Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GelvcN6KLMjbuOgQYWCA4OFOLWY.roa
File: GelvcN6KLMjbuOgQYWCA4OFOLWY.roa (raw, json)
Hash identifier: tlVS6wUkrRl2X5y9QDroPIJZk7ChPWcG0qcJqRkBun0=
Subject key identifier: 19:E9:6F:70:DE:8A:2C:C8:DB:B8:E8:10:61:60:80:E0:E1:4E:2D:66
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA2A3577EEEC8CBD9886115CF86D3BB4
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GelvcN6KLMjbuOgQYWCA4OFOLWY.roa
Signing time: Tue 02 Jan 2024 12:33:32 +0000
ROA not before: Tue 02 Jan 2024 12:33:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198803
IP address blocks: 92.38.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:35:77:ee:ec:8c:bd:98:86:11:5c:f8:6d:3b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19e96f70de8a2cc8dbb8e810616080e0e14e2d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ef:f6:f3:71:ce:09:47:77:90:53:47:c4:03:
a2:14:2a:55:12:01:64:78:fe:89:ea:fb:bc:4e:f4:
b3:44:4f:9f:e9:97:4e:b3:af:a5:68:01:43:2a:7f:
09:9e:5b:e8:94:dc:ec:3b:e1:1a:f0:13:34:b2:9e:
c8:83:97:0a:b9:73:cd:ab:74:ce:3c:7c:d1:46:85:
25:bb:6e:56:ed:2d:a6:fb:b6:0e:81:3a:47:56:93:
42:27:e5:11:2b:58:ad:e3:87:21:8c:5a:f8:5f:92:
5a:1c:3a:23:25:6e:7b:d7:87:ac:c0:4f:37:02:b2:
bf:2d:32:fb:3b:f7:ed:a5:72:6d:f8:1d:74:17:a5:
5f:09:cb:c8:83:e3:e2:a1:ae:2e:67:4d:a9:59:48:
02:70:96:b0:d7:4d:4e:40:bb:65:7b:36:64:50:30:
6f:19:cb:fe:80:ef:f1:a1:ae:20:58:35:7e:c2:f6:
aa:b0:65:56:0c:62:1f:62:e3:02:2f:2b:af:65:49:
25:23:85:23:c4:32:25:e4:e6:35:6b:b6:91:d7:40:
c2:a3:2b:49:eb:03:3d:2f:f4:e2:d9:f7:a3:7a:84:
9b:f7:eb:df:81:5f:20:13:f8:8e:6f:71:2e:13:e6:
c2:d6:a6:c8:4a:d5:cd:d3:3a:e6:66:95:18:5c:ed:
13:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E9:6F:70:DE:8A:2C:C8:DB:B8:E8:10:61:60:80:E0:E1:4E:2D:66
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GelvcN6KLMjbuOgQYWCA4OFOLWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.28.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:bb:c2:5e:87:d8:98:92:ee:c6:2b:1c:7f:41:fb:e8:64:32:
41:ad:c3:4a:62:7a:e7:d4:0c:08:b9:ad:1e:65:45:1c:40:2d:
88:09:59:70:b6:0f:99:cd:6a:fb:59:07:1c:a7:9a:c5:65:c2:
1a:5e:30:c5:a8:c1:6b:2a:b5:f6:b0:aa:ce:b1:c5:68:14:cd:
d2:aa:3f:09:60:75:61:bc:b7:a9:8f:bd:fd:ca:d0:bf:cb:e1:
dc:4b:fe:c4:28:e3:9d:3f:a9:75:b7:dc:28:9b:67:74:96:6c:
7c:dc:7e:ef:fd:4a:ac:e7:9f:4e:85:2f:56:3f:14:85:fd:cb:
ef:e1:d9:61:3d:b0:89:55:78:80:58:f3:8a:f9:6b:13:7f:fc:
27:65:dc:a3:ab:99:fa:74:90:80:70:8d:bb:fa:ab:dc:82:fa:
81:e2:fe:6f:26:36:10:73:aa:c6:e1:01:a2:4b:1d:5f:02:e6:
45:0c:ea:26:7b:8d:d7:71:44:ee:03:59:59:e0:e7:ee:21:8e:
74:9f:46:0c:9b:1b:45:38:c6:53:be:f8:59:1a:4a:ca:e4:c6:
69:92:19:86:a1:3a:29:0c:3d:fc:d3:9e:57:05:f3:51:4c:8c:
f3:6c:11:8b:51:df:b9:8c:d1:d8:a7:eb:89:8c:82:ee:ac:c9:
4c:b3:dc:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:43 2025 by rpki-client