Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/GTFt5yykpZ03Iy3d2cbNy4Uc9IY.roa
File: GTFt5yykpZ03Iy3d2cbNy4Uc9IY.roa (raw, json)
Hash identifier: a1OBwlccsNQiJAmfxS2jlFIQB4A2nUb+CjZPPDoazLQ=
Subject key identifier: 19:31:6D:E7:2C:A4:A5:9D:37:23:2D:DD:D9:C6:CD:CB:85:1C:F4:86
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01867AB48A4F40D672BF993A352CFC4E1325
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/GTFt5yykpZ03Iy3d2cbNy4Uc9IY.roa
Signing time: Wed 22 Feb 2023 19:58:17 +0000
ROA not before: Wed 22 Feb 2023 19:58:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52116
IP address blocks: 178.253.207.0/24 maxlen: 24
188.255.130.0/24 maxlen: 24
178.253.210.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.214.0/24 maxlen: 24
178.253.222.0/24 maxlen: 24
93.186.64.0/24 maxlen: 24
93.186.67.0/24 maxlen: 24
93.186.71.0/24 maxlen: 24
188.255.208.0/24 maxlen: 24
188.255.213.0/24 maxlen: 24
188.255.219.0/24 maxlen: 24
188.255.238.0/24 maxlen: 24
188.255.246.0/24 maxlen: 24
188.255.244.0/23 maxlen: 23
212.69.6.0/24 maxlen: 24
212.69.7.0/24 maxlen: 24
188.255.248.0/24 maxlen: 24
188.255.252.0/24 maxlen: 24
188.255.247.0/24 maxlen: 24
188.255.250.0/23 maxlen: 23
178.253.236.0/24 maxlen: 24
178.253.240.0/24 maxlen: 24
81.18.49.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
81.18.55.0/24 maxlen: 24
81.18.52.0/23 maxlen: 23
81.18.61.0/24 maxlen: 24
188.255.190.0/24 maxlen: 24
79.175.103.0/24 maxlen: 24
79.175.116.0/24 maxlen: 24
79.175.118.0/24 maxlen: 24
79.175.115.0/24 maxlen: 24
188.255.254.0/24 maxlen: 24
212.69.12.0/24 maxlen: 24
188.255.255.0/24 maxlen: 24
178.219.11.0/24 maxlen: 24
178.219.8.0/23 maxlen: 23
185.47.88.0/24 maxlen: 24
185.47.89.0/24 maxlen: 24
185.47.90.0/24 maxlen: 24
77.105.31.0/24 maxlen: 24
80.74.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 20:11:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7a:b4:8a:4f:40:d6:72:bf:99:3a:35:2c:fc:4e:13:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Feb 22 19:58:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19316de72ca4a59d37232dddd9c6cdcb851cf486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8c:85:66:8e:28:63:ca:36:09:e8:59:31:1a:
92:3f:8b:81:33:8f:06:ed:17:1d:15:99:89:67:e1:
92:8c:27:1a:e9:41:f1:e7:7d:fc:01:35:b9:aa:df:
95:94:77:11:66:e9:32:c2:36:f7:50:58:c6:02:d0:
0a:b5:7f:ce:eb:a1:98:8a:95:ed:ca:81:00:02:27:
ca:f8:7a:5d:ef:18:3b:a3:eb:51:f3:24:36:2b:db:
9e:77:9a:c2:32:25:c6:b4:ba:5a:e1:dc:11:cf:e2:
71:60:0b:6b:67:33:5a:66:e0:ab:94:d4:9f:c7:8f:
04:e4:fc:f6:f4:8a:22:fb:2a:84:6f:52:0a:61:4f:
e4:de:5d:c3:a3:ab:b7:3e:af:f5:5f:36:fe:e8:1d:
55:e5:d3:a9:ea:f0:1e:84:34:3f:10:85:a3:2e:f5:
c2:ff:85:8b:de:05:8e:0c:91:87:a9:9a:5d:db:7b:
78:80:2e:b6:87:8a:8c:22:de:e3:c4:c0:b5:ab:7e:
75:ee:36:97:3b:b9:a7:03:54:35:99:1c:b9:38:bd:
03:1e:11:80:ef:3f:3e:3e:67:56:e5:5e:f9:8b:f5:
44:aa:23:4b:65:45:f2:24:f3:08:c7:1d:3e:3a:5a:
af:ec:fb:c5:64:97:10:0d:a0:53:97:f9:50:9d:b6:
73:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:31:6D:E7:2C:A4:A5:9D:37:23:2D:DD:D9:C6:CD:CB:85:1C:F4:86
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/GTFt5yykpZ03Iy3d2cbNy4Uc9IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.31.0/24
79.175.103.0/24
79.175.115.0-79.175.116.255
79.175.118.0/24
80.74.173.0/24
81.18.49.0-81.18.50.255
81.18.52.0/23
81.18.55.0/24
81.18.61.0/24
93.186.64.0/24
93.186.67.0/24
93.186.71.0/24
178.219.8.0/23
178.219.11.0/24
178.253.207.0/24
178.253.210.0/24
178.253.214.0/24
178.253.219.0/24
178.253.222.0/24
178.253.236.0/24
178.253.240.0/24
185.47.88.0-185.47.90.255
188.255.130.0/24
188.255.190.0/24
188.255.208.0/24
188.255.213.0/24
188.255.219.0/24
188.255.238.0/24
188.255.244.0-188.255.248.255
188.255.250.0-188.255.252.255
188.255.254.0/23
212.69.6.0/23
212.69.12.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:27:68:fa:d8:4f:2a:1e:e0:fa:74:24:72:f5:a8:82:b1:c2:
e7:b6:09:46:31:97:00:36:06:1f:de:45:b2:68:1c:88:e6:32:
6c:53:af:f8:7a:5d:fa:09:f0:99:c2:3a:e2:f1:2d:d1:d3:77:
f6:fd:61:26:e7:db:36:69:7f:fa:00:0a:59:79:79:05:e5:4f:
c3:25:fd:38:05:b6:42:9d:98:34:06:13:49:73:96:a4:82:d1:
f1:9f:2a:0a:5b:3a:04:ab:c3:dd:a0:64:93:d1:c8:ed:96:66:
43:9a:a8:b2:35:60:d1:0d:01:f0:c7:a6:5d:f7:4e:81:3c:11:
3b:84:5f:31:49:f1:f3:ba:12:b3:87:26:f6:a3:67:f0:fc:a8:
d3:49:74:8e:49:39:8d:27:91:63:a4:f2:89:a2:6c:63:c1:44:
62:ed:eb:e6:9b:ee:c2:1a:4a:6c:14:81:3b:dc:cd:5d:49:3a:
c2:3a:15:a9:6c:41:64:3f:fc:91:3b:a3:94:f5:e5:5e:74:10:
8c:cd:8b:b5:c6:fd:18:71:e8:25:34:5d:84:9d:1e:f3:4e:bb:
2f:c9:4b:bb:e2:23:8f:36:4f:49:92:0c:7d:02:fe:ec:ad:68:
5d:e4:c5:ba:ee:03:b8:9f:c8:9b:8f:84:37:d1:fe:6a:56:60:
4e:2e:5b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org