Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/G5Glx-Y1LGxXK2POTxMeLNdViD0.roa
File: G5Glx-Y1LGxXK2POTxMeLNdViD0.roa (raw, json)
Hash identifier: KpEs0KdURXfVgeu8yJ9n0a0Fw/6Y5Nv5IrY/gM4QnQU=
Subject key identifier: 1B:91:A5:C7:E6:35:2C:6C:57:2B:63:CE:4F:13:1E:2C:D7:55:88:3D
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0193BF8F0A5A50076793469748607E5B5BCF
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/G5Glx-Y1LGxXK2POTxMeLNdViD0.roa
Signing time: Fri 13 Dec 2024 10:27:22 +0000
ROA not before: Fri 13 Dec 2024 10:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 77.47.142.0/24 maxlen: 24
195.178.148.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:8f:0a:5a:50:07:67:93:46:97:48:60:7e:5b:5b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Dec 13 10:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b91a5c7e6352c6c572b63ce4f131e2cd755883d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3e:14:0d:b4:60:76:1c:6a:6a:52:8a:91:e7:
e3:18:de:39:24:64:6a:e4:b2:22:0d:04:0d:80:25:
4e:7c:db:5d:7a:f0:8e:c1:53:f9:ae:72:cf:a3:a6:
ea:52:90:b1:7e:f0:69:75:1c:bc:a2:23:f2:46:b2:
5c:c6:5a:8f:3f:18:aa:6d:c9:cf:8a:8a:b5:a7:d6:
f8:6e:11:4d:81:eb:a8:61:f5:3c:23:74:88:33:7c:
95:84:51:4f:8b:6b:7f:a9:03:ef:da:aa:9a:08:f1:
c8:43:9c:b9:0d:ab:72:73:7d:09:84:30:d8:3b:56:
f7:fe:10:06:83:dc:59:9c:d4:6f:26:09:f7:cc:5f:
aa:75:ec:7f:26:1d:15:b9:5c:aa:87:4f:01:98:32:
75:f9:86:a7:de:4c:e5:75:9c:f8:a2:ab:a7:26:d4:
38:68:09:d4:63:c2:bd:02:ae:4c:7c:09:f4:2b:e9:
8e:f9:5e:72:59:aa:38:41:23:41:cb:3d:a5:54:85:
e0:4a:62:94:1b:21:f2:e3:ce:1f:be:0d:4a:fb:d0:
c0:58:c8:50:bb:de:14:f0:87:14:10:37:5e:3f:51:
9c:b3:38:6d:34:b2:3a:1f:aa:7e:35:3f:cf:9d:d4:
aa:c9:f5:c9:9b:50:a6:02:bb:ee:12:e5:b9:c2:a7:
f8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:91:A5:C7:E6:35:2C:6C:57:2B:63:CE:4F:13:1E:2C:D7:55:88:3D
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/G5Glx-Y1LGxXK2POTxMeLNdViD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.142.0/24
195.178.148.0/23
Signature Algorithm: sha256WithRSAEncryption
50:e0:98:e9:1a:e0:30:23:24:8b:e1:60:55:de:dd:8a:f7:2a:
b0:f4:96:f3:04:19:25:48:99:05:df:4e:fb:38:e5:74:6b:9a:
52:c0:9e:36:a1:e8:9a:8d:86:e8:35:8c:ff:6a:7f:d2:e3:cf:
d5:52:18:77:5b:6b:4c:34:66:03:df:8d:b9:81:d2:35:7a:ea:
2e:85:38:92:07:25:ae:04:a7:b4:d0:a9:55:e0:9b:52:82:1c:
e5:e9:de:66:26:4c:98:49:8f:b8:f0:0b:6c:9d:c1:96:ba:95:
68:66:a8:94:cb:96:c9:44:76:89:ff:3f:36:b9:23:09:3b:29:
8a:fe:ea:dc:b6:ad:ae:26:5c:e4:c1:cb:5d:3d:f4:89:e0:97:
ff:ec:3b:8f:c4:58:42:b3:d7:28:65:56:25:8f:7e:c1:e4:8d:
b8:1a:66:de:38:77:55:db:a2:22:6d:83:67:07:2f:1a:13:3c:
8d:96:58:55:12:72:8d:4c:cc:69:dd:15:bc:1e:45:34:96:87:
ee:95:56:ca:3c:68:46:cd:e3:01:05:fa:8f:4a:ae:ed:7d:61:
7e:5e:85:33:8e:48:bf:3a:7b:73:2b:ee:fc:55:b6:07:df:f4:
46:72:7b:83:ab:9e:e8:14:cd:82:1a:b9:ad:db:bf:69:c4:85:
37:5a:2e:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:47:32 2025 by rpki-client