Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/gExqR-WUGwLGybHDZwWWS-3Ch9Y.roa
File: gExqR-WUGwLGybHDZwWWS-3Ch9Y.roa (raw, json)
Hash identifier: 7ONd7Dz5/a4OJNhURmFmeuzfKLuDJqWS/uU1+nt6biY=
Subject key identifier: 80:4C:6A:47:E5:94:1B:02:C6:C9:B1:C3:67:05:96:4B:ED:C2:87:D6
Certificate issuer: /CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Certificate serial: 01865548636903A95017594DDCA0BAE37D1C
Authority key identifier: 7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/gExqR-WUGwLGybHDZwWWS-3Ch9Y.roa
Signing time: Wed 15 Feb 2023 13:34:12 +0000
ROA not before: Wed 15 Feb 2023 13:34:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210756
IP address blocks: 95.181.180.0/24 maxlen: 24
5.101.68.0/24 maxlen: 24
5.101.69.0/24 maxlen: 24
5.101.70.0/24 maxlen: 24
5.188.176.0/24 maxlen: 24
5.188.177.0/24 maxlen: 24
5.188.178.0/24 maxlen: 24
5.188.179.0/24 maxlen: 24
37.9.37.0/24 maxlen: 24
37.9.38.0/24 maxlen: 24
37.9.36.0/24 maxlen: 24
37.9.39.0/24 maxlen: 24
37.9.54.0/24 maxlen: 24
37.9.55.0/24 maxlen: 24
37.9.52.0/24 maxlen: 24
37.9.53.0/24 maxlen: 24
146.185.197.0/24 maxlen: 24
146.185.198.0/24 maxlen: 24
146.185.199.0/24 maxlen: 24
146.185.196.0/24 maxlen: 24
2a11:27c0:110::/44 maxlen: 44
2a11:27c0:130::/44 maxlen: 44
2a11:27c0:150::/44 maxlen: 44
2a11:27c0:170::/44 maxlen: 44
2a11:27c0:1010::/44 maxlen: 44
2a11:27c0:160::/44 maxlen: 44
2a11:27c0:140::/44 maxlen: 44
2a11:27c0:120::/44 maxlen: 44
2a11:27c0:1000::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 01 Mar 2023 14:47:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:55:48:63:69:03:a9:50:17:59:4d:dc:a0:ba:e3:7d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Validity
Not Before: Feb 15 13:34:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=804c6a47e5941b02c6c9b1c36705964bedc287d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d6:92:0c:2c:f6:68:0b:e0:5d:d6:6a:a7:fd:
74:1e:1c:60:f9:ce:16:0e:05:9a:30:50:26:d8:53:
4a:a2:24:86:3d:bb:a9:96:06:0e:5d:04:b2:2f:7e:
90:8d:f7:8f:d6:9b:6f:b5:75:1c:e7:33:23:aa:e9:
f5:ec:22:fd:62:76:4b:69:1d:58:14:c5:66:f1:17:
a1:ea:20:4e:60:9d:77:87:f4:50:5f:47:42:09:1b:
ae:68:17:1e:10:2b:d8:d7:51:3f:b1:4b:19:d3:5a:
ce:52:13:49:c6:73:9b:13:a0:c3:03:6d:68:7a:b0:
65:92:c6:63:fa:03:db:22:a0:d9:c5:01:0b:10:54:
85:b7:e8:9a:65:b3:df:a4:d0:d7:95:88:24:f4:06:
ba:40:55:74:4d:20:8a:28:c7:03:64:10:65:4a:39:
49:f7:00:92:6a:fb:ca:65:4e:c9:4a:6e:27:f4:f3:
f9:5c:eb:e0:31:31:f1:3a:79:e0:2d:61:47:9d:dd:
a5:2f:09:af:e8:51:3f:47:c2:b4:02:6c:7c:61:d6:
4f:a2:9c:cc:ce:4a:18:b7:14:ee:aa:e4:4c:62:92:
c7:a9:e8:8a:21:e0:9e:e1:12:02:3a:9b:a1:be:2b:
45:ce:cd:d4:f6:c6:b8:90:39:7a:fd:8a:67:3d:1a:
e2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4C:6A:47:E5:94:1B:02:C6:C9:B1:C3:67:05:96:4B:ED:C2:87:D6
X509v3 Authority Key Identifier:
keyid:7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/gExqR-WUGwLGybHDZwWWS-3Ch9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/fD5YWlm1I7uG1mCnFo4cHroJTaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.68.0-5.101.70.255
5.188.176.0/22
37.9.36.0/22
37.9.52.0/22
95.181.180.0/24
146.185.196.0/22
IPv6:
2a11:27c0:110::-2a11:27c0:17f:ffff:ffff:ffff:ffff:ffff
2a11:27c0:1000::/43
Signature Algorithm: sha256WithRSAEncryption
38:a9:fb:1c:0f:ed:a8:b7:6a:c4:97:60:3e:ad:8d:e9:46:b0:
17:de:97:00:7c:b2:c7:80:d4:e8:d2:27:9a:bd:76:23:84:41:
b1:c3:60:1e:91:ef:ba:f9:e3:bd:d7:62:e1:89:3f:6c:04:70:
ff:33:f5:78:e8:26:44:1f:2e:15:16:85:d2:a4:3a:d9:9d:cc:
71:43:52:c0:2d:df:55:d8:11:48:a3:74:d3:a4:b0:e9:10:65:
07:6d:cf:79:f1:2c:71:a4:8c:16:a8:cd:4e:56:a6:50:cd:d9:
e4:b1:74:b0:e9:0c:95:65:1b:e0:a3:1c:1c:c2:33:a9:4e:73:
65:9e:90:4f:bb:46:c1:2c:24:bb:a8:ba:6c:53:95:7c:0e:03:
37:58:58:ea:7b:53:ae:6e:79:22:7a:e2:b6:5e:ac:24:46:26:
98:55:7f:d9:e1:57:8c:99:45:23:45:0f:ff:e0:c0:3d:34:a8:
43:b1:26:9c:da:b1:15:5d:29:2c:93:73:92:ba:19:94:c8:60:
66:4b:fe:53:a1:c0:21:09:9a:d7:09:66:02:82:87:5f:bc:54:
62:37:5a:35:c6:79:5f:c9:ae:84:bf:54:40:54:52:ab:96:73:
37:d3:6c:e2:b8:21:d0:64:00:8b:a6:eb:fe:5f:5d:bf:5e:54:
d7:1b:99:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:00 2024 by rpki-client on console-fra.rpki-client.org