Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/GLkOnadv5nAgI8JRBJ1al-OdhhE.roa
File: GLkOnadv5nAgI8JRBJ1al-OdhhE.roa (raw, json)
Hash identifier: hYbEh6rfyk62WHj+RVVMXpeoOG8PpbBHnwWhVCeX7PY=
Subject key identifier: 18:B9:0E:9D:A7:6F:E6:70:20:23:C2:51:04:9D:5A:97:E3:9D:86:11
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0188AF8CDF89759CCBD6BBE7E037352737F1
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/GLkOnadv5nAgI8JRBJ1al-OdhhE.roa
Signing time: Mon 12 Jun 2023 12:20:25 +0000
ROA not before: Mon 12 Jun 2023 12:20:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49666
IP address blocks: 2.188.0.0/24 maxlen: 24
2.188.1.0/24 maxlen: 24
2.188.0.0/16 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.22.0/24 maxlen: 24
2.188.23.0/24 maxlen: 24
2.188.30.0/24 maxlen: 24
2.188.28.0/24 maxlen: 24
78.39.155.0/24 maxlen: 24
78.39.156.0/24 maxlen: 24
78.39.153.0/24 maxlen: 25
217.218.67.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.76.0/24 maxlen: 24
85.185.0.0/16 maxlen: 24
2.185.0.0/16 maxlen: 16
78.38.246.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.243.0/24 maxlen: 24
78.38.250.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.248.0/24 maxlen: 24
78.38.251.0/24 maxlen: 24
78.38.254.0/24 maxlen: 24
78.39.0.0/16 maxlen: 24
2.177.0.0/16 maxlen: 16
80.191.0.0/16 maxlen: 24
217.218.0.0/16 maxlen: 24
78.39.40.0/24 maxlen: 24
78.39.43.0/24 maxlen: 24
78.39.50.0/24 maxlen: 24
78.39.46.0/24 maxlen: 24
78.39.49.0/24 maxlen: 24
78.39.48.0/24 maxlen: 24
78.39.47.0/24 maxlen: 24
78.39.51.0/24 maxlen: 24
78.39.54.0/24 maxlen: 24
78.39.58.0/24 maxlen: 24
78.39.53.0/24 maxlen: 24
78.39.57.0/24 maxlen: 24
78.39.56.0/24 maxlen: 24
78.39.55.0/24 maxlen: 24
78.39.62.0/23 maxlen: 24
78.39.59.0/24 maxlen: 24
2.176.0.0/17 maxlen: 17
78.38.0.0/16 maxlen: 24
2.176.128.0/17 maxlen: 17
195.146.63.0/24 maxlen: 24
2.189.3.0/24 maxlen: 24
2.189.1.0/24 maxlen: 24
2.189.0.0/16 maxlen: 24
2.188.179.0/24 maxlen: 24
2.188.186.0/24 maxlen: 24
2.188.181.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.184.0/24 maxlen: 24
217.219.0.0/16 maxlen: 24
2.188.187.0/24 maxlen: 24
2.189.72.0/24 maxlen: 24
2.189.44.0/24 maxlen: 24
2.189.42.0/24 maxlen: 24
2.189.63.0/24 maxlen: 24
2001:4188:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 22 Oct 2023 20:12:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:8c:df:89:75:9c:cb:d6:bb:e7:e0:37:35:27:37:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jun 12 12:20:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18b90e9da76fe6702023c251049d5a97e39d8611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cf:97:fe:9b:69:1e:50:d5:69:3f:d7:d4:1c:
bb:88:dd:3a:0c:bb:52:3f:d5:68:fe:06:0d:21:cb:
d7:75:80:b5:11:fd:cd:7a:31:69:bd:27:43:fa:13:
9d:ee:cd:90:5e:e6:54:29:34:9a:1a:ec:dd:70:5b:
7e:65:f2:54:f6:08:1d:7c:0b:2f:b3:a1:88:3d:25:
77:aa:0a:63:39:c6:a9:88:3a:1e:82:4a:9e:f2:53:
f3:f2:a1:dd:95:f5:b1:58:be:7f:cd:82:10:50:95:
cb:50:f3:88:7a:30:c7:b4:88:f8:73:fa:d1:b0:10:
5d:d2:37:91:56:b7:db:d2:03:31:75:e0:b5:bd:a0:
7a:f0:67:bd:a1:77:7f:0e:44:72:11:23:d6:48:09:
71:3d:2b:6d:87:5e:7c:fc:48:8f:30:5f:85:98:ec:
69:e1:a1:38:b9:8f:ef:d7:f8:63:c2:6b:72:14:4b:
d0:16:85:cb:a3:5f:55:90:04:ff:fa:12:06:25:1b:
81:33:0a:5e:61:e6:12:d3:fe:81:70:14:8e:c8:17:
69:bf:d6:20:67:4f:d5:b9:4d:fc:00:68:c3:b8:3b:
8c:eb:16:05:f3:1b:1d:8e:d7:84:74:6a:7e:22:7e:
ee:cc:e3:49:e5:b3:ca:cc:f9:18:6e:ca:4e:85:6f:
4e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:B9:0E:9D:A7:6F:E6:70:20:23:C2:51:04:9D:5A:97:E3:9D:86:11
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/GLkOnadv5nAgI8JRBJ1al-OdhhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/15
2.185.0.0/16
2.188.0.0/15
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.63.0/24
217.218.0.0/15
IPv6:
2001:4188:2::/48
Signature Algorithm: sha256WithRSAEncryption
59:1c:1e:da:2a:6d:d9:49:0d:79:05:85:f9:e6:95:07:f4:c7:
07:6e:9d:23:db:2c:6c:d7:4f:b8:27:32:70:5c:ad:8e:fd:9d:
84:f5:fe:fa:f8:38:ee:cd:ad:1f:45:c8:b3:4b:08:04:44:53:
12:5e:8b:f8:b4:c0:95:4f:84:13:58:87:99:2e:1c:25:4b:46:
6a:b8:2e:1c:0d:c6:7d:d9:9b:c2:6f:03:2a:24:53:e7:50:6d:
3e:39:fc:2a:9b:fe:c5:dd:f0:7b:c5:14:aa:8c:50:8f:b0:0e:
d4:3e:62:c2:19:5c:61:a8:bd:a7:8a:62:72:13:c6:cc:b1:b0:
f6:88:81:db:5f:22:a6:f9:f6:5b:68:0b:8c:00:be:65:e8:0b:
42:1a:eb:f1:0f:45:55:ce:d5:d5:f6:44:3e:85:1c:e0:e6:b2:
f5:f7:72:82:48:dc:7e:ec:20:41:b9:b0:9b:37:b0:50:e7:e2:
5d:bb:34:32:8e:28:22:3d:03:cb:7b:ed:44:3f:36:64:5b:55:
f4:8b:43:6f:d8:2e:e5:8e:58:30:96:39:e2:b9:1d:4a:43:01:
d6:7d:64:c9:57:05:93:2f:b7:22:32:b7:45:7a:fc:73:be:42:
13:a6:d2:cb:03:37:c9:a9:1e:3a:eb:b9:96:47:d4:f8:69:72:
89:d4:37:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org