Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/GKB57IyCmN0xKkdP1YdLlMScOOI.roa
File: GKB57IyCmN0xKkdP1YdLlMScOOI.roa (raw, json)
Hash identifier: t1wWZhAUwr+NMSBvtcdLxBzK3PzVWcK9mdgHIbIN7gI=
Subject key identifier: 18:A0:79:EC:8C:82:98:DD:31:2A:47:4F:D5:87:4B:94:C4:9C:38:E2
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 019007E6A5FD97EBD201B1320D550D456329
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/GKB57IyCmN0xKkdP1YdLlMScOOI.roa
Signing time: Tue 11 Jun 2024 15:24:34 +0000
ROA not before: Tue 11 Jun 2024 15:24:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 5.180.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 17:27:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:07:e6:a5:fd:97:eb:d2:01:b1:32:0d:55:0d:45:63:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jun 11 15:24:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18a079ec8c8298dd312a474fd5874b94c49c38e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c5:60:46:41:a6:2a:df:b5:87:b7:db:7d:bc:
f2:78:a3:66:cf:81:f0:4b:63:e3:af:a8:1b:15:2b:
69:84:ee:a5:31:06:63:19:b6:8c:0f:b1:3a:c0:4e:
92:bb:ee:94:a1:78:28:1f:b3:a4:3e:72:31:b7:87:
cf:a9:5f:da:23:fa:12:c5:75:25:c4:9f:ee:e0:f1:
48:96:41:db:51:5e:ea:b3:0d:b7:c5:d5:60:ca:8b:
cb:bb:e0:f1:48:9a:5a:1a:f4:c5:19:f5:f7:22:c2:
a2:c3:6f:3e:d9:01:40:92:a9:b5:71:1b:5e:f3:a0:
03:61:84:c8:28:c7:8c:1f:31:ad:c8:e0:2c:91:2d:
dc:34:df:90:84:89:35:13:2d:6d:77:3a:f2:94:1c:
f1:84:08:aa:da:83:f0:75:bd:1b:a6:15:8d:7b:e5:
f0:98:34:1a:83:85:3c:fc:48:88:3b:1c:1f:a3:0e:
7a:4f:e2:d0:72:46:ab:25:b0:44:e1:63:f4:c3:d7:
ff:3c:17:41:86:49:e3:0f:de:f0:4f:1d:18:8a:f3:
07:e5:9a:d6:1b:df:60:f5:3a:51:b6:6c:5e:10:47:
61:f7:3d:81:5d:6c:2a:62:85:06:75:e8:77:59:2d:
2c:50:3e:a7:65:8f:71:8d:a3:fd:79:81:98:99:35:
85:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A0:79:EC:8C:82:98:DD:31:2A:47:4F:D5:87:4B:94:C4:9C:38:E2
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/GKB57IyCmN0xKkdP1YdLlMScOOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.195.0/24
Signature Algorithm: sha256WithRSAEncryption
21:38:55:15:40:67:77:a2:32:d4:ff:3f:dd:2a:18:a7:8c:17:
df:a4:f8:b5:fe:a4:4d:31:65:03:39:55:f4:57:68:5d:6b:e6:
fa:e9:f5:02:d1:24:a6:e6:b6:60:2f:4e:3b:24:0e:0d:97:e2:
7c:bd:4e:f8:5f:a2:e8:42:5b:66:43:42:44:54:99:a2:c7:e0:
f3:d5:41:d6:fa:75:9d:4d:b2:2c:f0:fa:3b:c2:46:e6:2e:e3:
05:97:b0:be:91:9d:ff:d1:3e:b7:4d:5e:5f:e5:3e:08:35:00:
3d:44:10:c8:37:83:2d:8a:c8:c1:18:a0:95:4e:b6:4c:55:bd:
05:ff:69:2c:f2:53:f0:07:81:51:33:35:41:dc:c7:c7:60:f3:
eb:71:e2:f1:4e:35:d9:1e:4a:2c:c0:ce:8d:e2:8b:96:dd:c2:
ad:bb:37:bc:e7:6d:93:63:f9:96:34:3b:0d:ba:af:c0:89:eb:
76:66:a3:37:ef:95:a0:07:30:cb:16:44:a9:7c:50:37:ed:35:
99:af:74:22:fd:be:73:7c:c3:20:72:a1:3f:50:c2:2a:74:5f:
8c:56:d7:1a:2e:0e:c7:84:91:74:32:5d:0d:93:c1:12:ad:8b:
5e:1c:28:2e:04:20:91:2e:65:54:f9:a7:18:4b:3e:98:fc:4d:
1f:ac:ea:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 19:21:51 2024 by rpki-client on console-ams.rpki-client.org