Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/gyz_J48vQC2vg-kjSGvLt9t9ym4.roa
File: gyz_J48vQC2vg-kjSGvLt9t9ym4.roa (raw, json)
Hash identifier: 0Zg+0cWrKe8HqalIiZcD2FGITcchx9otn82GfH7wnCs=
Subject key identifier: 83:2C:FF:27:8F:2F:40:2D:AF:83:E9:23:48:6B:CB:B7:DB:7D:CA:6E
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0195BD089022016AB7EEF0C5F1F453127372
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/gyz_J48vQC2vg-kjSGvLt9t9ym4.roa
Signing time: Sat 22 Mar 2025 08:46:49 +0000
ROA not before: Sat 22 Mar 2025 08:46:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 80.71.228.0/24 maxlen: 24
80.71.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Mar 2025 16:23:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:bd:08:90:22:01:6a:b7:ee:f0:c5:f1:f4:53:12:73:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Mar 22 08:46:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=832cff278f2f402daf83e923486bcbb7db7dca6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:50:8d:c8:4c:0b:a9:7c:25:1c:86:2f:f0:4f:
94:09:95:40:ca:c3:ca:63:8f:69:68:b9:d6:0a:d8:
60:3e:5f:4a:69:39:ec:24:04:f2:a2:9e:00:66:ed:
4c:ab:ad:c6:e9:e5:19:3f:07:d2:a4:bb:01:63:73:
09:c1:9d:7f:17:18:05:e8:43:a5:4b:93:02:aa:30:
ce:78:33:9a:12:d4:b0:9d:02:80:a7:75:0f:35:1f:
5a:fd:8d:33:b7:27:a6:cd:18:54:04:31:b3:a2:ee:
c1:7e:14:7f:53:4d:0b:de:f4:71:da:01:f7:35:e6:
3a:ba:b0:0a:c5:c0:f0:73:43:e7:32:b3:b0:6c:2a:
bb:a9:ba:c2:9f:12:ec:2d:71:b3:ef:08:6a:18:4a:
0c:d1:ca:f9:b2:c1:0f:b6:6d:30:5b:9e:96:82:9f:
38:f6:7d:2a:d0:79:67:92:82:c9:42:4f:60:37:d2:
a7:01:82:36:70:7b:02:1a:a6:44:12:56:85:5b:89:
fa:07:e3:ca:ed:c7:21:bc:3d:f7:d9:9d:29:db:ba:
96:ce:37:bf:c5:b5:64:f5:a0:f3:df:fb:6e:66:16:
b9:43:64:1d:c9:3c:e2:c1:4a:da:52:ad:1b:d5:8e:
62:24:a6:d6:e6:67:80:df:13:e2:16:29:92:b9:da:
b8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2C:FF:27:8F:2F:40:2D:AF:83:E9:23:48:6B:CB:B7:DB:7D:CA:6E
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/gyz_J48vQC2vg-kjSGvLt9t9ym4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.228.0/24
80.71.230.0/24
Signature Algorithm: sha256WithRSAEncryption
57:68:47:69:8e:ef:9a:b7:82:da:00:ca:4c:6b:e0:1a:1f:ec:
95:cc:cf:48:c1:df:7e:d8:b7:f3:dd:98:8a:da:11:05:62:e9:
01:ff:1c:bf:eb:41:6d:42:72:67:cd:08:41:10:66:8d:3c:d9:
0e:1f:44:ab:24:d3:20:26:05:b1:4a:24:60:18:35:75:ac:6f:
3d:76:c1:6f:8e:06:dd:95:22:57:6b:6d:f2:6e:c5:78:7a:82:
fe:a7:a1:d1:ab:9e:e8:5c:e2:a3:e0:a0:ce:34:20:97:fc:fc:
b1:a6:18:62:9d:f2:f0:60:2a:fd:1c:64:02:5d:9f:a1:09:be:
ec:86:68:f8:a9:86:5f:3f:45:4a:b5:31:2f:b6:91:e2:c9:71:
61:40:60:bc:5c:40:82:ef:c1:27:a0:5c:44:10:4d:7f:05:7c:
a9:12:94:75:52:b5:c3:26:7d:6e:e9:18:27:bf:11:47:9f:4a:
ce:ad:be:4f:66:e9:7d:e6:f4:63:cf:36:17:b5:b8:e6:0c:0b:
52:3b:8e:b6:28:f3:44:60:fe:17:db:e1:ae:fe:18:8c:ff:6f:
a1:03:e1:9b:7b:76:25:3b:12:d1:1f:ee:cb:08:11:34:2d:77:
13:18:0a:97:fa:ad:65:6f:bb:44:a0:77:04:25:64:29:75:66:
3d:64:81:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:47:18 2025 by rpki-client