Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/gwpAexyyEx6-hWCzwN3kCwVM5PQ.roa
File: gwpAexyyEx6-hWCzwN3kCwVM5PQ.roa (raw, json)
Hash identifier: LiPsRk1SuMzYL4RbF7+x0CiOPFBSQHGPE/M1DPKOdt0=
Subject key identifier: 83:0A:40:7B:1C:B2:13:1E:BE:85:60:B3:C0:DD:E4:0B:05:4C:E4:F4
Certificate issuer: /CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Certificate serial: 018B1F0B4AE7DF30E84158137819A7C86FAD
Authority key identifier: C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/gwpAexyyEx6-hWCzwN3kCwVM5PQ.roa
Signing time: Wed 11 Oct 2023 14:01:55 +0000
ROA not before: Wed 11 Oct 2023 14:01:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36411
IP address blocks: 2a00:79e1:824::/48 maxlen: 48
2a00:79e1:826::/48 maxlen: 48
2a00:79e1:841::/48 maxlen: 48
2a00:79e1:821::/48 maxlen: 48
2a00:79e1:823::/48 maxlen: 48
2a00:79e1:840::/48 maxlen: 48
2a00:79e1:820::/47 maxlen: 47
2a00:79e1:825::/48 maxlen: 48
2a00:79e1:2200::/39 maxlen: 39
2a00:79e1:2000::/38 maxlen: 38
2a00:79e1:3000::/38 maxlen: 38
2a00:79e1:3400::/39 maxlen: 39
2a00:79e1:2600::/39 maxlen: 39
2a00:79e1:2800::/38 maxlen: 38
2a00:79e1:3800::/38 maxlen: 38
2a00:79e1:2000::/35 maxlen: 35
2a00:79e1:2400::/39 maxlen: 39
2a00:79e1:2a00::/39 maxlen: 39
2a00:79e1:3e00::/39 maxlen: 39
2a00:79e1:3a00::/39 maxlen: 39
2a00:79e1:2c00::/39 maxlen: 39
2a00:79e1:3c00::/39 maxlen: 39
2a00:79e1:3600::/39 maxlen: 39
2a00:79e1:2e00::/39 maxlen: 39
2a00:79e1:3200::/39 maxlen: 39
2a00:79e1:820::/45 maxlen: 45
2a00:79e1:822::/47 maxlen: 47
2a00:79e1:827::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1f:0b:4a:e7:df:30:e8:41:58:13:78:19:a7:c8:6f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Validity
Not Before: Oct 11 14:01:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=830a407b1cb2131ebe8560b3c0dde40b054ce4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3c:f0:54:cd:3e:c9:0e:44:d6:0d:7c:63:ee:
83:26:7e:91:5b:02:06:77:3e:8b:9d:fe:b4:89:6d:
c8:13:09:86:dd:2d:85:0e:b0:a7:60:3a:86:21:9b:
1d:fe:ed:c9:f6:c7:57:6c:46:d2:54:36:7a:76:84:
1a:40:05:e4:9e:28:3d:c2:73:f5:67:40:e7:ec:4b:
ad:b5:b4:7c:78:43:79:7d:6c:96:7c:1d:48:12:5d:
94:e0:bb:0d:79:52:8d:54:7f:1e:95:0a:0e:07:72:
13:72:bf:f6:2f:ad:75:5e:af:3e:0b:fe:a7:cf:9b:
1b:ed:58:17:bb:f5:67:70:06:30:02:56:0e:f2:d4:
64:78:cd:8d:2c:8d:ba:cd:b1:b8:0b:82:d4:b5:ef:
a0:11:51:e5:ba:ff:5a:1e:1b:6c:37:05:4a:2d:e8:
41:55:e2:c3:6e:90:05:0e:ec:8e:13:1b:3d:4c:b1:
cf:9f:6a:13:35:8d:bb:03:ee:98:a4:6c:2a:cd:c0:
8c:07:5a:f7:13:ab:f3:48:87:8c:9a:2c:e1:02:2b:
98:61:35:79:7a:f8:4a:e2:e4:f0:ec:ad:68:e3:26:
69:19:6c:0a:cf:3d:6d:00:c0:79:45:af:11:85:ba:
92:1e:d2:56:63:39:aa:f5:74:32:02:e9:51:f1:76:
3b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0A:40:7B:1C:B2:13:1E:BE:85:60:B3:C0:DD:E4:0B:05:4C:E4:F4
X509v3 Authority Key Identifier:
keyid:C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/gwpAexyyEx6-hWCzwN3kCwVM5PQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:79e1:820::/45
2a00:79e1:840::/47
2a00:79e1:2000::/35
Signature Algorithm: sha256WithRSAEncryption
23:c2:bc:23:53:78:ba:8b:4f:51:6f:88:7c:33:4d:47:e0:1b:
7b:ad:c8:1c:a7:e7:38:db:7a:a4:e6:70:96:08:8c:61:a7:d0:
f7:b9:b6:b4:9c:ae:6e:85:c7:bc:ee:d1:4d:53:ec:b4:63:0a:
bd:b8:c5:33:66:f8:5e:2a:da:c0:c7:ce:cb:ea:ff:15:81:76:
2b:6d:4a:37:75:71:dc:95:10:8e:e8:97:cd:d9:05:ad:98:4a:
b9:85:80:fe:6f:0b:92:d9:ff:f1:2d:57:13:a5:5c:e4:ac:63:
eb:b9:e3:46:11:5e:32:69:dc:9d:ea:a5:8b:67:57:27:66:77:
45:23:49:56:af:26:50:80:bd:f4:56:e9:82:90:0a:bd:b2:ba:
94:ca:71:2a:fe:18:64:7e:5a:06:76:9f:44:76:0b:ef:a3:04:
c9:4b:fb:cc:45:83:08:d1:58:8b:b6:c5:43:ac:ff:3e:34:07:
06:38:07:4e:28:76:1b:ec:d2:10:21:60:e7:b9:54:d6:92:9d:
67:22:9d:32:de:ad:ef:9f:89:e8:8f:bd:62:01:ac:5a:7e:a1:
0c:95:5a:19:b4:f8:95:44:f1:89:fe:fe:4e:8e:34:bd:92:92:
b2:e7:07:91:4e:f1:8f:95:39:79:31:87:8d:c5:8f:2b:7a:6f:
3f:c7:8d:67
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAYsfC0rn3zDoQVgTeBmnyG+tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwNzQ3ZmJlMjZjOWNkZDc2MjhhZGZlZGI1N2I3OGJlOGRl
NzVlMjkwHhcNMjMxMDExMTQwMTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzBhNDA3YjFjYjIxMzFlYmU4NTYwYjNjMGRkZTQwYjA1NGNlNGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDzwVM0+yQ5E1g18Y+6DJn6RWwIG
dz6Lnf60iW3IEwmG3S2FDrCnYDqGIZsd/u3J9sdXbEbSVDZ6doQaQAXknig9wnP1
Z0Dn7EuttbR8eEN5fWyWfB1IEl2U4LsNeVKNVH8elQoOB3ITcr/2L611Xq8+C/6n
z5sb7VgXu/VncAYwAlYO8tRkeM2NLI26zbG4C4LUte+gEVHluv9aHhtsNwVKLehB
VeLDbpAFDuyOExs9TLHPn2oTNY27A+6YpGwqzcCMB1r3E6vzSIeMmizhAiuYYTV5
evhK4uTw7K1o4yZpGWwKzz1tAMB5Ra8RhbqSHtJWYzmq9XQyAulR8XY7RQIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFIMKQHscshMevoVgs8Dd5AsFTOT0MB8GA1UdIwQY
MBaAFMB0f74myc3XYorf7bV7eL6N514pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0hSX3ZpYkp6ZGRpaXRfdHRYdDR2bzNuWGlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC8yNDA2YWItM2JjYi00MWJjLWE5NDIt
MzY4NjA4Mzg1ODgzLzEvZ3dwQWV4eXlFeDYtaFdDendOM2tDd1ZNNVBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC8yNDA2YWItM2JjYi00MWJjLWE5NDItMzY4NjA4Mzg1ODgz
LzEvd0hSX3ZpYkp6ZGRpaXRfdHRYdDR2bzNuWGlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAAjAaAwcDKgB54Qgg
AwcBKgB54QhAAwYFKgB54SAwDQYJKoZIhvcNAQELBQADggEBACPCvCNTeLqLT1Fv
iHwzTUfgG3utyByn5zjbeqTmcJYIjGGn0Pe5trScrm6Fx7zu0U1T7LRjCr24xTNm
+F4q2sDHzsvq/xWBdittSjd1cdyVEI7ol83ZBa2YSrmFgP5vC5LZ//EtVxOlXOSs
Y+u540YRXjJp3J3qpYtnVydmd0UjSVavJlCAvfRW6YKQCr2yupTKcSr+GGR+WgZ2
n0R2C++jBMlL+8xFgwjRWIu2xUOs/z40BwY4B04odhvs0hAhYOe5VNaSnWcinTLe
re+fieiPvWIBrFp+oQyVWhm0+JVE8Yn+/k6ONL2SkrLnB5FO8Y+VOXkxh43Fjyt6
bz/HjWc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:55 2024 by rpki-client on console-fra.rpki-client.org