Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/GBKVokHjq54UaHIL7jZl6QohTOU.roa
File: GBKVokHjq54UaHIL7jZl6QohTOU.roa (raw, json)
Hash identifier: 3gVoEk5SEWAIv38u1AfoJUzOKHjSufcNnlyjNNQjaeA=
Subject key identifier: 18:12:95:A2:41:E3:AB:9E:14:68:72:0B:EE:36:65:E9:0A:21:4C:E5
Certificate issuer: /CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Certificate serial: 018CC5014F4778BB09E5194CC09E1C3A290B
Authority key identifier: B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/GBKVokHjq54UaHIL7jZl6QohTOU.roa
Signing time: Mon 01 Jan 2024 12:30:46 +0000
ROA not before: Mon 01 Jan 2024 12:30:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 185.214.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 12:22:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:4f:47:78:bb:09:e5:19:4c:c0:9e:1c:3a:29:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Validity
Not Before: Jan 1 12:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=181295a241e3ab9e1468720bee3665e90a214ce5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:30:ab:be:7f:12:53:fb:66:e3:e0:b4:96:87:
61:e6:58:26:15:83:b8:4f:ea:91:6f:47:72:3e:ec:
87:d1:62:09:01:c9:71:40:4d:3e:10:5f:c2:d6:c8:
a2:43:74:ba:d3:37:03:11:d7:33:3a:b3:f7:10:bd:
02:83:eb:31:08:30:c4:55:7f:d8:b5:6d:3b:f0:55:
56:ff:54:6a:97:09:48:d8:4c:cf:e1:c6:ad:eb:07:
b1:b0:b4:00:48:18:28:6d:a1:73:ab:c4:47:14:be:
8a:31:94:17:b9:91:10:49:da:79:6c:55:4e:51:77:
68:e7:86:d7:6e:b6:62:67:0d:bc:a6:2e:3f:a8:81:
4c:2e:83:48:21:c7:16:4a:5a:20:6d:3e:5d:54:95:
cc:9c:d7:ab:c5:d1:bd:67:d8:35:22:1f:c2:32:45:
8a:93:17:9c:e3:16:20:d9:24:4c:f8:f0:49:b4:85:
a8:92:4b:88:8b:46:ba:19:02:79:26:c9:47:4c:54:
bd:60:c0:0a:80:77:df:ab:4d:90:cf:a7:ec:45:f9:
01:5f:f8:50:18:f8:f2:ed:26:26:b9:6d:4d:bd:ad:
57:c2:6e:c5:6f:65:31:c2:fa:dd:ba:b9:37:0a:76:
db:51:b9:79:21:e1:a8:c9:2c:2f:33:a9:34:be:c0:
10:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:12:95:A2:41:E3:AB:9E:14:68:72:0B:EE:36:65:E9:0A:21:4C:E5
X509v3 Authority Key Identifier:
keyid:B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/GBKVokHjq54UaHIL7jZl6QohTOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/tq5hgU9xUMm4EX9JjKuU23KoM5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.166.0/24
Signature Algorithm: sha256WithRSAEncryption
56:89:ca:25:f0:bc:f3:ba:b4:7e:47:b7:20:ca:ee:ba:2b:97:
63:58:22:f4:e1:bc:39:6f:c1:5d:2d:bc:0f:cc:f6:40:4d:b6:
cd:62:78:84:90:18:f8:e3:56:42:cc:25:9d:75:f7:8c:60:5c:
41:81:3f:d5:31:b5:59:2b:e7:7c:c5:07:ef:98:41:87:f4:d9:
fc:2b:21:a4:a3:3d:52:06:df:bf:df:fc:67:0f:48:c3:7c:30:
11:c3:7b:1d:a9:76:2c:95:50:88:22:4e:fd:0b:8e:8d:98:1c:
79:6a:8f:b4:33:53:4e:96:7a:11:ee:c5:7c:ba:38:73:2d:97:
bc:ce:bc:26:5c:73:d7:68:bb:17:3f:c2:60:c6:c2:97:cf:72:
bf:2d:73:fe:35:35:bc:44:c1:52:aa:98:12:26:37:2a:a1:44:
b7:7a:d5:0c:45:eb:21:c3:76:eb:e2:4d:e5:da:b4:45:9e:91:
d5:c0:02:fc:55:d1:53:68:76:13:f4:b9:41:3d:33:1f:9e:6f:
4e:34:b2:35:66:20:cc:af:68:d2:c2:89:21:5d:02:85:f3:8f:
f9:be:6c:b7:af:8b:e2:fb:63:e4:c0:2a:a9:6c:17:c5:97:2e:
54:e7:28:8f:3c:91:df:ab:76:3d:41:aa:4c:22:91:7e:95:aa:
3b:70:4c:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFAU9HeLsJ5RlMwJ4cOikLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2YWU2MTgxNGY3MTUwYzliODExN2Y0OThjYWI5NGRiNzJh
ODMzOWMwHhcNMjQwMTAxMTIzMDQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODEyOTVhMjQxZTNhYjllMTQ2ODcyMGJlZTM2NjVlOTBhMjE0Y2U1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjCrvn8SU/tm4+C0lodh5lgmFYO4
T+qRb0dyPuyH0WIJAclxQE0+EF/C1siiQ3S60zcDEdczOrP3EL0Cg+sxCDDEVX/Y
tW078FVW/1RqlwlI2EzP4cat6wexsLQASBgobaFzq8RHFL6KMZQXuZEQSdp5bFVO
UXdo54bXbrZiZw28pi4/qIFMLoNIIccWSlogbT5dVJXMnNerxdG9Z9g1Ih/CMkWK
kxec4xYg2SRM+PBJtIWokkuIi0a6GQJ5JslHTFS9YMAKgHffq02Qz6fsRfkBX/hQ
GPjy7SYmuW1Nva1Xwm7Fb2Uxwvrdurk3CnbbUbl5IeGoySwvM6k0vsAQuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBgSlaJB46ueFGhyC+42ZekKIUzlMB8GA1UdIwQY
MBaAFLauYYFPcVDJuBF/SYyrlNtyqDOcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHE1aGdVOXhVTW00RVg5SmpLdVUyM0tvTTV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85ZGU4YjAtNmNjNS00NThiLWIyM2Ut
MTZlMTBkNzJiNTY3LzEvR0JLVm9rSGpxNTRVYUhJTDdqWmw2UW9oVE9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85ZGU4YjAtNmNjNS00NThiLWIyM2UtMTZlMTBkNzJiNTY3
LzEvdHE1aGdVOXhVTW00RVg5SmpLdVUyM0tvTTV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudamMA0G
CSqGSIb3DQEBCwUAA4IBAQBWicol8LzzurR+R7cgyu66K5djWCL04bw5b8FdLbwP
zPZATbbNYniEkBj441ZCzCWddfeMYFxBgT/VMbVZK+d8xQfvmEGH9Nn8KyGkoz1S
Bt+/3/xnD0jDfDARw3sdqXYslVCIIk79C46NmBx5ao+0M1NOlnoR7sV8ujhzLZe8
zrwmXHPXaLsXP8JgxsKXz3K/LXP+NTW8RMFSqpgSJjcqoUS3etUMReshw3br4k3l
2rRFnpHVwAL8VdFTaHYT9LlBPTMfnm9ONLI1ZiDMr2jSwokhXQKF84/5vmy3r4vi
+2PkwCqpbBfFly5U5yiPPJHfq3Y9QapMIpF+lao7cExQ
-----END CERTIFICATE-----
Generated at Fri Apr 19 15:26:32 2024 by rpki-client on console-ams.rpki-client.org