Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/gqHpXYmYNUPk3_nnQVsMMMVQvbk.roa
File: gqHpXYmYNUPk3_nnQVsMMMVQvbk.roa (raw, json)
Hash identifier: ntDmDMGAtk4IDjoEuvVW02ctYnhlObp7eDgQCF6I1NE=
Subject key identifier: 82:A1:E9:5D:89:98:35:43:E4:DF:F9:E7:41:5B:0C:30:C5:50:BD:B9
Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Certificate serial: 0191097EB7608B812D38382EC3565F5A96C0
Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/gqHpXYmYNUPk3_nnQVsMMMVQvbk.roa
Signing time: Wed 31 Jul 2024 15:53:04 +0000
ROA not before: Wed 31 Jul 2024 15:53:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48266
IP address blocks: 206.245.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Aug 2024 09:56:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:7e:b7:60:8b:81:2d:38:38:2e:c3:56:5f:5a:96:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Validity
Not Before: Jul 31 15:53:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82a1e95d89983543e4dff9e7415b0c30c550bdb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:97:e7:ca:00:40:4c:96:19:a7:80:04:e9:38:
7b:cf:3b:24:1f:f0:ff:44:6c:6d:50:74:14:7a:a9:
08:d2:5c:36:05:69:f5:c5:0e:9e:4d:e1:5d:99:82:
07:43:62:29:cf:90:10:2d:69:7b:39:69:76:61:90:
8c:78:89:06:5c:03:48:7d:58:44:68:5b:1a:59:de:
69:e0:0e:4b:19:1b:ea:92:18:3d:d0:6d:b4:15:d5:
aa:72:d8:52:73:3e:3e:7a:20:55:ac:7a:3a:46:82:
cd:83:20:1e:df:6d:58:17:9d:52:9e:3b:71:0c:c5:
91:bb:d6:46:a8:88:a8:0c:a0:f9:15:15:99:fe:68:
a2:36:6c:24:44:85:12:f0:c3:a1:c5:be:c3:70:28:
64:d2:12:57:70:de:80:f9:de:0e:ac:04:b9:39:76:
b6:e7:b6:66:2f:85:aa:bf:cf:54:61:f3:ec:b3:19:
5f:82:c7:f3:56:61:54:1f:a0:d2:3c:c6:59:8b:d7:
78:a3:da:7a:f6:22:f1:ae:dd:a3:0d:3b:76:0c:70:
cd:a7:7e:16:68:a5:7e:21:dd:57:15:f3:f7:59:05:
b0:e4:38:f7:05:7c:f1:a7:c1:9a:27:a4:1c:da:63:
1e:f7:94:7c:d4:f4:fb:de:9a:ac:bd:a5:f4:9a:53:
8c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A1:E9:5D:89:98:35:43:E4:DF:F9:E7:41:5B:0C:30:C5:50:BD:B9
X509v3 Authority Key Identifier:
keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/gqHpXYmYNUPk3_nnQVsMMMVQvbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.245.224.0/20
Signature Algorithm: sha256WithRSAEncryption
c7:74:61:65:51:d6:f9:4b:e1:4c:2e:0b:ac:b2:f5:0f:e5:30:
bc:75:5c:04:ff:92:e2:21:4d:67:2b:4a:a7:1e:74:ee:cb:1a:
c6:74:20:4c:0c:92:c4:d1:1c:6f:b0:00:af:96:01:6d:f1:84:
d7:c7:89:40:65:29:f1:07:af:da:e8:7c:d3:43:da:f8:98:7a:
fb:52:7d:d0:b1:4d:b3:a0:a6:9b:ae:0d:37:e3:8c:ab:1d:57:
08:09:dc:6b:49:8c:9a:98:17:03:75:b2:63:f4:be:2f:cf:b9:
3e:b0:d3:c3:4e:80:e6:62:f9:0c:92:9b:49:66:ef:fc:7e:ab:
47:c2:62:88:44:3a:d5:ee:1e:87:0a:1a:89:db:57:77:a2:69:
a6:3c:5c:86:97:e9:f6:bd:22:67:cf:32:2e:f9:21:a6:de:38:
8e:9a:12:82:8d:47:ba:49:ba:3e:e9:65:a7:a1:5f:35:5e:ee:
2a:a8:50:8f:47:09:d7:a2:98:5b:1a:85:27:ae:dc:f7:f4:af:
ac:55:7b:8a:6f:3b:76:bf:2b:60:f7:81:57:ca:2d:65:a7:56:
20:3f:a4:52:c7:1f:87:47:dc:d8:d9:79:75:e8:06:68:83:87:
b8:c7:33:02:42:aa:54:01:06:23:67:d3:fa:ec:cd:13:77:61:
6b:b6:3b:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZEJfrdgi4EtODguw1ZfWpbAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZTg0M2E4NWRkNjY0ZTlkYzAzMTA4OTJiZDdkZDljZTUy
NTkxYzcwHhcNMjQwNzMxMTU1MzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmExZTk1ZDg5OTgzNTQzZTRkZmY5ZTc0MTViMGMzMGM1NTBiZGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZfnygBATJYZp4AE6Th7zzskH/D/
RGxtUHQUeqkI0lw2BWn1xQ6eTeFdmYIHQ2Ipz5AQLWl7OWl2YZCMeIkGXANIfVhE
aFsaWd5p4A5LGRvqkhg90G20FdWqcthScz4+eiBVrHo6RoLNgyAe321YF51Snjtx
DMWRu9ZGqIioDKD5FRWZ/miiNmwkRIUS8MOhxb7DcChk0hJXcN6A+d4OrAS5OXa2
57ZmL4Wqv89UYfPssxlfgsfzVmFUH6DSPMZZi9d4o9p69iLxrt2jDTt2DHDNp34W
aKV+Id1XFfP3WQWw5Dj3BXzxp8GaJ6Qc2mMe95R81PT73pqsvaX0mlOMKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIKh6V2JmDVD5N/550FbDDDFUL25MB8GA1UdIwQY
MBaAFE7oQ6hd1mTp3AMQiSvX3ZzlJZHHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjct
NDhjZjQxMmIzODdiLzEvZ3FIcFhZbVlOVVBrM19ublFWc01NTVZRdmJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjctNDhjZjQxMmIzODdi
LzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEzvXgMA0G
CSqGSIb3DQEBCwUAA4IBAQDHdGFlUdb5S+FMLgussvUP5TC8dVwE/5LiIU1nK0qn
HnTuyxrGdCBMDJLE0RxvsACvlgFt8YTXx4lAZSnxB6/a6HzTQ9r4mHr7Un3QsU2z
oKabrg0344yrHVcICdxrSYyamBcDdbJj9L4vz7k+sNPDToDmYvkMkptJZu/8fqtH
wmKIRDrV7h6HChqJ21d3ommmPFyGl+n2vSJnzzIu+SGm3jiOmhKCjUe6Sbo+6WWn
oV81Xu4qqFCPRwnXophbGoUnrtz39K+sVXuKbzt2vytg94FXyi1lp1YgP6RSxx+H
R9zY2Xl16AZog4e4xzMCQqpUAQYjZ9P67M0Td2FrtjsE
-----END CERTIFICATE-----
Generated at Sat Apr 19 13:58:40 2025 by rpki-client