Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/GdlREPG2935BI_DkS2ZJq4Y21v4.roa
File: GdlREPG2935BI_DkS2ZJq4Y21v4.roa (raw, json)
Hash identifier: 4yN50jkMScoLy9CMkUSqIMeKLOWMyWpgNIGhmknul8M=
Subject key identifier: 19:D9:51:10:F1:B6:F7:7E:41:23:F0:E4:4B:66:49:AB:86:36:D6:FE
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01896A2CCA808D72FB1704A07951BC2B54F2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/GdlREPG2935BI_DkS2ZJq4Y21v4.roa
Signing time: Tue 18 Jul 2023 18:04:27 +0000
ROA not before: Tue 18 Jul 2023 18:04:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 185.206.248.0/24 maxlen: 24
45.90.19.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
194.147.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jul 2023 18:40:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6a:2c:ca:80:8d:72:fb:17:04:a0:79:51:bc:2b:54:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 18 18:04:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19d95110f1b6f77e4123f0e44b6649ab8636d6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7d:1e:aa:9c:e0:e1:5c:33:05:70:72:21:ac:
52:60:12:34:df:50:2d:a9:32:91:81:7e:59:0d:d6:
a6:fd:49:e8:ed:80:6c:2b:21:df:a8:4f:c6:c0:e1:
2a:4d:75:c1:47:e8:a6:23:05:5a:54:3f:0f:99:af:
4d:71:66:bb:69:a7:86:f4:fd:fe:41:57:56:03:0c:
d4:85:39:2d:a3:39:d7:69:43:4b:2f:df:09:fb:f0:
c4:df:c5:fc:ae:fd:6b:cc:ab:66:27:c1:b8:1f:9b:
73:cc:2d:43:d7:4e:54:17:a0:a5:ee:37:95:1d:49:
2f:61:f4:57:89:2a:8c:ea:71:fd:d3:72:1f:13:16:
f1:c2:56:d9:8b:40:a1:d1:ce:98:51:e9:17:f7:8a:
00:98:4a:8b:71:14:ae:58:96:67:e8:28:3e:13:5e:
7b:1e:75:4e:a9:32:96:dc:1e:ea:fc:9a:8e:b3:e7:
75:f7:17:88:7f:17:6a:25:97:8d:80:2f:ba:c5:8b:
f6:86:76:69:06:7a:11:6c:46:a8:50:2e:13:aa:c6:
66:46:2b:8a:de:31:cc:cf:18:ba:51:55:33:97:d6:
cf:f0:50:a2:29:7a:0a:b3:76:f3:f7:8e:84:d0:8f:
4a:7a:93:90:20:44:8a:44:54:60:02:9a:4d:10:39:
64:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D9:51:10:F1:B6:F7:7E:41:23:F0:E4:4B:66:49:AB:86:36:D6:FE
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/GdlREPG2935BI_DkS2ZJq4Y21v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.19.0/24
185.206.248.0/24
185.240.120.0/23
194.147.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:c4:db:8a:bd:19:ac:55:b9:f5:13:bd:92:82:7f:e5:35:76:
84:75:7a:6d:95:b3:ee:76:76:49:2c:82:f5:ba:a8:f5:46:69:
b3:b5:1b:7e:3e:60:23:13:8c:1f:71:1c:15:ba:8a:33:ab:72:
09:ce:d3:9a:c4:8f:d8:0e:4f:1b:72:c7:7b:10:10:c3:4b:82:
cd:be:5a:9d:31:ef:00:63:4b:e0:d8:0c:d8:d2:64:84:82:d2:
1d:54:65:c4:1c:36:ad:f8:08:e0:ba:06:0b:4c:37:91:c6:cb:
9d:db:8a:54:6d:47:d1:85:31:3d:04:f5:98:45:e4:98:c8:f8:
1f:5b:0f:73:10:e8:c4:2d:60:85:af:c6:0e:03:7b:9c:c2:35:
b3:04:ef:a0:94:10:3e:92:c5:9a:fd:49:09:aa:b7:e0:87:0c:
98:1c:3f:84:d9:94:ad:98:d1:47:41:b3:03:ae:11:cf:8d:21:
c8:8d:ed:a0:d8:8d:2a:6d:b0:6f:56:85:21:bb:a1:a6:24:6c:
bd:e4:21:1b:92:0a:7e:33:77:e0:76:04:0f:97:f8:7b:9e:9b:
02:5e:c7:52:69:da:e1:c9:b9:ea:b9:29:05:b0:66:2b:c1:33:
d0:a6:7e:2f:09:2d:41:af:0e:22:e5:73:82:a9:ee:0e:fa:2e:
1a:48:6d:1e
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYlqLMqAjXL7FwSgeVG8K1TyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwNzE4MTgwNDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWQ5NTExMGYxYjZmNzdlNDEyM2YwZTQ0YjY2NDlhYjg2MzZkNmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoX0eqpzg4VwzBXByIaxSYBI031At
qTKRgX5ZDdam/Uno7YBsKyHfqE/GwOEqTXXBR+imIwVaVD8Pma9NcWa7aaeG9P3+
QVdWAwzUhTktoznXaUNLL98J+/DE38X8rv1rzKtmJ8G4H5tzzC1D105UF6Cl7jeV
HUkvYfRXiSqM6nH903IfExbxwlbZi0Ch0c6YUekX94oAmEqLcRSuWJZn6Cg+E157
HnVOqTKW3B7q/JqOs+d19xeIfxdqJZeNgC+6xYv2hnZpBnoRbEaoUC4TqsZmRiuK
3jHMzxi6UVUzl9bP8FCiKXoKs3bz946E0I9KepOQIESKRFRgAppNEDlk1wIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFBnZURDxtvd+QSPw5EtmSauGNtb+MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvR2RsUkVQRzI5MzVCSV9Ea1MyWkpxNFkyMXY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALVoTAwQA
uc74AwQBufB4AwQAwpMQMA0GCSqGSIb3DQEBCwUAA4IBAQCnxNuKvRmsVbn1E72S
gn/lNXaEdXptlbPudnZJLIL1uqj1RmmztRt+PmAjE4wfcRwVuoozq3IJztOaxI/Y
Dk8bcsd7EBDDS4LNvlqdMe8AY0vg2AzY0mSEgtIdVGXEHDat+AjgugYLTDeRxsud
24pUbUfRhTE9BPWYReSYyPgfWw9zEOjELWCFr8YOA3ucwjWzBO+glBA+ksWa/UkJ
qrfghwyYHD+E2ZStmNFHQbMDrhHPjSHIje2g2I0qbbBvVoUhu6GmJGy95CEbkgp+
M3fgdgQPl/h7npsCXsdSadrhybnquSkFsGYrwTPQpn4vCS1Brw4i5XOCqe4O+i4a
SG0e
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org