Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/5f8074-01ce-4cc4-b945-024e7257335f/1/GEgkz0Jn79UlDNe55e2hfv3qXyg.roa
File: GEgkz0Jn79UlDNe55e2hfv3qXyg.roa (raw, json)
Hash identifier: SNJXnTRNhJTGRFrUjRUhQ3vtZHc8bSVWqegI6QnYgEs=
Subject key identifier: 18:48:24:CF:42:67:EF:D5:25:0C:D7:B9:E5:ED:A1:7E:FD:EA:5F:28
Certificate issuer: /CN=5ad443ad19444814122f3b27cb93a505abe50799
Certificate serial: 018570FB93A99D5AACE79F880FC3DD57B904
Authority key identifier: 5A:D4:43:AD:19:44:48:14:12:2F:3B:27:CB:93:A5:05:AB:E5:07:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WtRDrRlESBQSLzsny5OlBavlB5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/5f8074-01ce-4cc4-b945-024e7257335f/1/GEgkz0Jn79UlDNe55e2hfv3qXyg.roa
Signing time: Mon 02 Jan 2023 05:36:53 +0000
ROA not before: Mon 02 Jan 2023 05:36:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49788
IP address blocks: 91.242.200.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:93:a9:9d:5a:ac:e7:9f:88:0f:c3:dd:57:b9:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ad443ad19444814122f3b27cb93a505abe50799
Validity
Not Before: Jan 2 05:36:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=184824cf4267efd5250cd7b9e5eda17efdea5f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d2:75:56:e7:1e:36:fb:b4:92:73:1d:60:c2:
97:7f:36:52:08:53:af:5d:fe:74:55:50:08:29:68:
ba:f0:ff:f9:5d:aa:7a:24:2d:ce:11:84:48:32:01:
12:cd:f4:34:9a:d3:a4:c9:a4:53:e6:20:0a:86:b9:
49:03:36:ff:5d:b8:ff:47:ea:f9:18:60:e8:51:68:
40:d7:5f:8a:a3:ea:33:41:b1:08:d8:6e:9b:ea:5b:
a0:02:a8:11:b3:65:84:22:61:e8:76:92:44:ff:c3:
0d:34:51:2c:f3:c5:4a:de:21:6b:20:ba:1a:32:ba:
9e:06:29:f5:75:94:aa:0c:14:cb:48:8a:18:d4:20:
50:6a:67:ac:1f:76:0d:66:1d:34:2c:ab:06:b2:58:
64:16:01:4c:d0:a5:3c:fb:ae:93:e3:31:ac:db:0d:
d9:66:33:8a:7e:40:ba:60:1e:0f:a5:10:0c:31:bf:
d6:41:88:d1:73:01:76:65:57:3e:86:ee:b1:1b:1a:
95:a8:ac:d5:32:a8:d9:c4:96:4d:a4:8f:f6:33:e4:
6e:b3:7e:3f:99:71:0a:de:2b:7c:df:30:99:3c:18:
2d:f9:77:28:cd:79:2b:e5:37:f1:99:0a:37:e0:88:
56:03:c3:cf:0f:bb:96:22:02:f5:74:12:df:4f:d0:
a9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:48:24:CF:42:67:EF:D5:25:0C:D7:B9:E5:ED:A1:7E:FD:EA:5F:28
X509v3 Authority Key Identifier:
keyid:5A:D4:43:AD:19:44:48:14:12:2F:3B:27:CB:93:A5:05:AB:E5:07:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WtRDrRlESBQSLzsny5OlBavlB5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/5f8074-01ce-4cc4-b945-024e7257335f/1/GEgkz0Jn79UlDNe55e2hfv3qXyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/5f8074-01ce-4cc4-b945-024e7257335f/1/WtRDrRlESBQSLzsny5OlBavlB5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.200.0/21
Signature Algorithm: sha256WithRSAEncryption
73:01:82:f7:22:ae:73:d6:ca:85:aa:b1:c5:77:53:84:47:79:
3b:90:b6:28:e4:e7:e8:56:db:89:67:bd:5d:b3:d8:b5:84:33:
ac:6d:d9:b8:62:cd:c5:5e:aa:4b:68:85:49:f3:b3:a6:bc:01:
84:6a:c6:52:33:e5:16:22:4e:45:71:e5:3c:cb:d0:f5:fc:42:
f2:4a:fc:df:89:e3:41:60:e2:b4:3a:23:cf:96:32:01:fc:f7:
d8:57:5d:86:26:e0:d9:1b:d0:56:19:b5:3e:5b:19:c9:3a:46:
ad:9c:12:7b:1a:76:f5:1c:b8:c3:8a:5e:15:b2:53:5b:b6:83:
1f:99:b1:f5:f5:52:b6:55:6e:13:8d:48:b1:38:a2:a8:cd:94:
b2:21:4c:d0:5d:ac:7e:fe:52:ce:ec:16:b8:b5:3f:85:a6:2d:
75:43:f2:6e:a7:2f:f5:c5:fb:66:e8:9f:54:d8:fb:db:45:81:
75:31:7e:d6:b1:cb:4b:07:2e:98:19:b8:c3:2a:64:33:55:30:
56:61:5f:dd:75:41:9a:e4:30:e1:61:b2:82:d0:70:f2:4e:29:
1d:f1:47:65:aa:94:66:ae:3a:ad:b9:f3:c6:0f:b1:14:70:ee:
fa:a4:d7:e5:ba:33:c2:be:7f:e3:cc:29:89:8b:50:8e:cc:53:
fa:08:26:bc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw+5OpnVqs55+ID8PdV7kEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhZDQ0M2FkMTk0NDQ4MTQxMjJmM2IyN2NiOTNhNTA1YWJl
NTA3OTkwHhcNMjMwMTAyMDUzNjUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODQ4MjRjZjQyNjdlZmQ1MjUwY2Q3YjllNWVkYTE3ZWZkZWE1ZjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjdJ1VuceNvu0knMdYMKXfzZSCFOv
Xf50VVAIKWi68P/5Xap6JC3OEYRIMgESzfQ0mtOkyaRT5iAKhrlJAzb/Xbj/R+r5
GGDoUWhA11+Ko+ozQbEI2G6b6lugAqgRs2WEImHodpJE/8MNNFEs88VK3iFrILoa
MrqeBin1dZSqDBTLSIoY1CBQamesH3YNZh00LKsGslhkFgFM0KU8+66T4zGs2w3Z
ZjOKfkC6YB4PpRAMMb/WQYjRcwF2ZVc+hu6xGxqVqKzVMqjZxJZNpI/2M+Rus34/
mXEK3it83zCZPBgt+XcozXkr5TfxmQo34IhWA8PPD7uWIgL1dBLfT9CpIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBhIJM9CZ+/VJQzXueXtoX796l8oMB8GA1UdIwQY
MBaAFFrUQ60ZREgUEi87J8uTpQWr5QeZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3RSRHJSbEVTQlFTTHpzbnk1T2xCYXZsQjVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi81ZjgwNzQtMDFjZS00Y2M0LWI5NDUt
MDI0ZTcyNTczMzVmLzEvR0Vna3owSm43OVVsRE5lNTVlMmhmdjNxWHlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi81ZjgwNzQtMDFjZS00Y2M0LWI5NDUtMDI0ZTcyNTczMzVm
LzEvV3RSRHJSbEVTQlFTTHpzbnk1T2xCYXZsQjVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDW/LIMA0G
CSqGSIb3DQEBCwUAA4IBAQBzAYL3Iq5z1sqFqrHFd1OER3k7kLYo5OfoVtuJZ71d
s9i1hDOsbdm4Ys3FXqpLaIVJ87OmvAGEasZSM+UWIk5FceU8y9D1/ELySvzfieNB
YOK0OiPPljIB/PfYV12GJuDZG9BWGbU+WxnJOkatnBJ7Gnb1HLjDil4VslNbtoMf
mbH19VK2VW4TjUixOKKozZSyIUzQXax+/lLO7Ba4tT+Fpi11Q/Jupy/1xftm6J9U
2PvbRYF1MX7WsctLBy6YGbjDKmQzVTBWYV/ddUGa5DDhYbKC0HDyTikd8UdlqpRm
rjqtufPGD7EUcO76pNflujPCvn/jzCmJi1COzFP6CCa8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:47 2024 by rpki-client on console-ams.rpki-client.org