Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/gF0TYHqyXv7C56PaiWDXNhk6zB0.roa
File: gF0TYHqyXv7C56PaiWDXNhk6zB0.roa (raw, json)
Hash identifier: NMml2OxqLas4ZpWnJD9xXY9u+EcJMrkOft4n4bSPR6I=
Subject key identifier: 80:5D:13:60:7A:B2:5E:FE:C2:E7:A3:DA:89:60:D7:36:19:3A:CC:1D
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01934AB6BCC77129D39DD0D0FF3BA9DA00CE
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/gF0TYHqyXv7C56PaiWDXNhk6zB0.roa
Signing time: Wed 20 Nov 2024 17:55:10 +0000
ROA not before: Wed 20 Nov 2024 17:55:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 5.182.28.0/22 maxlen: 22
45.67.117.0/24 maxlen: 24
45.150.168.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
89.40.161.0/24 maxlen: 24
91.242.70.0/24 maxlen: 24
91.242.71.0/24 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.105.0/24 maxlen: 24
91.242.123.0/24 maxlen: 24
91.242.124.0/24 maxlen: 24
91.242.125.0/24 maxlen: 24
91.242.126.0/24 maxlen: 24
91.242.127.0/24 maxlen: 24
185.40.105.0/24 maxlen: 24
185.173.244.0/24 maxlen: 24
185.180.145.0/24 maxlen: 24
193.31.104.0/22 maxlen: 22
194.50.200.0/24 maxlen: 24
194.50.201.0/24 maxlen: 24
194.180.238.0/24 maxlen: 24
195.138.104.0/22 maxlen: 24
195.138.104.0/24 maxlen: 24
195.138.107.0/24 maxlen: 24
195.138.109.0/24 maxlen: 24
195.138.110.0/24 maxlen: 24
195.138.111.0/24 maxlen: 24
195.138.113.0/24 maxlen: 24
195.138.114.0/24 maxlen: 24
195.138.115.0/24 maxlen: 24
195.138.118.0/24 maxlen: 24
195.138.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 21 Nov 2024 17:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4a:b6:bc:c7:71:29:d3:9d:d0:d0:ff:3b:a9:da:00:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Nov 20 17:55:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=805d13607ab25efec2e7a3da8960d736193acc1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:87:9a:09:ae:c2:73:ff:38:dd:05:4f:08:49:
21:ef:61:3f:40:ca:e3:de:bf:25:a0:b8:bf:81:88:
5a:9d:9f:e8:3e:bb:10:04:f6:8b:76:8c:7b:09:cb:
5d:b7:70:d5:00:a8:ee:a9:4f:45:3f:c2:44:4d:33:
83:ad:6f:26:50:cc:94:a7:15:d8:2c:48:48:e5:0a:
e4:0c:76:9e:f1:b5:be:19:50:8d:2a:0b:27:06:95:
54:f0:48:11:35:fe:7b:27:71:86:a5:e2:7b:2a:2c:
82:91:bd:b2:3f:71:08:be:3e:87:50:9a:29:74:60:
ee:e9:36:e6:66:34:3d:a9:41:02:a9:36:60:19:eb:
4e:29:bb:f4:4e:c9:90:5a:ad:ef:ce:5a:38:00:69:
7a:0f:d1:aa:3c:44:02:63:b9:a6:de:1f:ed:cc:c8:
96:55:90:7f:d3:27:f3:cb:7e:a3:01:4f:80:f0:c7:
27:1b:9c:52:99:97:f4:a8:96:bd:f0:90:87:36:95:
3e:70:39:59:71:07:31:06:40:8d:2f:a8:90:95:b1:
f3:0f:e4:a1:fb:5a:8d:17:ba:31:8f:45:4b:d8:3d:
ea:f0:cd:00:57:b4:4e:d0:71:14:fb:c3:96:d1:4d:
9d:71:a4:71:02:83:21:7d:7c:53:49:95:63:3e:b3:
b8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5D:13:60:7A:B2:5E:FE:C2:E7:A3:DA:89:60:D7:36:19:3A:CC:1D
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/gF0TYHqyXv7C56PaiWDXNhk6zB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.28.0/22
45.67.117.0/24
45.150.168.0/22
45.151.196.0/22
89.40.161.0/24
91.242.70.0-91.242.73.255
91.242.75.0/24
91.242.105.0/24
91.242.123.0-91.242.127.255
185.40.105.0/24
185.173.244.0/24
185.180.145.0/24
193.31.104.0/22
194.50.200.0/23
194.180.238.0/24
195.138.104.0/22
195.138.109.0-195.138.111.255
195.138.113.0-195.138.115.255
195.138.118.0/24
195.138.124.0/22
Signature Algorithm: sha256WithRSAEncryption
90:8e:22:24:75:24:73:7e:15:7e:45:e2:2f:ff:2a:50:ba:6a:
d3:44:76:15:04:fc:82:d6:bf:d4:e1:c0:2b:8e:bb:3e:22:ce:
e4:34:37:34:24:e1:1d:08:23:48:cc:c8:60:2b:f9:49:44:2c:
50:d4:05:a3:27:1a:4c:4f:72:8f:82:0f:aa:ba:81:42:ee:e2:
eb:7e:45:e0:1c:7a:50:0d:e0:ff:59:c7:09:7d:c2:f9:1a:6b:
72:9a:e0:5f:aa:9f:20:4f:31:f1:b2:b0:cf:04:1e:df:ad:0f:
d6:13:be:55:8a:fa:7a:58:4f:14:a0:e7:b0:80:97:52:ff:9f:
6a:d2:20:eb:75:e1:f7:52:76:2a:44:c1:30:bf:fb:68:6e:22:
89:9b:7e:d9:c1:13:ea:57:c9:00:7f:46:a4:2f:68:0c:9b:35:
c6:00:19:84:98:fd:54:a2:68:c0:50:68:88:1f:3f:34:e2:02:
a4:99:6d:50:1a:5b:0e:b4:d2:40:96:41:e8:8d:7b:04:02:ee:
3b:70:10:05:02:73:52:12:28:3d:b5:99:bf:6d:0f:68:c9:9a:
b8:33:29:ee:e8:00:f0:d8:01:f6:68:f3:87:57:d8:8d:26:a4:
49:ee:82:e0:76:dd:cc:a1:43:8a:e2:52:38:ff:75:4c:95:c4:
0b:b9:a7:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:44 2024 by rpki-client on console-fra.rpki-client.org