Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/GCQ-Y-qo4kN6d4rXycbZYg0B4rw.roa
File: GCQ-Y-qo4kN6d4rXycbZYg0B4rw.roa (raw, json)
Hash identifier: s+8UgE2UnDG6RcMtfZ0w4R477ew1RA+2EEWSwdAd6Kc=
Subject key identifier: 18:24:3E:63:EA:A8:E2:43:7A:77:8A:D7:C9:C6:D9:62:0D:01:E2:BC
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0189F4ED6FE923F6F74F418A0064D0BF41B5
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/GCQ-Y-qo4kN6d4rXycbZYg0B4rw.roa
Signing time: Mon 14 Aug 2023 16:42:28 +0000
ROA not before: Mon 14 Aug 2023 16:42:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
193.43.146.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
45.67.34.0/24 maxlen: 24
92.119.200.0/22 maxlen: 24
45.93.8.0/24 maxlen: 24
45.93.11.0/24 maxlen: 24
45.93.10.0/24 maxlen: 24
45.93.9.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
45.8.147.0/24 maxlen: 24
45.8.146.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.173.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
141.98.170.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
141.98.168.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.121.0/24 maxlen: 24
188.119.125.0/24 maxlen: 24
188.119.124.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
45.89.55.0/24 maxlen: 24
45.89.54.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
5.182.37.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.38.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
193.57.139.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.152.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.155.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
92.118.88.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:ed:6f:e9:23:f6:f7:4f:41:8a:00:64:d0:bf:41:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Aug 14 16:42:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18243e63eaa8e2437a778ad7c9c6d9620d01e2bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:95:c1:c7:96:60:4e:78:ae:b6:21:30:55:6e:
c9:10:bf:45:01:18:72:ca:b6:c8:64:09:ba:fd:05:
21:ab:fc:73:3d:f3:a4:e6:50:a5:a7:ac:81:98:a3:
10:20:d8:f4:fb:a5:31:30:2d:fb:9e:08:8d:5e:5a:
32:ae:c4:62:be:f1:d8:f2:b4:f3:b9:b6:0d:39:ca:
78:29:36:ae:55:4b:39:00:70:2e:8b:2b:7d:71:4f:
f5:f6:6b:90:af:5d:a7:88:63:23:02:5d:38:8c:20:
cf:a1:6b:ee:8b:19:87:a9:1f:f8:52:20:e6:8c:5c:
21:68:a1:40:0b:00:65:cc:b3:68:59:cf:73:27:7d:
73:4e:63:c6:c0:f6:27:81:63:cd:ce:61:ba:73:31:
f5:9d:b9:5c:87:cd:c5:f7:c1:72:01:74:5a:cd:56:
6d:2f:07:4f:bb:3e:b9:07:7c:dc:f1:38:65:70:51:
1a:fb:c4:e4:08:db:5a:a0:41:88:f3:73:a2:41:e7:
49:4a:c5:42:ba:35:57:1f:98:1b:0c:44:33:91:83:
cf:f2:2e:00:06:ef:3e:60:27:84:95:1c:7b:f5:bf:
e9:a7:da:e5:10:35:4a:c0:db:5c:eb:a0:b8:51:04:
02:d2:cb:61:17:b4:7a:41:c8:07:98:84:19:e0:83:
00:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:24:3E:63:EA:A8:E2:43:7A:77:8A:D7:C9:C6:D9:62:0D:01:E2:BC
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/GCQ-Y-qo4kN6d4rXycbZYg0B4rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/22
45.8.144.0/22
45.67.34.0/23
45.84.0.0/23
45.87.152.0/22
45.89.52.0/24
45.89.54.0/23
45.93.8.0/22
45.159.248.0/22
92.118.88.0/22
92.119.200.0/22
93.185.166.0/24
141.98.168.0-141.98.170.255
185.231.204.0/22
188.119.121.0-188.119.125.255
193.43.146.0/23
193.46.56.0/23
193.57.136.0/22
194.4.48.0/22
194.116.172.0/23
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
af:69:f6:6a:1a:7a:8f:55:04:14:4b:32:49:6a:c7:0b:1e:df:
34:27:b5:45:de:f4:b7:50:fb:51:d2:18:c2:ae:a8:e5:dc:93:
49:77:a9:ab:2d:c9:50:0b:82:60:dc:4b:8f:92:fd:f5:ca:5d:
9e:a7:d9:7a:0b:be:2b:4e:c1:86:2a:c5:9a:9b:ff:89:66:78:
c4:c6:c1:66:02:b5:d6:7d:30:cf:f0:e3:41:61:df:ef:ea:22:
7f:9c:94:94:16:f1:19:8e:ca:1f:c1:3a:54:60:b5:63:8f:9a:
86:fc:f8:c3:b0:0d:20:6b:70:46:43:57:2f:e2:7c:59:46:22:
0e:3d:8e:1e:bb:87:cf:09:ae:37:f8:27:04:01:72:24:7c:c6:
4b:02:99:68:0e:0a:71:61:a5:57:e2:bd:f2:03:22:e1:dd:ce:
57:64:f9:66:06:bd:f2:83:f3:e4:2f:f4:12:05:41:7c:70:b7:
12:12:aa:63:e7:7b:4a:a2:3b:75:b6:c6:d2:c1:fb:c5:a0:76:
07:5c:24:da:23:a6:e2:af:52:94:ba:06:3c:39:b1:79:1a:0a:
07:1c:ed:59:fe:a0:3d:21:b7:b5:8b:df:56:81:a5:7e:d5:17:
e3:77:eb:e5:46:a0:12:aa:6b:5b:4f:bc:ff:ca:7b:fd:32:c6:
50:b3:d2:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:17 2024 by rpki-client on console-ams.rpki-client.org