Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/GoB-jvdk0D1AQa_GNj0CVVA6uXU.roa
File: GoB-jvdk0D1AQa_GNj0CVVA6uXU.roa (raw, json)
Hash identifier: ThnADmdd3LiTbGAW/6FWGj7h3kXKkiqmaSTabEaWN9U=
Subject key identifier: 1A:80:7E:8E:F7:64:D0:3D:40:41:AF:C6:36:3D:02:55:50:3A:B9:75
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018612DA6BA78E968140EEE0A86449F2351C
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/GoB-jvdk0D1AQa_GNj0CVVA6uXU.roa
Signing time: Thu 02 Feb 2023 15:59:09 +0000
ROA not before: Thu 02 Feb 2023 15:59:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
37.220.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Feb 2023 09:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:12:da:6b:a7:8e:96:81:40:ee:e0:a8:64:49:f2:35:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Feb 2 15:59:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a807e8ef764d03d4041afc6363d0255503ab975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d3:6d:80:0c:6d:37:b2:76:69:29:86:a6:58:
7d:4a:89:f1:2c:25:fc:26:04:07:e7:55:90:7b:3b:
96:6c:f8:b2:d3:f3:13:6a:7a:a7:51:0e:83:85:33:
26:15:7a:d6:9d:5e:2f:ec:22:b7:3d:ff:ae:64:75:
65:8a:56:68:d9:86:1d:fb:a9:ee:c4:20:94:71:97:
6a:37:b2:22:85:51:20:bc:1a:04:72:da:a7:85:45:
7e:c8:bc:fd:4e:a3:d9:7d:d2:b6:da:7b:74:cb:91:
89:e5:46:72:a5:30:b4:d0:de:a0:9b:bb:ac:de:c1:
03:a1:a3:46:84:00:70:ac:fa:bd:76:84:13:0f:7f:
99:67:80:86:d9:aa:28:29:37:66:88:94:cc:73:16:
a2:97:4f:8e:b8:07:f1:85:5c:ee:e2:06:ab:2b:86:
43:3f:2c:8c:2a:4b:ce:4f:fb:b3:89:de:e4:35:fb:
6d:c8:19:da:42:b6:81:c5:36:c4:21:55:c0:4e:1b:
5d:40:ef:5d:db:23:a2:ad:1b:a7:dd:7b:37:5c:3b:
03:82:48:5b:94:a5:3f:ad:75:92:0b:2b:e8:cd:c4:
9a:9f:e9:d0:79:0b:f8:3a:4f:52:80:a0:e0:34:e6:
b2:84:2d:93:02:b7:25:14:ce:2d:fe:28:98:12:69:
86:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:80:7E:8E:F7:64:D0:3D:40:41:AF:C6:36:3D:02:55:50:3A:B9:75
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/GoB-jvdk0D1AQa_GNj0CVVA6uXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.80.0/23
45.8.97.0/24
46.19.64.0/22
81.200.144.0-81.200.153.255
94.198.216.0/22
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
84:a5:52:f3:75:e5:cc:16:d9:b9:b0:a8:92:01:5d:64:f9:1f:
fe:1b:5a:31:6b:43:2f:52:cb:6e:a1:df:c9:09:cb:00:1b:b7:
38:0f:2f:e7:65:74:42:71:35:47:bc:38:03:1e:2c:b4:91:07:
6e:53:d4:65:03:a5:49:b2:aa:f2:c4:0c:11:bf:03:87:a4:25:
9b:ad:50:a0:a0:e1:e7:b5:5c:52:d8:1f:7f:5c:1e:01:4a:3d:
56:94:b5:93:3a:8d:90:8a:57:c7:31:05:be:8c:ed:88:3b:72:
8e:07:83:9d:74:18:0c:da:d7:a4:1a:10:23:9e:0c:23:b2:64:
ba:c4:ba:0d:42:5f:ce:10:11:75:b0:d6:16:d2:ce:d9:b6:2d:
2e:7c:3d:b5:13:61:9b:df:8e:d1:7c:93:b5:b5:73:57:f2:68:
d0:02:59:cc:5f:78:83:16:60:af:ae:c9:04:36:20:59:8b:16:
ad:c1:c6:97:83:b4:64:99:b8:61:18:33:98:cb:e0:b1:52:17:
86:1a:3b:fd:f5:f8:0f:c0:2c:7f:0f:5e:b8:2c:2a:a3:a3:2e:
4b:00:12:ef:34:bd:3f:97:3e:86:de:f7:65:f2:95:7a:3d:77:
50:86:dc:31:81:dc:47:d0:3c:06:38:35:8f:ff:5c:5b:f3:54:
0a:ba:2f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:15 2024 by rpki-client on console-ams.rpki-client.org