Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/0c6111-58f7-4b75-bcab-90bc4624c7b2/1/GMQovSIjX9zhynVA0YEO6JRD-x8.roa
File: GMQovSIjX9zhynVA0YEO6JRD-x8.roa (raw, json)
Hash identifier: ejrD6ize9TBDWvRUB8xefd11vm2XRfw++9IAcJwnaoQ=
Subject key identifier: 18:C4:28:BD:22:23:5F:DC:E1:CA:75:40:D1:81:0E:E8:94:43:FB:1F
Certificate issuer: /CN=7470dfc0bb5ce06d86df24fe3caa4b4ef34178f4
Certificate serial: 01908230DC5E658A8425323227DC96FCB906
Authority key identifier: 74:70:DF:C0:BB:5C:E0:6D:86:DF:24:FE:3C:AA:4B:4E:F3:41:78:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHDfwLtc4G2G3yT-PKpLTvNBePQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/0c6111-58f7-4b75-bcab-90bc4624c7b2/1/GMQovSIjX9zhynVA0YEO6JRD-x8.roa
Signing time: Fri 05 Jul 2024 09:19:18 +0000
ROA not before: Fri 05 Jul 2024 09:19:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34141
IP address blocks: 217.198.16.0/20 maxlen: 20
2a02:7d0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 09 Aug 2024 08:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:82:30:dc:5e:65:8a:84:25:32:32:27:dc:96:fc:b9:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7470dfc0bb5ce06d86df24fe3caa4b4ef34178f4
Validity
Not Before: Jul 5 09:19:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18c428bd22235fdce1ca7540d1810ee89443fb1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:57:ec:44:74:6d:1e:fb:ea:9e:66:86:5c:9b:
48:54:94:e6:37:89:c6:7d:02:51:b2:aa:ae:20:38:
12:4b:c5:bf:af:e6:e4:78:45:a1:5a:0e:97:0e:fc:
c0:f0:dd:55:15:a7:b7:39:4c:97:a4:ae:4e:d5:7b:
68:59:cb:e8:94:62:0e:4a:55:4d:90:4c:ac:2c:bd:
69:e2:c4:2c:a6:a0:36:d4:5d:bd:c5:93:5c:b7:81:
7e:34:ed:30:c3:a8:49:89:ca:1e:2e:4d:89:cb:09:
1b:6c:d9:c3:20:82:e4:fe:f5:c1:d2:ed:00:c0:bb:
e8:d1:4c:e8:c2:41:a5:bd:37:96:32:b0:39:1a:61:
17:0f:2e:b5:95:6f:67:c8:28:3a:12:00:19:2d:ca:
f3:32:ba:07:5a:52:ce:69:bf:bb:6f:04:58:c6:ab:
26:b4:90:f7:87:b8:23:7a:aa:b6:13:61:c6:08:b8:
c9:fb:cf:21:c8:f0:5e:17:2c:b1:24:53:30:5c:b6:
31:b5:61:e3:4c:6b:da:59:37:80:cf:29:16:a6:e3:
ab:93:00:65:58:4f:20:83:e6:09:10:1c:d9:f7:95:
f2:3e:7f:62:e9:92:3d:db:f0:08:42:a7:f9:4e:7b:
29:9a:43:93:f4:e7:a4:a2:59:5f:cf:15:2a:db:7d:
04:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C4:28:BD:22:23:5F:DC:E1:CA:75:40:D1:81:0E:E8:94:43:FB:1F
X509v3 Authority Key Identifier:
keyid:74:70:DF:C0:BB:5C:E0:6D:86:DF:24:FE:3C:AA:4B:4E:F3:41:78:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHDfwLtc4G2G3yT-PKpLTvNBePQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/0c6111-58f7-4b75-bcab-90bc4624c7b2/1/GMQovSIjX9zhynVA0YEO6JRD-x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/0c6111-58f7-4b75-bcab-90bc4624c7b2/1/dHDfwLtc4G2G3yT-PKpLTvNBePQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.16.0/20
IPv6:
2a02:7d0::/32
Signature Algorithm: sha256WithRSAEncryption
8a:3f:15:f4:e4:87:f5:da:a8:55:62:20:3b:f6:98:ce:90:6a:
12:67:5e:71:51:6e:68:66:d7:0d:93:b6:15:ca:56:d4:d1:51:
d5:33:9e:d1:16:9b:36:8a:cc:95:32:49:f8:50:64:01:85:51:
78:4a:50:d0:b0:02:02:a3:b3:c3:ad:f2:df:df:0c:66:08:a2:
c9:a9:21:5f:be:04:44:1b:d0:9c:3b:80:9c:49:8f:09:bb:f7:
b1:a7:05:91:0b:c0:3e:1c:61:75:b3:00:9c:e1:a9:fa:ed:c9:
28:df:af:5d:13:28:4a:21:cb:61:31:63:43:ec:14:80:c4:af:
de:21:1b:b8:4f:1f:b9:14:c3:38:ee:52:85:ed:77:f6:c1:7b:
25:32:0d:0f:23:8a:03:33:79:ab:c4:b9:bd:7a:79:d0:90:d0:
c2:48:c5:b9:b2:a4:09:ae:7a:b5:b4:36:a4:7a:bc:9c:62:96:
cd:6b:fc:6f:d6:76:e8:c6:f4:fb:91:40:0c:18:86:67:90:04:
6f:bf:97:ee:ac:ae:1c:f0:32:39:23:12:8c:8e:e2:c5:5b:c7:
ed:59:e9:11:c8:f8:bb:96:26:f4:cc:89:a8:a5:80:35:69:a0:
bb:8e:8f:7a:a3:2e:03:23:64:5f:f2:7f:f9:f9:28:4e:cd:4d:
ce:fe:2d:be
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZCCMNxeZYqEJTIyJ9yW/LkGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NzBkZmMwYmI1Y2UwNmQ4NmRmMjRmZTNjYWE0YjRlZjM0
MTc4ZjQwHhcNMjQwNzA1MDkxOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOGM0MjhiZDIyMjM1ZmRjZTFjYTc1NDBkMTgxMGVlODk0NDNmYjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1fsRHRtHvvqnmaGXJtIVJTmN4nG
fQJRsqquIDgSS8W/r+bkeEWhWg6XDvzA8N1VFae3OUyXpK5O1XtoWcvolGIOSlVN
kEysLL1p4sQspqA21F29xZNct4F+NO0ww6hJicoeLk2JywkbbNnDIILk/vXB0u0A
wLvo0UzowkGlvTeWMrA5GmEXDy61lW9nyCg6EgAZLcrzMroHWlLOab+7bwRYxqsm
tJD3h7gjeqq2E2HGCLjJ+88hyPBeFyyxJFMwXLYxtWHjTGvaWTeAzykWpuOrkwBl
WE8gg+YJEBzZ95XyPn9i6ZI92/AIQqf5TnspmkOT9OekollfzxUq230E0QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBjEKL0iI1/c4cp1QNGBDuiUQ/sfMB8GA1UdIwQY
MBaAFHRw38C7XOBtht8k/jyqS07zQXj0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEhEZndMdGM0RzJHM3lULVBLcExUdk5CZVBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC8wYzYxMTEtNThmNy00Yjc1LWJjYWIt
OTBiYzQ2MjRjN2IyLzEvR01Rb3ZTSWpYOXpoeW5WQTBZRU82SlJELXg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC8wYzYxMTEtNThmNy00Yjc1LWJjYWItOTBiYzQ2MjRjN2Iy
LzEvZEhEZndMdGM0RzJHM3lULVBLcExUdk5CZVBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQE2cYQMA0E
AgACMAcDBQAqAgfQMA0GCSqGSIb3DQEBCwUAA4IBAQCKPxX05If12qhVYiA79pjO
kGoSZ15xUW5oZtcNk7YVylbU0VHVM57RFps2isyVMkn4UGQBhVF4SlDQsAICo7PD
rfLf3wxmCKLJqSFfvgREG9CcO4CcSY8Ju/expwWRC8A+HGF1swCc4an67cko369d
EyhKIcthMWND7BSAxK/eIRu4Tx+5FMM47lKF7Xf2wXslMg0PI4oDM3mrxLm9ennQ
kNDCSMW5sqQJrnq1tDakerycYpbNa/xv1nboxvT7kUAMGIZnkARvv5furK4c8DI5
IxKMjuLFW8ftWekRyPi7lib0zImopYA1aaC7jo96oy4DI2Rf8n/5+ShOzU3O/i2+
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:07 2025 by rpki-client