Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/GjODID-14LPEeOam-_PAAcoRH98.roa
File: GjODID-14LPEeOam-_PAAcoRH98.roa (raw, json)
Hash identifier: 5KALkDH0d8c8wo1W3MGEFNTN0OQL+YXWCAo5lTiz0zI=
Subject key identifier: 1A:33:83:20:3F:B5:E0:B3:C4:78:E6:A6:FB:F3:C0:01:CA:11:1F:DF
Certificate issuer: /CN=ec65d31440bf75d25c606f7915c236ca614464a2
Certificate serial: 0185707069171D1EABF43775ACE014780DD3
Authority key identifier: EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/GjODID-14LPEeOam-_PAAcoRH98.roa
Signing time: Mon 02 Jan 2023 03:04:53 +0000
ROA not before: Mon 02 Jan 2023 03:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203086
IP address blocks: 91.150.190.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:69:17:1d:1e:ab:f4:37:75:ac:e0:14:78:0d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec65d31440bf75d25c606f7915c236ca614464a2
Validity
Not Before: Jan 2 03:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a3383203fb5e0b3c478e6a6fbf3c001ca111fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c1:d1:b3:f0:be:c9:33:b2:79:eb:8f:54:ee:
fc:15:b6:54:02:ef:78:89:aa:30:7d:e1:bf:eb:8b:
51:9d:c1:d6:78:7e:e0:1d:e7:91:a0:bd:a7:91:a4:
a9:bf:c6:8e:4d:8e:40:71:89:2a:c2:80:33:f6:42:
8b:66:18:d6:e7:5b:2c:1b:a2:43:dd:96:58:78:b1:
f1:47:28:32:b4:fe:2d:c1:bc:53:b2:e7:be:9a:bb:
7b:69:a0:90:1c:4d:f9:d9:f4:71:d2:cd:02:16:d1:
ec:ce:06:b6:30:f0:5f:17:82:0c:fb:28:28:2c:46:
9b:bb:eb:8f:fc:35:05:37:95:28:95:74:4c:c0:54:
b4:45:8f:39:f5:eb:ae:b7:61:74:19:28:69:5a:2b:
40:84:86:ee:4e:9b:7d:ab:19:fd:66:12:a1:61:c3:
03:5b:c0:4e:8b:ab:a0:87:e1:98:bc:24:d0:7b:14:
a8:8c:7a:76:5a:97:40:7f:d3:89:98:f3:e1:66:02:
35:46:a6:1e:ba:94:55:e6:73:16:d7:30:c7:2d:57:
87:f9:79:3c:9b:c8:d6:89:5a:92:08:ae:9b:56:2b:
c3:12:d6:da:bf:37:a6:b1:bf:9c:02:b7:d9:6d:be:
f6:15:86:fb:c8:b0:d2:b7:5a:44:04:8f:d3:ae:a4:
04:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:33:83:20:3F:B5:E0:B3:C4:78:E6:A6:FB:F3:C0:01:CA:11:1F:DF
X509v3 Authority Key Identifier:
keyid:EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/GjODID-14LPEeOam-_PAAcoRH98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/7GXTFEC_ddJcYG95FcI2ymFEZKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.150.190.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:63:a5:15:98:d7:1f:fe:a7:0d:23:7a:ca:2f:54:38:f1:91:
5b:87:75:8d:cf:8b:40:fd:81:6e:3d:c8:85:a9:7b:15:87:9b:
8e:81:26:cf:d0:2d:f9:5e:11:e4:7d:72:3f:52:ca:b8:51:75:
15:08:89:5e:20:e0:57:a5:da:59:a8:e9:1b:4d:80:50:a4:24:
4c:e7:f2:e2:35:6e:0b:bb:cf:f4:d1:29:ac:34:91:b3:51:60:
4a:69:5d:fc:23:ce:32:7c:96:b8:b5:89:23:9f:64:00:f8:9c:
0c:24:6c:7a:57:0d:de:b6:ef:c6:64:73:b6:c5:64:1d:c0:4a:
ad:66:95:a3:30:97:4a:64:c9:0a:6e:59:b2:e7:4a:41:80:ed:
cc:e6:65:5f:d2:92:bb:af:23:98:b0:85:89:a1:0a:fe:80:44:
de:96:1b:a2:d1:92:0a:2d:6c:b0:83:ce:d1:a2:eb:73:2a:a1:
c8:cf:dc:8f:7f:ea:38:a5:aa:81:6b:86:03:55:76:5d:18:74:
d7:55:d7:fb:e4:0c:08:f9:8d:2a:74:4f:03:28:a3:cf:15:3e:
1d:c4:0b:5a:7f:e0:07:24:23:61:fc:fb:01:62:4d:c2:61:d7:
42:6b:6e:ef:d4:90:26:06:e8:a9:84:10:c4:1e:b2:c9:53:97:
71:d4:c9:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwcGkXHR6r9Dd1rOAUeA3TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVjNjVkMzE0NDBiZjc1ZDI1YzYwNmY3OTE1YzIzNmNhNjE0
NDY0YTIwHhcNMjMwMTAyMDMwNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTMzODMyMDNmYjVlMGIzYzQ3OGU2YTZmYmYzYzAwMWNhMTExZmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMHRs/C+yTOyeeuPVO78FbZUAu94
iaowfeG/64tRncHWeH7gHeeRoL2nkaSpv8aOTY5AcYkqwoAz9kKLZhjW51ssG6JD
3ZZYeLHxRygytP4twbxTsue+mrt7aaCQHE352fRx0s0CFtHszga2MPBfF4IM+ygo
LEabu+uP/DUFN5UolXRMwFS0RY859euut2F0GShpWitAhIbuTpt9qxn9ZhKhYcMD
W8BOi6ugh+GYvCTQexSojHp2WpdAf9OJmPPhZgI1RqYeupRV5nMW1zDHLVeH+Xk8
m8jWiVqSCK6bVivDEtbavzemsb+cArfZbb72FYb7yLDSt1pEBI/TrqQEjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBozgyA/teCzxHjmpvvzwAHKER/fMB8GA1UdIwQY
MBaAFOxl0xRAv3XSXGBveRXCNsphRGSiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN0dYVEZFQ19kZEpjWUc5NUZjSTJ5bUZFWktJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8yYTZkZjUtODIzNi00MTJkLWFkNzkt
ZTI5NTg5ZTg5NjRhLzEvR2pPRElELTE0TFBFZU9hbS1fUEFBY29SSDk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My8yYTZkZjUtODIzNi00MTJkLWFkNzktZTI5NTg5ZTg5NjRh
LzEvN0dYVEZFQ19kZEpjWUc5NUZjSTJ5bUZFWktJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW5a+MA0G
CSqGSIb3DQEBCwUAA4IBAQA9Y6UVmNcf/qcNI3rKL1Q48ZFbh3WNz4tA/YFuPciF
qXsVh5uOgSbP0C35XhHkfXI/Usq4UXUVCIleIOBXpdpZqOkbTYBQpCRM5/LiNW4L
u8/00SmsNJGzUWBKaV38I84yfJa4tYkjn2QA+JwMJGx6Vw3etu/GZHO2xWQdwEqt
ZpWjMJdKZMkKblmy50pBgO3M5mVf0pK7ryOYsIWJoQr+gETelhui0ZIKLWywg87R
outzKqHIz9yPf+o4paqBa4YDVXZdGHTXVdf75AwI+Y0qdE8DKKPPFT4dxAtaf+AH
JCNh/PsBYk3CYddCa27v1JAmBuiphBDEHrLJU5dx1Mks
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:01 2024 by rpki-client on console-ams.rpki-client.org