Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/GpOX1_pYomRbrSDAGHi6U6XWPuE.roa
File: GpOX1_pYomRbrSDAGHi6U6XWPuE.roa (raw, json)
Hash identifier: xh3AumW5boYluUXYR1N/jXBufomqeyf8DNVtfxDzGRI=
Subject key identifier: 1A:93:97:D7:FA:58:A2:64:5B:AD:20:C0:18:78:BA:53:A5:D6:3E:E1
Certificate issuer: /CN=e30f8894f308172ace92fbe6052eec23853eadad
Certificate serial: 019188926B1AAA52FEEC99746291FB5D14BD
Authority key identifier: E3:0F:88:94:F3:08:17:2A:CE:92:FB:E6:05:2E:EC:23:85:3E:AD:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4w-IlPMIFyrOkvvmBS7sI4U-ra0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/GpOX1_pYomRbrSDAGHi6U6XWPuE.roa
Signing time: Sun 25 Aug 2024 08:06:22 +0000
ROA not before: Sun 25 Aug 2024 08:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3920
IP address blocks: 37.49.229.0/24 maxlen: 24
77.247.111.0/24 maxlen: 24
117.18.118.0/24 maxlen: 24
117.55.202.0/24 maxlen: 24
117.55.203.0/24 maxlen: 24
185.53.91.0/24 maxlen: 24
212.237.231.0/24 maxlen: 24
2a13:adc0::/48 maxlen: 48
2a13:adc0:1::/48 maxlen: 48
2a13:adc0:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 Aug 2024 02:55:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:88:92:6b:1a:aa:52:fe:ec:99:74:62:91:fb:5d:14:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30f8894f308172ace92fbe6052eec23853eadad
Validity
Not Before: Aug 25 08:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a9397d7fa58a2645bad20c01878ba53a5d63ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:79:c1:9d:ba:20:df:b9:ee:81:b8:1e:32:41:
07:23:6c:61:b3:48:23:fe:dc:11:9e:a7:e7:e3:aa:
4c:2c:ab:36:5e:fd:4d:d1:b9:17:22:8e:73:9a:89:
ae:d9:61:a5:ef:a4:51:01:4d:fe:5a:c8:49:31:e0:
26:d4:8e:86:b0:c9:10:8a:5f:6f:29:c8:85:c0:ac:
1b:18:f4:c5:0a:cf:cf:a2:3a:ad:90:b1:2e:f7:d3:
3d:ca:60:81:f4:84:33:47:45:b0:99:a9:14:6f:af:
ee:06:08:a9:0f:d6:76:ce:05:77:54:db:d9:32:a4:
fe:8c:91:09:5a:83:3f:89:0b:27:b5:70:9f:50:03:
a7:31:8d:34:e3:a9:ef:06:22:a7:a3:95:76:0a:dc:
85:06:14:a6:e6:f4:c1:dc:90:5f:85:88:52:93:cb:
87:10:c6:17:1b:a7:56:24:e3:6b:89:df:9c:b8:b0:
e5:23:77:68:4c:22:85:c3:f2:71:7b:f9:0c:23:bd:
b3:6d:5f:1b:a6:59:73:2f:91:69:c8:56:10:b5:02:
1e:23:d1:26:82:c2:c3:a3:ed:54:61:d1:92:f3:c6:
65:56:03:cd:e9:91:20:9e:5a:11:35:be:ec:77:86:
f9:e0:e4:a4:91:90:63:0a:d1:2c:b8:b0:6c:74:f6:
6b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:93:97:D7:FA:58:A2:64:5B:AD:20:C0:18:78:BA:53:A5:D6:3E:E1
X509v3 Authority Key Identifier:
keyid:E3:0F:88:94:F3:08:17:2A:CE:92:FB:E6:05:2E:EC:23:85:3E:AD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4w-IlPMIFyrOkvvmBS7sI4U-ra0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/GpOX1_pYomRbrSDAGHi6U6XWPuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/4w-IlPMIFyrOkvvmBS7sI4U-ra0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.229.0/24
77.247.111.0/24
117.18.118.0/24
117.55.202.0/23
185.53.91.0/24
212.237.231.0/24
IPv6:
2a13:adc0::-2a13:adc0:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0a:e8:ba:89:d6:4b:3e:56:c7:e3:f6:07:73:48:69:10:fe:75:
27:d6:9a:29:06:bd:5b:1e:de:0e:4d:dd:f8:f1:ef:f9:a7:c6:
4b:b1:b2:dd:b3:7e:c7:14:7e:58:e4:86:25:75:d8:fe:f4:a6:
1f:47:b7:d2:e9:b4:56:2d:6d:39:e9:d7:db:3d:88:11:ab:f9:
92:3c:ec:8d:b9:97:e3:5e:56:ad:b5:1e:7f:8b:f7:c0:5f:37:
44:56:02:19:00:33:2f:dd:90:64:fe:2e:b6:0e:c7:0c:8c:70:
f4:b8:43:29:5b:f9:f6:39:b7:6c:c9:45:31:24:d2:da:83:fb:
0c:49:e3:b9:dc:60:b3:10:36:d6:1b:55:53:a9:32:6b:41:0b:
c8:67:9f:72:bf:56:03:eb:ee:20:29:65:1c:66:04:95:e5:77:
2d:30:26:81:3c:ba:72:ea:b0:6b:58:0a:a3:ad:e2:65:65:42:
a2:cc:75:a0:fb:b9:20:23:e5:fa:91:ce:33:3b:32:03:a0:f2:
94:36:1f:80:d4:ef:83:6e:ee:35:0a:49:13:24:68:9c:aa:4d:
13:3b:91:8e:63:10:27:ec:f1:1c:cd:50:9f:68:0b:d9:75:1b:
60:f8:0e:1c:c7:89:79:6c:96:29:39:4c:86:3a:95:e7:93:cb:
13:dc:fe:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 04:25:26 2024 by rpki-client on console-fra.rpki-client.org