Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/dgipvG1SRXbPc66etj5vj12ji8k.roa
File: dgipvG1SRXbPc66etj5vj12ji8k.roa (raw, json)
Hash identifier: GsTlmNfZIqBTrzWXcGaZZMoM2YzyYau7Zyplx1D7qps=
Subject key identifier: 76:08:A9:BC:6D:52:45:76:CF:73:AE:9E:B6:3E:6F:8F:5D:A3:8B:C9
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 018A6923AF72506BBCD1174907FB506762FB
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/dgipvG1SRXbPc66etj5vj12ji8k.roa
Signing time: Wed 06 Sep 2023 06:17:40 +0000
ROA not before: Wed 06 Sep 2023 06:17:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50926
IP address blocks: 188.95.112.0/21 maxlen: 24
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
84.246.208.0/21 maxlen: 24
109.68.80.0/21 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 24
185.70.92.0/22 maxlen: 24
91.142.208.0/20 maxlen: 24
188.164.192.0/21 maxlen: 24
185.23.68.0/22 maxlen: 24
94.127.184.0/21 maxlen: 24
185.222.156.0/22 maxlen: 24
185.129.248.0/22 maxlen: 24
149.62.168.0/21 maxlen: 24
195.5.116.0/23 maxlen: 24
5.175.40.0/21 maxlen: 24
91.200.140.0/22 maxlen: 24
185.101.224.0/22 maxlen: 24
31.24.40.0/21 maxlen: 24
2a01:4b80::/32 maxlen: 32
2a00:5ac0:100::/48 maxlen: 48
2a00:5ac0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 25 Sep 2023 07:44:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:23:af:72:50:6b:bc:d1:17:49:07:fb:50:67:62:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Sep 6 06:17:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7608a9bc6d524576cf73ae9eb63e6f8f5da38bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:80:ec:4c:d8:9e:ee:57:28:28:1c:0b:67:7a:
75:d4:2e:08:3c:61:06:dd:ec:78:d3:be:8a:25:14:
ab:a3:52:f6:06:91:a3:0d:bb:5f:92:49:1f:1b:81:
dd:1b:cb:7a:89:40:e2:61:85:ad:99:b1:35:70:b3:
42:f2:e6:d6:b4:c6:5a:8a:35:38:12:3d:4b:3d:03:
38:df:a3:df:bc:51:6f:02:05:6b:84:a4:74:f2:8d:
86:82:49:74:20:7f:dd:9d:f8:1a:88:f1:2b:83:76:
2b:09:2f:51:1f:df:20:76:98:6e:06:48:9f:a0:00:
3f:e9:5d:16:8b:a4:d3:08:7c:c8:23:1f:00:7b:77:
77:01:8d:8e:ef:0e:ef:54:be:53:9f:c8:d6:75:ce:
3b:2b:b5:9a:e6:60:08:c3:b4:0c:e6:31:16:26:9b:
90:88:b2:2a:55:e9:3c:17:30:9a:93:90:22:2d:8b:
42:0d:9a:bc:19:25:83:fd:87:50:ae:ac:1e:ee:31:
2d:ef:06:42:13:8e:58:91:7a:94:a3:8c:1f:e3:76:
3e:0d:50:6f:5f:e5:62:53:61:1f:ad:d7:e0:15:6d:
0f:f9:d2:d2:a8:db:93:d3:dc:34:82:c7:33:5b:e1:
61:2e:df:33:7f:ea:2a:8b:cd:28:21:2f:cb:bb:b6:
df:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:08:A9:BC:6D:52:45:76:CF:73:AE:9E:B6:3E:6F:8F:5D:A3:8B:C9
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/dgipvG1SRXbPc66etj5vj12ji8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0/21
109.68.80.0/21
149.62.168.0/21
185.23.68.0/22
185.70.92.0/22
185.101.224.0/22
185.129.248.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
IPv6:
2a00:5ac0::/44
2a00:5ac0:100::/48
2a01:4b80::/32
Signature Algorithm: sha256WithRSAEncryption
27:ee:93:d7:6b:e5:42:89:eb:bf:ba:67:6a:fe:7a:74:88:52:
bf:50:71:11:24:1d:df:8d:ec:f7:ac:f0:80:0a:c8:26:b7:84:
c4:6a:34:24:c8:e6:f6:26:b6:74:a8:3e:0d:09:15:7c:ff:95:
38:c9:1e:7b:27:af:11:91:ad:60:16:39:d0:79:f8:f1:e6:e3:
ad:6c:ef:da:18:81:85:8f:d0:a4:3d:43:77:7e:9d:a0:91:c9:
65:e5:4a:28:25:f7:66:47:a7:df:22:00:cb:92:cd:a3:dd:39:
b0:62:00:d8:60:e0:de:70:7a:c9:00:02:b9:4c:09:54:60:25:
ca:e9:ef:d4:23:2d:b9:68:e7:19:50:ce:2e:4d:46:8b:81:a9:
a5:c0:f2:b3:27:96:ef:c9:1f:f2:e0:0e:a6:c1:98:73:8b:35:
1f:95:9a:f2:08:e5:88:82:d9:62:b6:6c:46:06:23:07:03:6f:
a8:78:12:a4:df:4e:78:be:c3:c0:cb:5f:9a:2d:7d:e5:10:94:
f7:10:00:e3:49:1a:2e:50:83:2d:69:f0:29:8a:01:dd:ce:fd:
fa:05:b2:f2:98:5e:47:fd:9d:c8:11:ea:a2:07:af:19:0b:bc:
aa:23:1e:ee:a3:4d:d4:65:cd:1b:36:ae:68:2c:fa:ed:df:78:
84:3d:ab:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:45 2024 by rpki-client on console-ams.rpki-client.org