Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GnbxLvQiCot1jEn2k7EmwwG4FV8.roa
File: GnbxLvQiCot1jEn2k7EmwwG4FV8.roa (raw, json)
Hash identifier: sMf5u2ode+M3IRSmDtc8Ph0hNtwrM1EBupWnSdadCMc=
Subject key identifier: 1A:76:F1:2E:F4:22:0A:8B:75:8C:49:F6:93:B1:26:C3:01:B8:15:5F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BEC3BC07404E0A984A88BF8E40FCDA911
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GnbxLvQiCot1jEn2k7EmwwG4FV8.roa
Signing time: Mon 20 Nov 2023 10:17:00 +0000
ROA not before: Mon 20 Nov 2023 10:17:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
194.50.111.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a10:ccc0:110::/44 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 24 Nov 2023 11:14:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:3b:c0:74:04:e0:a9:84:a8:8b:f8:e4:0f:cd:a9:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 20 10:17:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a76f12ef4220a8b758c49f693b126c301b8155f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:41:c3:3a:b9:f8:2b:f1:a4:8a:a7:43:ae:94:
12:6e:a7:f5:a8:4c:fe:17:02:0b:d9:30:f9:ba:7c:
bb:5a:91:3b:7e:b3:b4:e2:90:14:61:f6:a8:e5:56:
3c:10:94:7e:eb:5b:6a:67:0a:09:ed:a0:6b:5b:fc:
df:d8:11:a7:4f:d0:e6:b4:7d:bc:6e:77:1f:44:09:
d7:1f:42:e5:60:45:83:20:5b:d0:e1:15:a2:7b:ca:
85:d4:23:ae:1e:fa:af:39:1b:54:2e:81:b8:ff:bd:
ca:37:67:d7:a8:b0:44:e8:f1:92:82:23:73:de:bb:
cd:6b:68:23:ae:70:2a:d8:1c:e6:a8:28:f5:cc:e7:
04:32:b2:b4:fa:64:56:8f:90:31:f5:a0:56:8d:a8:
8e:71:4e:b4:5e:c5:8d:71:b9:99:24:7e:82:f6:19:
9d:ec:41:05:bf:aa:32:18:67:8d:45:17:98:69:d3:
63:a1:f8:d6:be:de:eb:b7:74:9c:b0:e5:54:ff:2c:
4c:cb:08:cd:a3:7a:a7:dc:c7:fc:81:28:16:0d:1a:
38:fd:ad:84:09:91:74:e1:1b:bc:5d:fe:27:70:8c:
41:78:ea:5b:ae:5f:4e:74:7d:d6:40:65:1e:95:66:
ea:52:03:12:2f:e8:5b:a9:44:f6:b6:5c:8a:d8:79:
a8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:76:F1:2E:F4:22:0A:8B:75:8C:49:F6:93:B1:26:C3:01:B8:15:5F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/GnbxLvQiCot1jEn2k7EmwwG4FV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
185.238.188.0/22
194.50.111.0/24
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/44
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
95:10:0e:ba:ab:45:b1:e8:ba:dc:65:89:1f:12:70:12:dd:95:
fc:ce:08:e0:e8:17:79:c8:aa:e2:a6:cd:df:fc:e7:3d:d7:97:
14:1a:e4:ac:aa:68:78:61:d0:d8:18:cd:26:df:08:41:67:cf:
52:11:eb:b8:07:71:6c:14:be:0a:9f:b1:0c:dd:ea:c4:a6:ad:
48:65:e0:08:86:1c:dd:90:a3:2d:74:d7:11:49:9c:3f:73:b0:
7d:f4:82:ac:df:b8:51:fa:42:be:81:38:a5:8e:af:94:2f:f7:
47:2a:71:16:57:71:40:f9:76:69:bd:04:28:08:e4:c1:87:2f:
09:e6:84:5c:3f:c8:f3:2f:24:74:9c:53:1d:23:af:44:c0:af:
cb:38:97:75:5c:86:b0:51:78:d4:40:ea:05:5e:9b:b2:e4:77:
43:5f:95:7d:27:19:ed:34:ba:b1:17:f0:a6:3b:44:71:3a:b9:
65:52:f2:0d:91:4c:f6:cd:0d:f9:f3:5f:95:df:e8:79:36:e9:
6b:27:a9:6b:57:51:41:9c:b9:07:e0:9a:18:c3:30:ea:fd:39:
e4:64:55:4e:3e:13:7c:93:32:3c:55:fd:c6:88:b5:d9:90:60:
cd:09:04:de:44:8d:8f:97:bd:7a:b7:1f:d9:0c:b2:c4:f3:b7:
05:c9:b4:d3
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgISAYvsO8B0BOCphKiL+OQPzakRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMTIwMTAxNzAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTc2ZjEyZWY0MjIwYThiNzU4YzQ5ZjY5M2IxMjZjMzAxYjgxNTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiUHDOrn4K/GkiqdDrpQSbqf1qEz+
FwIL2TD5uny7WpE7frO04pAUYfao5VY8EJR+61tqZwoJ7aBrW/zf2BGnT9DmtH28
bncfRAnXH0LlYEWDIFvQ4RWie8qF1COuHvqvORtULoG4/73KN2fXqLBE6PGSgiNz
3rvNa2gjrnAq2BzmqCj1zOcEMrK0+mRWj5Ax9aBWjaiOcU60XsWNcbmZJH6C9hmd
7EEFv6oyGGeNRReYadNjofjWvt7rt3ScsOVU/yxMywjNo3qn3Mf8gSgWDRo4/a2E
CZF04Ru8Xf4ncIxBeOpbrl9OdH3WQGUelWbqUgMSL+hbqUT2tlyK2HmolwIDAQAB
o4ICqDCCAqQwHQYDVR0OBBYEFBp28S70IgqLdYxJ9pOxJsMBuBVfMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvR25ieEx2UWlDb3QxakVuMms3RW13d0c0RlY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG9BggrBgEFBQcBBwEB/wSBrTCBqjAYBAIAATASAwQCLZR0
AwQCue68AwQAwjJvMIGNBAIAAjCBhgMGACoMO4f/AwcAKg6XwAdQAwcAKg6XwAdv
MBIDBwAqDpfAB5EDBwAqDpfAB5IDBgIqDpfErAMHACoOsQcJ9AMHACoOsQcJ9gMH
ACoOsQcN8gMHACoOsQcYcAMHACoOsQcbngMHACoOsQcniwMHBCoQzMABEAMHACoQ
zMPMzgMGAioQzMeQMA0GCSqGSIb3DQEBCwUAA4IBAQCVEA66q0Wx6LrcZYkfEnAS
3ZX8zgjg6Bd5yKrips3f/Oc915cUGuSsqmh4YdDYGM0m3whBZ89SEeu4B3FsFL4K
n7EM3erEpq1IZeAIhhzdkKMtdNcRSZw/c7B99IKs37hR+kK+gTiljq+UL/dHKnEW
V3FA+XZpvQQoCOTBhy8J5oRcP8jzLyR0nFMdI69EwK/LOJd1XIawUXjUQOoFXpuy
5HdDX5V9JxntNLqxF/CmO0RxOrllUvINkUz2zQ3581+V3+h5NulrJ6lrV1FBnLkH
4JoYwzDq/TnkZFVOPhN8kzI8Vf3GiLXZkGDNCQTeRI2Pl716tx/ZDLLE87cFybTT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:28 2024 by rpki-client on console-fra.rpki-client.org