Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/GNcy7ZBDkF8GkLeZ2JZQzIAHq9A.roa
File: GNcy7ZBDkF8GkLeZ2JZQzIAHq9A.roa (raw, json)
Hash identifier: o5dN1y/ANe3AE3QjzJr9J2QaNTnT7xz9PCRGSoJ1r+Q=
Subject key identifier: 18:D7:32:ED:90:43:90:5F:06:90:B7:99:D8:96:50:CC:80:07:AB:D0
Certificate issuer: /CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Certificate serial: 0192B89F8D457144F652427ADB99CCC14DE8
Authority key identifier: 74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/GNcy7ZBDkF8GkLeZ2JZQzIAHq9A.roa
Signing time: Wed 23 Oct 2024 09:05:17 +0000
ROA not before: Wed 23 Oct 2024 09:05:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204650
IP address blocks: 91.228.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 09:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b8:9f:8d:45:71:44:f6:52:42:7a:db:99:cc:c1:4d:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Validity
Not Before: Oct 23 09:05:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18d732ed9043905f0690b799d89650cc8007abd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:9a:d1:5e:98:db:8f:fd:5c:e8:eb:90:80:0e:
0a:0a:bc:27:19:ad:6c:da:db:ca:f3:47:d8:6b:ec:
6b:11:b7:dd:60:4f:d2:28:f2:c7:0d:be:96:13:b6:
7c:92:d0:68:c4:61:3b:ea:81:ef:5c:f5:24:db:b6:
70:39:ec:4f:61:a3:1b:b2:5e:d7:a4:ca:e0:9e:5e:
8c:a2:4d:01:f2:43:38:f6:d5:4a:bf:77:da:ff:a2:
ed:db:ea:77:ec:ec:5d:ac:7b:ef:11:ea:86:2f:b0:
fe:fd:54:c1:08:ce:00:e4:f8:22:3c:55:c2:74:bf:
ed:60:03:b0:bb:8b:ae:94:98:c5:de:fa:55:e2:81:
c1:ef:e4:de:79:9f:5b:37:ac:74:8a:a6:23:5b:d6:
f8:17:1a:4f:37:f9:c5:c8:14:58:51:cb:d3:41:f9:
ed:f9:3c:da:67:53:c8:23:66:9a:ac:83:bb:67:4a:
89:63:cc:56:f9:b4:3a:1b:bc:b9:49:9a:4f:87:1f:
53:87:3b:5e:35:61:30:10:a5:e9:34:8e:2e:3b:7b:
37:88:a3:ef:d3:1d:f5:a7:21:1e:76:a0:5e:89:6a:
a0:d5:6d:c0:4d:99:a0:ba:ad:14:e8:cc:b8:37:27:
61:a8:80:c8:5e:75:60:a7:3a:fa:34:fd:f2:71:48:
1f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D7:32:ED:90:43:90:5F:06:90:B7:99:D8:96:50:CC:80:07:AB:D0
X509v3 Authority Key Identifier:
keyid:74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/GNcy7ZBDkF8GkLeZ2JZQzIAHq9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/dLTNPt9SHfjsChURESctP7kbmcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.22.0/24
Signature Algorithm: sha256WithRSAEncryption
39:82:b9:fa:7a:5a:f8:1b:ee:e3:8b:82:98:16:1f:95:b0:be:
ab:bf:4b:d8:61:55:28:a3:33:10:e9:42:46:56:3d:f6:75:21:
e8:92:70:63:60:d7:d2:7a:df:f4:98:6e:f5:ab:78:e8:39:86:
1d:fd:3f:9e:ff:9e:84:31:cb:5a:ae:3b:9e:0a:81:ca:4d:e9:
ee:0a:a7:72:d9:a6:e5:57:10:03:03:c1:62:cf:72:ce:e3:1b:
32:50:97:84:8e:d1:43:f0:2b:1d:a0:8a:99:6c:b2:10:28:f9:
e4:3a:e6:ec:3b:fe:9e:64:ac:64:de:48:c1:32:bf:86:0a:0b:
d2:9b:6a:2c:bb:14:3d:1d:60:e8:f5:30:28:94:24:b6:5e:3b:
01:32:77:a3:a7:19:2a:db:bb:53:03:24:ea:92:29:3b:07:ca:
8c:e0:b5:12:e6:8d:e1:fe:49:33:26:58:5b:b0:35:c1:bb:18:
46:dd:36:f5:e9:55:47:cd:d8:bb:5b:0e:91:3e:e1:09:17:0a:
e5:a6:f3:20:a7:34:7e:0e:7b:fd:05:b8:e1:44:e6:07:c4:6a:
f0:45:e1:d2:06:94:c3:ee:36:4b:e8:da:4e:f0:49:9f:76:cc:
d5:81:98:90:ee:b4:73:9c:80:a2:73:9c:5c:ad:b0:4c:1a:5b:
20:34:c1:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 13:19:16 2024 by rpki-client on console-ams.rpki-client.org