Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/GRN9atagGCQfUsrQpo0a9LIDZ38.roa
File: GRN9atagGCQfUsrQpo0a9LIDZ38.roa (raw, json)
Hash identifier: YZnijaEZQ9AEG+FwUdPMjQDiQCzEpJODixorfuXzG1w=
Subject key identifier: 19:13:7D:6A:D6:A0:18:24:1F:52:CA:D0:A6:8D:1A:F4:B2:03:67:7F
Certificate issuer: /CN=b30e3011a0fb3111fbe8493c1230974aef532704
Certificate serial: 01894EACBFC28E722EDB4AD347F152715CF5
Authority key identifier: B3:0E:30:11:A0:FB:31:11:FB:E8:49:3C:12:30:97:4A:EF:53:27:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/GRN9atagGCQfUsrQpo0a9LIDZ38.roa
Signing time: Thu 13 Jul 2023 09:54:51 +0000
ROA not before: Thu 13 Jul 2023 09:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208951
IP address blocks: 188.227.57.0/24 maxlen: 24
188.227.58.0/24 maxlen: 24
188.227.59.0/24 maxlen: 24
94.141.96.0/24 maxlen: 24
94.141.97.0/24 maxlen: 24
94.141.98.0/24 maxlen: 24
94.141.99.0/24 maxlen: 24
188.227.84.0/24 maxlen: 24
188.227.85.0/24 maxlen: 24
188.227.86.0/24 maxlen: 24
188.227.87.0/24 maxlen: 24
45.138.24.0/24 maxlen: 24
31.44.2.0/24 maxlen: 24
31.44.1.0/24 maxlen: 24
31.44.3.0/24 maxlen: 24
31.44.0.0/24 maxlen: 24
45.138.26.0/24 maxlen: 24
45.138.25.0/24 maxlen: 24
188.227.107.0/24 maxlen: 24
188.227.106.0/24 maxlen: 24
78.111.84.0/24 maxlen: 24
45.14.48.0/24 maxlen: 24
45.14.50.0/24 maxlen: 24
45.14.49.0/24 maxlen: 24
45.14.51.0/24 maxlen: 24
109.207.168.0/24 maxlen: 24
109.207.169.0/24 maxlen: 24
109.207.171.0/24 maxlen: 24
109.207.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 16:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4e:ac:bf:c2:8e:72:2e:db:4a:d3:47:f1:52:71:5c:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b30e3011a0fb3111fbe8493c1230974aef532704
Validity
Not Before: Jul 13 09:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19137d6ad6a018241f52cad0a68d1af4b203677f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:8a:7d:84:45:ce:71:62:01:68:89:8a:d1:23:
20:38:c8:ba:0b:6a:b1:82:40:7b:bc:90:b9:7d:4a:
40:66:ff:54:20:eb:28:13:fe:4f:3a:fc:80:b9:9c:
0b:64:fe:ea:58:3c:c7:21:ce:1d:ca:56:a5:2a:07:
2a:08:9c:f1:00:c9:a3:83:5b:39:1b:c5:8f:dd:4a:
6d:42:cf:0a:cd:44:b2:b6:c4:43:8a:4a:7f:a5:5c:
68:fc:82:46:1c:b9:ca:3b:a7:52:1d:77:ee:60:a8:
b8:c2:1b:40:54:59:5b:03:ad:41:53:1c:d0:06:ed:
79:4a:14:73:9b:da:22:f0:e8:c1:93:24:c5:7c:69:
fa:f8:26:17:d3:22:5a:36:46:d0:b6:ca:e9:80:0e:
b8:c9:98:d9:06:3d:10:15:29:3c:b9:7f:7f:d7:f4:
b5:61:1d:fe:52:ae:ab:fd:3e:2e:f1:3f:08:78:3e:
4b:6f:17:de:83:34:05:15:25:c0:20:22:68:39:b2:
39:33:16:e9:7c:db:fb:93:bd:50:ec:3a:ba:91:da:
b2:5d:01:11:cf:96:61:85:df:15:5b:0d:31:89:ba:
06:54:23:ed:4e:45:14:95:a6:22:5e:6b:44:a4:62:
23:51:ec:e1:c6:55:33:96:f5:b9:ad:22:14:cb:8a:
ef:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:13:7D:6A:D6:A0:18:24:1F:52:CA:D0:A6:8D:1A:F4:B2:03:67:7F
X509v3 Authority Key Identifier:
keyid:B3:0E:30:11:A0:FB:31:11:FB:E8:49:3C:12:30:97:4A:EF:53:27:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/GRN9atagGCQfUsrQpo0a9LIDZ38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.0.0/22
45.14.48.0/22
45.138.24.0-45.138.26.255
78.111.84.0/24
94.141.96.0/22
109.207.168.0/23
109.207.171.0-109.207.172.255
188.227.57.0-188.227.59.255
188.227.84.0/22
188.227.106.0/23
Signature Algorithm: sha256WithRSAEncryption
97:9b:53:3c:b6:6f:44:80:6e:36:76:c2:71:ac:3c:3a:23:bd:
1d:22:aa:2a:a7:15:53:ed:0d:6d:e7:ba:8e:39:b7:84:33:0b:
9d:e2:8a:c8:00:ad:10:3e:f9:77:c3:84:89:86:37:63:0f:8b:
53:1d:a6:db:09:80:4c:93:d6:24:19:16:da:fa:d4:28:c6:8d:
ed:a5:d7:a2:23:58:35:06:f0:8c:9a:49:9f:cb:85:dd:3f:38:
4f:12:7d:c0:a0:11:72:70:8d:6b:c7:e8:23:21:3c:30:6d:a1:
72:32:26:06:06:5a:ff:98:e6:5d:11:8f:7f:7c:f1:ce:6a:9e:
d2:5b:a6:9b:48:f4:d3:d7:0c:69:a4:62:fd:88:b9:12:31:dc:
cf:af:3f:9a:4d:19:af:5a:5d:72:21:7a:86:3e:9e:3e:7b:f8:
61:36:88:b5:a0:44:21:e0:a4:33:a2:43:f4:03:6a:bf:f1:7d:
45:d1:fd:16:49:57:21:bb:fc:80:66:0c:24:ca:2e:2b:eb:6c:
bf:49:40:98:6b:79:a9:ef:51:b3:fd:c7:48:f1:a8:59:c2:da:
72:21:08:96:6c:87:8e:51:ee:66:ed:be:63:b4:82:9d:a6:ad:
c4:3a:0c:f6:7f:72:83:7c:b9:2c:15:4b:2b:bb:5f:fa:a1:c4:
cb:84:d3:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:14 2024 by rpki-client on console-fra.rpki-client.org