Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/GTF3JowkqVvECgrgb7pUa-w5bjo.roa
File: GTF3JowkqVvECgrgb7pUa-w5bjo.roa (raw, json)
Hash identifier: WiRERM7qk7tfTA+CVP17xWveroj6PT6cIG5w82xMHyA=
Subject key identifier: 19:31:77:26:8C:24:A9:5B:C4:0A:0A:E0:6F:BA:54:6B:EC:39:6E:3A
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 01857315FF5D8CF683C68FF0D30C63AB18C3
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/GTF3JowkqVvECgrgb7pUa-w5bjo.roa
Signing time: Mon 02 Jan 2023 15:24:59 +0000
ROA not before: Mon 02 Jan 2023 15:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204281
IP address blocks: 194.12.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:ff:5d:8c:f6:83:c6:8f:f0:d3:0c:63:ab:18:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 2 15:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=193177268c24a95bc40a0ae06fba546bec396e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7b:ac:04:10:f6:74:bc:d6:fa:45:42:35:bd:
0b:1c:ed:4d:fb:ae:56:17:63:cb:0e:8c:0f:e6:4b:
65:e9:f8:ab:bd:5c:95:56:3e:67:56:59:6b:8d:d5:
8c:17:ed:a1:f9:09:34:0e:da:d1:eb:0d:f2:81:1b:
8a:e5:00:b0:a6:66:31:1a:1d:50:7b:50:b9:6a:60:
a4:52:d9:74:d6:d9:1a:62:2f:63:a7:e0:62:cd:6f:
14:8d:bb:0b:73:51:d1:59:06:69:0f:a1:cc:4f:45:
0d:5c:0b:d4:ad:40:7d:73:0a:80:83:ae:f0:d5:ea:
55:f0:11:90:6a:bb:d8:20:fa:8b:a6:47:35:ef:a3:
8e:f6:da:60:40:b9:24:03:37:6a:0d:7c:40:28:25:
4c:e5:fe:1b:04:df:2d:c6:3c:e1:58:c2:f1:8f:53:
d4:22:09:e3:db:37:ee:82:91:e2:0e:ce:d0:55:38:
8d:8e:c9:52:4d:2b:65:29:2a:42:74:6f:6f:a5:16:
95:73:08:1c:02:c4:7a:5d:29:6a:f7:a2:1e:57:96:
dc:29:94:db:03:49:ed:ca:41:8c:b5:d0:f1:b0:bf:
b3:06:4e:82:b0:f4:a5:00:90:54:c8:ea:a1:24:e1:
c7:03:c9:c6:44:9c:fc:77:b6:3b:95:15:74:06:73:
00:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:31:77:26:8C:24:A9:5B:C4:0A:0A:E0:6F:BA:54:6B:EC:39:6E:3A
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/GTF3JowkqVvECgrgb7pUa-w5bjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.12.237.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:5d:a2:38:71:89:8c:36:ac:cd:4f:c1:55:5f:b5:9e:7a:40:
7e:52:e6:0c:41:65:ad:b7:69:a1:ec:f8:07:04:66:1e:e5:e5:
f8:e7:55:93:a4:27:2e:62:85:95:27:93:4d:a5:50:c0:fb:e5:
5f:39:b1:cd:42:c0:97:33:69:25:3a:54:a7:4c:c9:42:fb:48:
ec:dd:9c:7f:27:2e:c3:65:ee:99:b2:17:59:30:7b:90:da:10:
e3:90:9b:80:ff:5b:3d:fd:2e:6d:13:c1:98:16:05:74:41:2f:
31:92:a2:60:b8:8a:d0:3b:76:34:b0:2f:58:9e:eb:6f:c1:86:
9a:4b:b7:7a:7f:06:04:3e:07:89:b2:5c:05:e7:71:18:fd:9d:
86:01:9b:fb:3b:e6:65:fa:59:c9:3a:51:5e:80:a5:42:65:a0:
3d:34:0f:a4:32:b8:5e:2f:18:0a:15:98:fb:86:f4:82:4f:15:
5b:33:34:0b:2b:08:2d:db:0b:6c:cf:b0:09:8f:5e:01:87:24:
81:87:3c:de:52:7d:8e:b1:08:9a:08:bb:3a:a5:29:17:1f:13:
a2:be:a8:2e:f5:26:76:c1:c7:bc:a3:e8:a7:9c:42:8d:61:8a:
64:72:1c:16:11:f0:94:0f:2c:72:a4:3d:89:d8:8a:57:fe:25:
99:d4:09:00
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzFf9djPaDxo/w0wxjqxjDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMDRhNDA4MjFjNDE3NmNjNDJlMjU1ZWY2YzE3Mjc0NzNj
M2YwMGEwHhcNMjMwMTAyMTUyNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTMxNzcyNjhjMjRhOTViYzQwYTBhZTA2ZmJhNTQ2YmVjMzk2ZTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnnusBBD2dLzW+kVCNb0LHO1N+65W
F2PLDowP5ktl6firvVyVVj5nVllrjdWMF+2h+Qk0DtrR6w3ygRuK5QCwpmYxGh1Q
e1C5amCkUtl01tkaYi9jp+BizW8UjbsLc1HRWQZpD6HMT0UNXAvUrUB9cwqAg67w
1epV8BGQarvYIPqLpkc176OO9tpgQLkkAzdqDXxAKCVM5f4bBN8txjzhWMLxj1PU
Ignj2zfugpHiDs7QVTiNjslSTStlKSpCdG9vpRaVcwgcAsR6XSlq96IeV5bcKZTb
A0ntykGMtdDxsL+zBk6CsPSlAJBUyOqhJOHHA8nGRJz8d7Y7lRV0BnMAhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBkxdyaMJKlbxAoK4G+6VGvsOW46MB8GA1UdIwQY
MBaAFEEEpAghxBdsxC4lXvbBcnRzw/AKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMt
YjI3ZDZlMjc4ZTE4LzEvR1RGM0pvd2txVnZFQ2dyZ2I3cFVhLXc1YmpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMtYjI3ZDZlMjc4ZTE4
LzEvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgztMA0G
CSqGSIb3DQEBCwUAA4IBAQCwXaI4cYmMNqzNT8FVX7WeekB+UuYMQWWtt2mh7PgH
BGYe5eX451WTpCcuYoWVJ5NNpVDA++VfObHNQsCXM2klOlSnTMlC+0js3Zx/Jy7D
Ze6ZshdZMHuQ2hDjkJuA/1s9/S5tE8GYFgV0QS8xkqJguIrQO3Y0sC9YnutvwYaa
S7d6fwYEPgeJslwF53EY/Z2GAZv7O+Zl+lnJOlFegKVCZaA9NA+kMrheLxgKFZj7
hvSCTxVbMzQLKwgt2wtsz7AJj14BhySBhzzeUn2OsQiaCLs6pSkXHxOivqgu9SZ2
wce8o+innEKNYYpkchwWEfCUDyxypD2J2IpX/iWZ1AkA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:56 2024 by rpki-client on console-fra.rpki-client.org