Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gDsdkoH_q5aBN19JmWZ077FVeGM.roa
File: gDsdkoH_q5aBN19JmWZ077FVeGM.roa (raw, json)
Hash identifier: GH6k924XgbhMqGXa49F82W/mxeKP5dZQieIPWPesO3A=
Subject key identifier: 80:3B:1D:92:81:FF:AB:96:81:37:5F:49:99:66:74:EF:B1:55:78:63
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0193E3052092F5A4B0552DC954DF639B087C
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gDsdkoH_q5aBN19JmWZ077FVeGM.roa
Signing time: Fri 20 Dec 2024 07:43:04 +0000
ROA not before: Fri 20 Dec 2024 07:43:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215439
IP address blocks: 31.13.208.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
45.133.251.0/24 maxlen: 24
83.143.112.0/24 maxlen: 24
84.21.173.0/24 maxlen: 24
87.120.165.0/24 maxlen: 24
87.120.166.0/24 maxlen: 24
87.120.186.0/24 maxlen: 24
93.123.84.0/24 maxlen: 24
94.156.112.0/24 maxlen: 24
94.156.115.0/24 maxlen: 24
94.156.179.0/24 maxlen: 24
94.156.237.0/24 maxlen: 24
171.22.31.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
193.35.17.0/24 maxlen: 24
193.58.121.0/24 maxlen: 24
193.58.122.0/24 maxlen: 24
193.222.99.0/24 maxlen: 24
194.31.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:05:20:92:f5:a4:b0:55:2d:c9:54:df:63:9b:08:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 20 07:43:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=803b1d9281ffab9681375f49996674efb1557863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:63:65:ce:53:a9:cc:56:79:81:35:76:6e:8e:
64:69:3a:a2:1d:a2:13:1d:07:9a:2c:12:66:86:55:
0e:12:ec:58:d6:bf:c7:07:5f:b6:ee:c0:c8:5a:81:
02:53:3e:0a:26:a9:43:a3:15:b8:28:61:18:52:ec:
48:1f:35:04:f8:81:b4:d0:6d:7e:9b:39:c4:b2:bf:
a8:e5:ed:9c:80:80:53:87:13:78:37:49:6b:9b:6c:
ca:1e:38:23:ac:7b:93:79:d4:b4:b7:6f:6e:fd:b5:
19:ba:66:4b:45:d9:7c:17:88:b5:c6:30:14:18:27:
3d:8b:2c:82:62:76:05:03:e3:f3:02:13:27:a9:4a:
74:ae:e1:9c:cb:ea:cf:b0:db:51:02:05:50:45:6c:
2a:50:d2:05:c4:0b:e6:0a:88:cd:09:5d:3c:9d:05:
11:80:54:82:57:10:e1:5e:13:4b:15:15:f2:9e:4a:
eb:37:31:5f:76:89:26:45:82:f4:a3:1e:a4:a9:ff:
2b:cf:35:d3:f5:c5:dc:e3:e5:3b:be:02:3d:5c:55:
82:d6:28:df:bb:1f:3f:43:57:3f:7a:76:b5:0b:ce:
2f:33:f3:00:42:71:45:76:9b:01:04:f8:f4:21:61:
d9:f6:68:c9:31:37:ed:93:71:e5:3d:1c:c5:9b:86:
54:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3B:1D:92:81:FF:AB:96:81:37:5F:49:99:66:74:EF:B1:55:78:63
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gDsdkoH_q5aBN19JmWZ077FVeGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.208.0/24
45.66.228.0/24
45.133.251.0/24
83.143.112.0/24
84.21.173.0/24
87.120.165.0-87.120.166.255
87.120.186.0/24
93.123.84.0/24
94.156.112.0/24
94.156.115.0/24
94.156.179.0/24
94.156.237.0/24
171.22.31.0/24
185.246.223.0/24
193.35.17.0/24
193.58.121.0-193.58.122.255
193.222.99.0/24
194.31.223.0/24
Signature Algorithm: sha256WithRSAEncryption
15:74:9a:68:bd:6e:47:f2:58:ae:b6:f9:37:7a:09:3c:55:55:
0a:0e:4e:e7:27:5c:0c:aa:0b:2b:a4:96:dd:4a:41:7c:94:e9:
3b:fd:d5:a2:20:6d:37:db:85:fc:79:e4:4b:44:d8:7c:0d:54:
88:13:4a:cc:c8:27:f6:d0:7e:25:1a:9c:0a:8f:d0:c6:68:8d:
56:88:98:17:fc:1e:1a:11:c0:da:c8:26:94:f3:54:3f:17:ab:
4b:f8:97:b0:74:51:ca:50:6d:76:e3:c1:6a:a9:e4:b1:c9:dc:
eb:27:fb:0a:5c:70:07:96:0d:12:4b:1f:34:f0:94:c4:b9:33:
0a:f4:3f:71:7a:e0:61:d3:53:ae:6e:3a:2b:2d:1e:39:e1:dc:
c3:06:9e:ca:be:60:0a:8c:59:b1:8a:0c:83:0d:c8:51:f2:ab:
56:cb:ce:80:eb:88:51:94:6b:dd:76:56:3b:e4:85:b2:9c:23:
bb:7b:51:4d:4f:6e:4c:1b:76:a3:9f:99:55:ae:c9:80:5f:d3:
63:8b:1d:38:aa:b9:97:7b:3f:31:0c:72:16:06:3c:cf:ff:31:
05:8f:75:aa:88:49:f5:cd:23:40:ba:2c:a2:12:fc:34:5e:37:
a6:80:48:1c:cb:02:a7:b1:0b:51:65:13:7b:40:0a:5b:eb:ee:
63:ca:b0:ef
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAZPjBSCS9aSwVS3JVN9jmwh8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQxMjIwMDc0MzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDNiMWQ5MjgxZmZhYjk2ODEzNzVmNDk5OTY2NzRlZmIxNTU3ODYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjGNlzlOpzFZ5gTV2bo5kaTqiHaIT
HQeaLBJmhlUOEuxY1r/HB1+27sDIWoECUz4KJqlDoxW4KGEYUuxIHzUE+IG00G1+
mznEsr+o5e2cgIBThxN4N0lrm2zKHjgjrHuTedS0t29u/bUZumZLRdl8F4i1xjAU
GCc9iyyCYnYFA+PzAhMnqUp0ruGcy+rPsNtRAgVQRWwqUNIFxAvmCojNCV08nQUR
gFSCVxDhXhNLFRXynkrrNzFfdokmRYL0ox6kqf8rzzXT9cXc4+U7vgI9XFWC1ijf
ux8/Q1c/ena1C84vM/MAQnFFdpsBBPj0IWHZ9mjJMTftk3HlPRzFm4ZUvQIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFIA7HZKB/6uWgTdfSZlmdO+xVXhjMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvZ0RzZGtvSF9xNWFCTjE5Sm1XWjA3N0ZWZUdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEAB8N
0AMEAC1C5AMEAC2F+wMEAFOPcAMEAFQVrTAMAwQAV3ilAwQAV3imAwQAV3i6AwQA
XXtUAwQAXpxwAwQAXpxzAwQAXpyzAwQAXpztAwQAqxYfAwQAufbfAwQAwSMRMAwD
BADBOnkDBADBOnoDBADB3mMDBADCH98wDQYJKoZIhvcNAQELBQADggEBABV0mmi9
bkfyWK62+Td6CTxVVQoOTucnXAyqCyuklt1KQXyU6Tv91aIgbTfbhfx55EtE2HwN
VIgTSszIJ/bQfiUanAqP0MZojVaImBf8HhoRwNrIJpTzVD8Xq0v4l7B0UcpQbXbj
wWqp5LHJ3Osn+wpccAeWDRJLHzTwlMS5Mwr0P3F64GHTU65uOistHjnh3MMGnsq+
YAqMWbGKDIMNyFHyq1bLzoDriFGUa912VjvkhbKcI7t7UU1PbkwbdqOfmVWuyYBf
02OLHTiquZd7PzEMchYGPM//MQWPdaqISfXNI0C6LKIS/DReN6aASBzLAqexC1Fl
E3tAClvr7mPKsO8=
-----END CERTIFICATE-----
Generated at Wed Apr 16 19:36:05 2025 by rpki-client