Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/gcCpT-1ZrkvND_HauRLNhUE16gs.roa
File: gcCpT-1ZrkvND_HauRLNhUE16gs.roa (raw, json)
Hash identifier: ZqljviIBotpnT46gfmcnO0owkHX3MGqxNw5PY6262NU=
Subject key identifier: 81:C0:A9:4F:ED:59:AE:4B:CD:0F:F1:DA:B9:12:CD:85:41:35:EA:0B
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018937A77B456E0D321FBDE3FFC98214846F
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/gcCpT-1ZrkvND_HauRLNhUE16gs.roa
Signing time: Sat 08 Jul 2023 22:37:50 +0000
ROA not before: Sat 08 Jul 2023 22:37:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201634
IP address blocks: 89.44.243.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:37:a7:7b:45:6e:0d:32:1f:bd:e3:ff:c9:82:14:84:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jul 8 22:37:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81c0a94fed59ae4bcd0ff1dab912cd854135ea0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:dc:6d:dd:0d:77:ef:e3:9b:16:d8:cd:b7:a5:
82:98:f2:77:0b:d6:11:92:03:58:a4:dd:38:f2:b6:
51:7c:e4:18:d3:91:0e:3d:4a:fa:e3:0e:32:21:9a:
67:62:7c:99:b3:a8:5a:0b:ee:89:8e:6c:35:e3:ae:
fe:39:ae:af:45:e1:b8:fd:7c:6f:f7:fa:8f:8e:b9:
54:8f:53:3b:ec:61:a5:88:0c:83:02:67:03:af:03:
89:79:16:57:b7:66:0a:06:87:db:07:fb:6b:90:a9:
5a:8c:14:4c:8b:7a:77:0f:db:58:46:75:08:74:9d:
53:c7:33:c0:77:87:ee:7c:79:9f:69:8e:79:fc:31:
3f:3a:20:f2:1d:58:66:2d:cf:4a:fd:7a:e0:1e:c8:
e1:15:1f:37:74:7a:0f:2d:26:87:fb:f9:7f:f9:68:
60:47:41:4b:2b:fa:59:30:de:35:bd:39:6e:16:e1:
48:8d:d6:b1:cc:fb:52:28:19:32:fc:23:e7:8c:25:
60:78:6f:5d:8a:cc:df:3d:78:18:29:8b:6b:b9:a2:
c0:b2:0a:70:64:76:79:2b:f7:c4:b9:4a:ff:73:f6:
cf:b0:e8:b2:63:a2:8d:11:ac:1c:0a:5a:94:29:c8:
94:f7:e0:a7:a8:ba:31:66:30:19:0f:db:08:dd:19:
51:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:C0:A9:4F:ED:59:AE:4B:CD:0F:F1:DA:B9:12:CD:85:41:35:EA:0B
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/gcCpT-1ZrkvND_HauRLNhUE16gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.243.0/24
Signature Algorithm: sha256WithRSAEncryption
46:3a:95:d0:62:bc:e6:d8:1c:6a:66:e3:79:06:e7:54:55:22:
ef:9a:15:dc:8f:04:3b:ae:50:cc:04:23:52:ba:5a:37:94:79:
35:62:e5:e1:7b:5b:81:9e:bb:82:a4:f9:6b:0e:51:ca:1a:72:
cf:a4:e9:8c:9d:dc:e8:14:c6:51:b5:51:ee:48:bc:f1:fb:0a:
50:62:e7:a6:84:30:a0:6e:8a:fe:68:ea:f7:d0:67:03:bc:d3:
f8:f5:91:c1:24:b7:df:b7:b8:cc:da:1d:69:bc:91:df:3a:ed:
9d:ab:fe:47:b8:6a:de:2e:7d:66:88:5a:dd:c4:ec:8a:63:a2:
90:54:0d:bb:34:e0:02:c4:1e:82:0f:28:e3:9d:c3:54:72:92:
9d:70:73:ca:59:87:20:90:2e:9a:cd:dc:f2:d0:6b:59:3f:83:
29:be:a5:fa:10:af:1a:32:4a:58:9e:ef:bb:c1:f7:24:c7:8b:
29:13:a5:5a:5c:f2:6a:6d:28:91:c0:7f:07:ed:1c:18:7c:49:
3d:d1:49:29:c5:96:a7:6a:2b:f7:0f:37:5b:a8:4e:af:87:d9:
04:0a:a1:e9:f5:e7:24:9f:bc:e0:b1:0f:69:64:15:28:e6:ab:
58:db:de:70:c8:39:2b:84:3d:93:be:02:f4:bb:68:31:71:4f:
99:ff:b4:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYk3p3tFbg0yH73j/8mCFIRvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjMwNzA4MjIzNzUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWMwYTk0ZmVkNTlhZTRiY2QwZmYxZGFiOTEyY2Q4NTQxMzVlYTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNxt3Q137+ObFtjNt6WCmPJ3C9YR
kgNYpN048rZRfOQY05EOPUr64w4yIZpnYnyZs6haC+6Jjmw1467+Oa6vReG4/Xxv
9/qPjrlUj1M77GGliAyDAmcDrwOJeRZXt2YKBofbB/trkKlajBRMi3p3D9tYRnUI
dJ1TxzPAd4fufHmfaY55/DE/OiDyHVhmLc9K/XrgHsjhFR83dHoPLSaH+/l/+Whg
R0FLK/pZMN41vTluFuFIjdaxzPtSKBky/CPnjCVgeG9diszfPXgYKYtruaLAsgpw
ZHZ5K/fEuUr/c/bPsOiyY6KNEawcClqUKciU9+CnqLoxZjAZD9sI3RlRzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIHAqU/tWa5LzQ/x2rkSzYVBNeoLMB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEvZ2NDcFQtMVpya3ZORF9IYXVSTE5oVUUxNmdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSzzMA0G
CSqGSIb3DQEBCwUAA4IBAQBGOpXQYrzm2BxqZuN5BudUVSLvmhXcjwQ7rlDMBCNS
ulo3lHk1YuXhe1uBnruCpPlrDlHKGnLPpOmMndzoFMZRtVHuSLzx+wpQYuemhDCg
bor+aOr30GcDvNP49ZHBJLfft7jM2h1pvJHfOu2dq/5HuGreLn1miFrdxOyKY6KQ
VA27NOACxB6CDyjjncNUcpKdcHPKWYcgkC6azdzy0GtZP4MpvqX6EK8aMkpYnu+7
wfckx4spE6VaXPJqbSiRwH8H7RwYfEk90UkpxZanaiv3DzdbqE6vh9kECqHp9eck
n7zgsQ9pZBUo5qtY295wyDkrhD2TvgL0u2gxcU+Z/7RJ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-fra.rpki-client.org