Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GnoGVDuXx3y1BIELrvH--ODGvBo.roa
File: GnoGVDuXx3y1BIELrvH--ODGvBo.roa (raw, json)
Hash identifier: 2wzV8qufQdJ5fftF5ZNu5KKvcZMmqpggUzp7yapBTvs=
Subject key identifier: 1A:7A:06:54:3B:97:C7:7C:B5:04:81:0B:AE:F1:FE:F8:E0:C6:BC:1A
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01912CBD3DF05E504EAE0389ED2B4E5778F4
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GnoGVDuXx3y1BIELrvH--ODGvBo.roa
Signing time: Wed 07 Aug 2024 12:08:05 +0000
ROA not before: Wed 07 Aug 2024 12:08:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 80.81.39.0/24 maxlen: 24
80.81.40.0/24 maxlen: 24
80.81.41.0/24 maxlen: 24
80.81.47.0/24 maxlen: 24
80.81.48.0/24 maxlen: 24
80.81.49.0/24 maxlen: 24
80.81.50.0/24 maxlen: 24
80.81.52.0/24 maxlen: 24
80.81.53.0/24 maxlen: 24
80.81.56.0/24 maxlen: 24
80.81.58.0/24 maxlen: 24
80.255.224.0/20 maxlen: 20
83.223.128.0/24 maxlen: 24
83.223.129.0/24 maxlen: 24
83.223.130.0/24 maxlen: 24
83.223.131.0/24 maxlen: 24
83.223.134.0/24 maxlen: 24
83.223.135.0/24 maxlen: 24
83.223.137.0/24 maxlen: 24
83.223.138.0/24 maxlen: 24
83.223.140.0/24 maxlen: 24
83.223.142.0/24 maxlen: 24
83.223.144.0/24 maxlen: 24
83.223.148.0/24 maxlen: 24
83.223.152.0/24 maxlen: 24
83.223.153.0/24 maxlen: 24
83.223.154.0/24 maxlen: 24
83.223.156.0/24 maxlen: 24
83.223.157.0/24 maxlen: 24
83.223.158.0/24 maxlen: 24
85.254.41.0/24 maxlen: 24
85.254.45.0/24 maxlen: 24
85.254.46.0/24 maxlen: 24
85.254.52.0/24 maxlen: 24
85.254.53.0/24 maxlen: 24
85.254.54.0/24 maxlen: 24
85.254.55.0/24 maxlen: 24
85.254.66.0/24 maxlen: 24
85.254.67.0/24 maxlen: 24
85.254.70.0/24 maxlen: 24
85.254.72.0/24 maxlen: 24
85.254.133.0/24 maxlen: 24
85.254.135.0/24 maxlen: 24
85.254.136.0/24 maxlen: 24
85.254.165.0/24 maxlen: 24
85.254.166.0/24 maxlen: 24
85.254.167.0/24 maxlen: 24
85.254.171.0/24 maxlen: 24
85.254.188.0/24 maxlen: 24
85.254.189.0/24 maxlen: 24
85.254.190.0/24 maxlen: 24
85.254.191.0/24 maxlen: 24
91.190.37.0/24 maxlen: 24
91.190.38.0/24 maxlen: 24
91.190.39.0/24 maxlen: 24
91.190.40.0/24 maxlen: 24
91.190.41.0/24 maxlen: 24
91.190.43.0/24 maxlen: 24
91.190.44.0/24 maxlen: 24
91.190.46.0/24 maxlen: 24
91.190.47.0/24 maxlen: 24
91.190.61.0/24 maxlen: 24
91.190.62.0/24 maxlen: 24
94.101.226.0/24 maxlen: 24
94.101.237.0/24 maxlen: 24
159.148.143.0/24 maxlen: 24
159.148.148.0/24 maxlen: 24
159.148.149.0/24 maxlen: 24
159.148.181.0/24 maxlen: 24
159.148.240.0/24 maxlen: 24
159.148.242.0/24 maxlen: 24
159.148.243.0/24 maxlen: 24
185.7.237.0/24 maxlen: 24
185.7.238.0/24 maxlen: 24
185.7.239.0/24 maxlen: 24
185.176.116.0/24 maxlen: 24
185.176.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 06:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2c:bd:3d:f0:5e:50:4e:ae:03:89:ed:2b:4e:57:78:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Aug 7 12:08:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a7a06543b97c77cb504810baef1fef8e0c6bc1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:37:6f:a0:9b:e3:5d:ec:70:6a:db:f6:11:
e5:83:91:40:0e:fd:00:67:f4:b7:39:36:a5:5a:c1:
81:20:52:80:2f:6c:a0:9c:14:b9:ca:22:97:cb:5f:
0b:6f:14:a4:e1:6b:3b:d9:8c:91:d6:f2:f3:c3:ac:
f8:69:1a:3f:1e:e1:b9:e0:82:5b:0a:3f:df:ee:de:
0c:55:9f:f4:e4:64:f9:45:88:a4:e4:0a:c6:df:0d:
76:bc:3e:c9:89:85:cc:71:53:cb:6f:1d:20:f5:78:
cf:5b:ec:57:00:f0:30:d6:43:8f:a9:0c:f3:64:cd:
39:41:24:85:68:c9:5c:3e:d7:63:bb:b5:54:c4:e3:
a2:1c:62:60:68:3d:55:c7:cc:85:bd:11:e6:56:02:
cf:10:48:56:7e:73:e0:c0:e9:b4:89:da:d7:96:8e:
27:06:17:db:b5:c5:e7:76:fa:9c:36:21:f2:5f:96:
3f:0a:35:bc:a2:33:e6:a2:ff:a8:fb:d3:8d:81:5f:
ed:f8:11:68:75:12:6e:95:67:6d:6c:a1:5d:fb:a7:
55:81:1c:06:06:35:ab:03:8a:89:4a:5f:7c:70:f4:
f5:46:fa:91:46:b8:7d:e4:b9:5b:3e:5a:0a:22:ae:
44:8a:21:fb:a6:e4:ca:5a:2c:27:ca:b6:f4:cf:34:
99:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7A:06:54:3B:97:C7:7C:B5:04:81:0B:AE:F1:FE:F8:E0:C6:BC:1A
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/GnoGVDuXx3y1BIELrvH--ODGvBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.39.0-80.81.41.255
80.81.47.0-80.81.50.255
80.81.52.0/23
80.81.56.0/24
80.81.58.0/24
80.255.224.0/20
83.223.128.0/22
83.223.134.0/23
83.223.137.0-83.223.138.255
83.223.140.0/24
83.223.142.0/24
83.223.144.0/24
83.223.148.0/24
83.223.152.0-83.223.154.255
83.223.156.0-83.223.158.255
85.254.41.0/24
85.254.45.0-85.254.46.255
85.254.52.0/22
85.254.66.0/23
85.254.70.0/24
85.254.72.0/24
85.254.133.0/24
85.254.135.0-85.254.136.255
85.254.165.0-85.254.167.255
85.254.171.0/24
85.254.188.0/22
91.190.37.0-91.190.41.255
91.190.43.0-91.190.44.255
91.190.46.0/23
91.190.61.0-91.190.62.255
94.101.226.0/24
94.101.237.0/24
159.148.143.0/24
159.148.148.0/23
159.148.181.0/24
159.148.240.0/24
159.148.242.0/23
185.7.237.0-185.7.239.255
185.176.116.0/24
185.176.119.0/24
Signature Algorithm: sha256WithRSAEncryption
93:65:fa:95:ba:e1:4a:99:f2:6a:d1:2b:ad:dc:f5:16:94:af:
fa:79:4e:ce:e0:7c:22:4f:61:fd:57:ea:b9:8b:db:42:8b:e9:
5f:b4:2c:d7:c8:dc:ab:11:e8:68:29:03:3f:02:02:bb:71:d5:
db:21:79:72:3e:eb:ee:42:04:00:25:ea:93:65:e8:32:6c:b7:
65:e0:81:17:a2:df:6b:62:a3:e2:ae:b2:7d:bc:aa:45:bf:56:
08:53:dd:f7:b4:57:2c:fa:8a:cc:62:72:cd:55:59:28:c9:4e:
eb:b1:06:98:1d:cf:fb:2c:64:cb:e7:8d:76:aa:ba:e3:32:8f:
64:47:4a:86:ce:93:72:31:40:75:76:a9:9c:ae:1f:e9:a0:69:
db:bf:83:d4:9c:df:a7:4f:af:47:3b:f3:14:fe:c7:d2:cc:51:
d7:e5:e8:27:35:eb:e6:e3:37:ce:f6:0e:4a:b2:20:bf:9e:06:
07:00:70:09:25:d5:5d:0e:92:cc:4b:d0:e1:4e:c4:39:de:92:
44:c6:b8:ec:d0:5b:1f:a8:a5:c5:cf:fe:54:47:a9:25:10:48:
1e:71:04:7b:44:54:00:c5:f4:ee:a0:23:bd:2b:ab:e4:0d:97:
c4:0e:66:84:f0:a9:a2:d2:da:9b:26:5e:ea:bf:10:94:12:cd:
33:68:e4:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:16 2025 by rpki-client