Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/GRYuK9MXGclymeon9W58Zg3eubk.roa
File: GRYuK9MXGclymeon9W58Zg3eubk.roa (raw, json)
Hash identifier: +iRG1sC+ctfnZIkPxoscXeP0zXEuedz2MPoGlTaHwqE=
Subject key identifier: 19:16:2E:2B:D3:17:19:C9:72:99:EA:27:F5:6E:7C:66:0D:DE:B9:B9
Certificate issuer: /CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Certificate serial: 01856FCBBC4421F157E029C5AE3C16CDD54E
Authority key identifier: 70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/GRYuK9MXGclymeon9W58Zg3eubk.roa
Signing time: Mon 02 Jan 2023 00:05:01 +0000
ROA not before: Mon 02 Jan 2023 00:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50349
IP address blocks: 217.11.128.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:bc:44:21:f1:57:e0:29:c5:ae:3c:16:cd:d5:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Validity
Not Before: Jan 2 00:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19162e2bd31719c97299ea27f56e7c660ddeb9b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3a:7b:57:42:94:bf:70:b6:c7:f4:fe:0a:dd:
98:b1:af:66:43:fd:65:49:5c:16:9f:bf:55:a8:e5:
42:dc:c1:7c:db:8b:26:51:e7:5c:4e:53:38:2a:60:
09:df:1b:71:f9:5d:b5:00:3f:e6:30:0f:c2:12:a1:
d1:30:ee:03:7b:1b:95:95:12:ba:ef:bd:cb:d9:58:
bf:d3:90:01:35:54:9d:70:d4:3a:5d:2f:65:04:52:
6c:11:5c:e9:cd:2f:2f:26:93:72:3e:22:0c:27:eb:
42:d9:a7:5c:b4:5e:44:52:af:8d:d1:a7:35:65:87:
ec:25:a2:21:e4:b4:bc:95:05:11:41:f9:04:ca:ee:
55:05:36:17:0c:08:06:75:d0:8b:75:e5:37:47:f7:
c6:f8:c9:06:fd:a8:34:89:90:c4:b7:93:84:6a:b7:
3e:9d:47:1c:4f:3c:9f:c2:76:d4:b0:a6:6e:73:83:
84:6d:76:a3:f0:7c:6e:7c:f2:ed:be:b7:20:ec:b7:
f2:07:75:dc:7e:b8:3d:49:c3:4a:22:18:b0:ad:a3:
dd:0c:8a:99:35:14:e6:87:24:4c:dd:4e:47:49:78:
ad:ee:1e:49:60:93:aa:4a:dd:55:53:33:a9:53:76:
99:a2:39:d1:7b:47:23:cd:8f:49:14:f3:a8:b9:d7:
b5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:16:2E:2B:D3:17:19:C9:72:99:EA:27:F5:6E:7C:66:0D:DE:B9:B9
X509v3 Authority Key Identifier:
keyid:70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/GRYuK9MXGclymeon9W58Zg3eubk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/cAoSMdHCenVORu8Q6SpzCuFdD1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.11.128.0/22
Signature Algorithm: sha256WithRSAEncryption
61:bc:8c:c6:06:c3:01:10:1a:49:0c:c6:96:70:11:1f:b3:5a:
80:15:d6:75:98:7f:c3:f1:8c:ea:20:13:bc:8f:56:17:b9:bc:
75:21:12:48:29:28:40:f4:03:49:85:53:a8:e3:dd:71:f8:a3:
52:ff:0b:75:b3:fe:23:7a:7f:64:d3:2b:6a:74:de:29:c4:fd:
50:dc:e8:fd:d5:c8:e2:1f:02:30:d2:7a:f9:14:da:7a:15:44:
63:c1:9f:b6:bb:fe:d5:dc:ab:4e:21:51:1a:d1:13:63:32:e1:
98:c0:99:3a:aa:75:87:16:cf:19:0f:6e:a9:f0:14:49:66:47:
73:6a:40:e7:b8:b8:bb:32:a2:e1:d7:f7:c0:43:28:b5:ab:a2:
b5:b7:d5:39:9d:2a:f6:85:24:56:fd:eb:1c:32:f9:42:aa:76:
88:fe:20:d5:5d:a6:70:74:ef:ee:48:cf:88:a6:95:8f:38:e0:
f1:1c:b0:a0:3b:15:42:d3:9d:df:1a:72:f4:a4:ac:ae:8c:d1:
02:ac:24:69:b7:62:c1:fa:1d:45:97:8d:d2:06:ea:9b:7a:9f:
4a:64:e9:0d:88:a9:11:2e:a8:33:51:b6:7f:0c:e0:2f:9c:d4:
7b:40:87:a8:91:88:94:62:94:a8:fd:3c:ca:3b:f4:c3:79:90:
b3:10:ea:12
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvy7xEIfFX4CnFrjwWzdVOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwMGExMjMxZDFjMjdhNzU0ZTQ2ZWYxMGU5MmE3MzBhZTE1
ZDBmNTUwHhcNMjMwMTAyMDAwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTE2MmUyYmQzMTcxOWM5NzI5OWVhMjdmNTZlN2M2NjBkZGViOWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiDp7V0KUv3C2x/T+Ct2Ysa9mQ/1l
SVwWn79VqOVC3MF824smUedcTlM4KmAJ3xtx+V21AD/mMA/CEqHRMO4DexuVlRK6
773L2Vi/05ABNVSdcNQ6XS9lBFJsEVzpzS8vJpNyPiIMJ+tC2adctF5EUq+N0ac1
ZYfsJaIh5LS8lQURQfkEyu5VBTYXDAgGddCLdeU3R/fG+MkG/ag0iZDEt5OEarc+
nUccTzyfwnbUsKZuc4OEbXaj8HxufPLtvrcg7LfyB3Xcfrg9ScNKIhiwraPdDIqZ
NRTmhyRM3U5HSXit7h5JYJOqSt1VUzOpU3aZojnRe0cjzY9JFPOoude1uQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBkWLivTFxnJcpnqJ/VufGYN3rm5MB8GA1UdIwQY
MBaAFHAKEjHRwnp1TkbvEOkqcwrhXQ9VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0FvU01kSENlblZPUnU4UTZTcHpDdUZkRDFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kY2MyYjQtOWRlZC00Njc4LTgzOTgt
YWI3OWEzNzg5ZjhmLzEvR1JZdUs5TVhHY2x5bWVvbjlXNThaZzNldWJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kY2MyYjQtOWRlZC00Njc4LTgzOTgtYWI3OWEzNzg5Zjhm
LzEvY0FvU01kSENlblZPUnU4UTZTcHpDdUZkRDFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC2QuAMA0G
CSqGSIb3DQEBCwUAA4IBAQBhvIzGBsMBEBpJDMaWcBEfs1qAFdZ1mH/D8YzqIBO8
j1YXubx1IRJIKShA9ANJhVOo491x+KNS/wt1s/4jen9k0ytqdN4pxP1Q3Oj91cji
HwIw0nr5FNp6FURjwZ+2u/7V3KtOIVEa0RNjMuGYwJk6qnWHFs8ZD26p8BRJZkdz
akDnuLi7MqLh1/fAQyi1q6K1t9U5nSr2hSRW/escMvlCqnaI/iDVXaZwdO/uSM+I
ppWPOODxHLCgOxVC053fGnL0pKyujNECrCRpt2LB+h1Fl43SBuqbep9KZOkNiKkR
LqgzUbZ/DOAvnNR7QIeokYiUYpSo/TzKO/TDeZCzEOoS
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:01 2024 by rpki-client on console-ams.rpki-client.org