Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GVgap63i7_-sTQUFvl-HKKx0MwI.roa
File: GVgap63i7_-sTQUFvl-HKKx0MwI.roa (raw, json)
Hash identifier: bwKLQiezCXbD2to4GeSQdiQyqcQDjSMFgDRIz7OpMQ0=
Subject key identifier: 19:58:1A:A7:AD:E2:EF:FF:AC:4D:05:05:BE:5F:87:28:AC:74:33:02
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019086056400DB3789A5EDFE58E41A665FE0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GVgap63i7_-sTQUFvl-HKKx0MwI.roa
Signing time: Sat 06 Jul 2024 03:10:18 +0000
ROA not before: Sat 06 Jul 2024 03:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 06 Jul 2024 04:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:86:05:64:00:db:37:89:a5:ed:fe:58:e4:1a:66:5f:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 6 03:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19581aa7ade2efffac4d0505be5f8728ac743302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:bf:be:38:32:6f:39:87:54:0a:4b:03:a4:ad:
66:8c:ca:6d:a1:b2:ec:27:a0:90:5f:0b:c4:e1:9f:
5e:6d:90:27:ad:ab:b7:9e:94:3c:43:b4:83:40:31:
0e:67:9c:c6:4c:fd:eb:83:c6:2c:25:5f:de:b6:60:
c8:c7:20:6d:c3:da:50:9b:af:d0:03:47:a4:12:3d:
e3:b5:61:05:20:4b:71:17:a3:c3:bf:be:2e:52:2b:
6b:db:78:6c:fb:4f:a8:98:16:9e:ac:02:7c:c9:71:
62:15:c5:2a:df:7f:19:87:b9:77:17:32:80:15:66:
62:0c:84:33:50:fe:95:06:bf:af:5e:57:3f:48:b6:
2e:71:cd:06:e5:a8:79:02:f6:3e:17:f4:e4:75:1d:
f4:1d:5a:66:09:05:79:4d:e0:4a:cf:44:db:ce:02:
6e:8f:c0:55:ee:62:d7:92:71:c5:92:7f:21:4f:16:
3f:a2:08:cf:b7:91:4d:aa:d3:04:a1:e3:c8:71:4b:
3b:d7:3a:8f:25:f0:d9:c9:69:a3:14:c3:c0:0d:18:
89:1a:a8:d2:cc:f9:22:7b:84:c4:04:f1:36:fc:f3:
97:63:99:3c:da:19:ec:00:77:6b:61:a9:e3:27:08:
28:d6:90:5f:b8:e4:e7:e1:ff:56:63:49:7e:a9:76:
52:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:58:1A:A7:AD:E2:EF:FF:AC:4D:05:05:BE:5F:87:28:AC:74:33:02
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GVgap63i7_-sTQUFvl-HKKx0MwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
60:8f:b8:5f:b9:f8:a3:99:ba:4f:a0:bf:22:4e:0d:37:48:f5:
37:b1:d7:0d:81:e5:e5:03:ad:90:96:6d:03:c8:71:fa:6a:2a:
f3:fa:65:2c:33:18:33:b5:c1:7e:75:1a:dc:e0:f5:75:ad:05:
c9:2d:02:ca:1f:0f:89:36:ae:6d:c7:b0:36:35:d4:cf:b0:3d:
4b:d6:ef:72:3d:cb:ce:55:43:2a:f6:b5:68:c3:04:70:00:bb:
bb:c5:15:f1:4b:ee:d4:42:75:c5:a8:12:fd:71:2c:3c:b8:f8:
ea:ee:89:ef:ce:a0:a0:fd:59:15:9a:f3:66:af:66:bd:5f:c8:
7f:78:11:4a:80:17:92:d1:3f:45:56:6f:1f:3c:1e:83:af:99:
96:91:22:36:36:87:a7:a7:d4:24:cb:db:60:44:d8:cc:9c:a5:
c4:4c:cc:17:fe:03:65:1c:bc:1a:24:c7:98:95:e8:13:a9:24:
1b:d1:58:24:8e:39:65:4d:20:02:34:d1:02:ce:e2:c4:8b:af:
d9:91:5e:ba:44:38:f0:e5:56:4e:63:f0:12:35:d6:9d:79:43:
9b:c5:f6:69:6f:89:89:3c:5b:6a:6b:29:20:a9:f8:0f:ef:ed:
35:1a:f4:72:a0:7d:d8:ab:a6:a2:eb:f6:42:60:2e:cf:7f:97:
09:90:3b:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:55:44 2025 by rpki-client