Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/gbJ4AGyZxKBztsciUKU0OsbIdDU.roa
File: gbJ4AGyZxKBztsciUKU0OsbIdDU.roa (raw, json)
Hash identifier: RJvGoa/uIsSovX7jkA7k1rnvRHAEgtbsU4imRqrZbdA=
Subject key identifier: 81:B2:78:00:6C:99:C4:A0:73:B6:C7:22:50:A5:34:3A:C6:C8:74:35
Certificate issuer: /CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Certificate serial: 018F20E5DFAECCF55A820801786D93AD77C4
Authority key identifier: A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/gbJ4AGyZxKBztsciUKU0OsbIdDU.roa
Signing time: Sat 27 Apr 2024 18:51:26 +0000
ROA not before: Sat 27 Apr 2024 18:51:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14907
IP address blocks: 91.198.174.0/24 maxlen: 24
185.15.56.0/22 maxlen: 22
185.15.56.0/24 maxlen: 24
185.15.57.0/24 maxlen: 24
185.15.58.0/24 maxlen: 24
185.15.59.0/24 maxlen: 24
185.71.138.0/24 maxlen: 24
2001:67c:930::/48 maxlen: 48
2a02:ec80::/29 maxlen: 29
2a02:ec80:300::/48 maxlen: 48
2a02:ec80:600::/48 maxlen: 48
2a02:ec80:700::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 09 Oct 2024 16:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:20:e5:df:ae:cc:f5:5a:82:08:01:78:6d:93:ad:77:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Validity
Not Before: Apr 27 18:51:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81b278006c99c4a073b6c72250a5343ac6c87435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f7:30:7d:6d:79:9d:f5:04:29:23:d9:b4:e8:
33:bc:67:75:90:e6:a0:57:f4:e0:7c:5f:95:70:d3:
6e:94:cb:8e:a6:00:02:1b:4f:27:3b:1b:b5:4c:ac:
14:91:64:19:c3:cd:64:6b:5f:1a:24:48:59:7e:53:
cb:5d:89:5b:1b:5d:d2:65:e1:a7:92:84:d1:a5:32:
b1:04:eb:2b:62:5d:ca:d5:86:81:c4:79:23:96:52:
fb:89:31:76:89:03:af:a5:46:d4:07:a4:fb:8e:8d:
2e:4f:5b:05:b9:e5:8f:58:41:50:c6:18:21:78:68:
0d:62:6b:e5:0b:90:7e:72:8e:bd:63:df:9f:9d:5d:
a1:7a:0f:7d:ca:f1:32:55:bf:0c:42:20:18:db:6a:
9b:18:08:78:29:08:ee:0d:b6:f7:ed:e7:b0:b4:e9:
cb:59:0f:78:cc:e0:94:23:b3:d9:4f:88:84:fb:4f:
43:e1:3d:d9:13:85:ba:39:59:0b:3a:24:ed:87:98:
dc:ca:d3:0f:50:ab:eb:99:b1:a8:b5:8d:29:37:cf:
e4:f2:13:0e:cc:c7:bf:d4:1c:f9:34:cb:4a:dd:6b:
d7:c3:cd:7a:4e:ad:45:d7:9c:c0:3e:61:e5:ba:8d:
48:36:60:78:b7:f4:7d:84:e7:77:33:f8:19:42:ea:
5b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B2:78:00:6C:99:C4:A0:73:B6:C7:22:50:A5:34:3A:C6:C8:74:35
X509v3 Authority Key Identifier:
keyid:A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/gbJ4AGyZxKBztsciUKU0OsbIdDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.174.0/24
185.15.56.0/22
185.71.138.0/24
IPv6:
2001:67c:930::/48
2a02:ec80::/29
Signature Algorithm: sha256WithRSAEncryption
57:07:d5:e8:62:83:a2:23:6b:34:d4:7f:71:28:e0:f0:cc:e8:
a8:3b:85:16:c2:bc:6d:5e:fa:47:ea:d4:e5:27:6d:dc:76:cc:
5e:9b:bf:6b:17:e0:dd:d9:23:bf:80:17:48:83:1c:4f:75:e3:
d1:17:ef:a0:ef:a0:af:45:3a:48:07:6b:03:3b:49:6a:0e:d7:
1b:64:5c:0d:32:e9:51:a8:4d:80:23:99:21:39:11:ce:71:15:
07:54:87:0e:dd:49:8d:73:8c:f2:89:fb:67:2d:b0:96:cd:8d:
c3:5f:fd:13:c5:ca:89:56:38:9d:85:1f:61:0b:11:46:51:cf:
eb:83:23:a0:d0:2e:fb:05:78:5e:f7:a5:ac:56:97:04:48:98:
64:82:55:99:de:71:71:76:04:a5:1c:00:87:78:5e:cb:0a:33:
74:2b:cb:64:ef:fc:39:d0:6e:d9:d2:18:eb:c6:11:39:7e:cc:
6e:33:15:22:6e:3d:5b:f4:a0:df:77:a0:c0:ba:ca:6d:66:fa:
36:53:23:a1:00:5a:6a:52:0e:51:6e:93:5a:02:31:20:91:a0:
7a:8d:51:6b:d2:28:88:fa:52:c2:85:1a:85:ae:a0:c6:c9:03:
3c:57:eb:b1:c5:da:b9:94:da:56:71:66:c4:9a:60:91:77:59:
56:d0:97:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 16:02:50 2025 by rpki-client