e:a0:36:ab:35:36:62:a1:c0:b8:c8:3a:36:
7e:bf:6b:33:03:4c:91:c5:89:70:af:d8:29:95:b5:15:60:33:
ba:9d:e2:d3:33:ea:9b:5a:8e:18:9e:87:a4:13:8a:bd:60:28:
ff:37:d0:6c:a4:29:57:6b:c2:77:af:90:56:e4:ae:03:0a:21:
46:a2:7a:74:b0:fc:c2:64:2a:16:a1:e9:0b:b1:02:bd:90:d0:
25:ac:c7:7b:14:95:cb:85:e3:ad:cb:84:45:f5:4a:04:f5:e6:
37:83:79:3f:dc:45:c6:a6:d3:86:67:8a:9e:23:b3:d8:a3:ba:
dd:68:f8:b3:36:1d:07:ad:4d:7d:cd:6f:e7:f6:50:7d:6d:b3:
19:c5:14:22:06:38:70:32:65:70:17:1c:06:ee:2a:78:3e:79:
1a:7a:78:2d:d8:52:b9:eb:eb:46:c7:af:f1:03:f9:18:4b:66:
5f:7d:d0:67:6a:24:b0:70:41:69:a7:08:9f:af:5c:ad:75:5b:
0e:24:d1:8b:83:ba:0d:7b:28:1b:8a:e6:0e:03:b2:c4:ba:74:
f6:4a:c1:bc:7f:ea:7b:45:8f:83:70:7f:01:11:67:00:2b:bf:
05:d6:a9:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org