Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/gMQbz9VsVZKtDNPGiNN4XF76fFM.roa
File: gMQbz9VsVZKtDNPGiNN4XF76fFM.roa (raw, json)
Hash identifier: oZnBmZowiUbkZ/7za2yg/CdmeuWeYu03LSWOJhC1sf8=
Subject key identifier: 80:C4:1B:CF:D5:6C:55:92:AD:0C:D3:C6:88:D3:78:5C:5E:FA:7C:53
Certificate issuer: /CN=ed6da82dbc7d7e2818f96680b66efcedb1087947
Certificate serial: 01856C013FAF4E6DD417EB738F9EA71985A1
Authority key identifier: ED:6D:A8:2D:BC:7D:7E:28:18:F9:66:80:B6:6E:FC:ED:B1:08:79:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7W2oLbx9figY-WaAtm787bEIeUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/gMQbz9VsVZKtDNPGiNN4XF76fFM.roa
Signing time: Sun 01 Jan 2023 06:24:59 +0000
ROA not before: Sun 01 Jan 2023 06:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29551
IP address blocks: 80.66.204.0/22 maxlen: 22
109.71.24.0/21 maxlen: 21
83.141.0.0/18 maxlen: 18
109.71.31.0/24 maxlen: 24
82.149.233.0/24 maxlen: 24
82.149.232.0/24 maxlen: 24
82.149.235.0/24 maxlen: 24
82.149.234.0/24 maxlen: 24
195.225.196.0/22 maxlen: 22
178.19.64.0/20 maxlen: 20
46.253.112.0/20 maxlen: 20
82.149.224.0/19 maxlen: 19
83.141.16.0/24 maxlen: 24
83.141.15.0/24 maxlen: 24
83.141.29.0/24 maxlen: 24
83.141.28.0/24 maxlen: 24
83.141.27.0/24 maxlen: 24
83.141.26.0/24 maxlen: 24
83.141.62.0/24 maxlen: 24
83.141.60.0/24 maxlen: 24
83.141.60.0/22 maxlen: 22
2a01:440::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Feb 2023 07:45:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:3f:af:4e:6d:d4:17:eb:73:8f:9e:a7:19:85:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed6da82dbc7d7e2818f96680b66efcedb1087947
Validity
Not Before: Jan 1 06:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80c41bcfd56c5592ad0cd3c688d3785c5efa7c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5e:5a:ac:c6:5e:43:8c:9b:93:8b:e4:21:74:
56:ab:18:5b:a1:51:55:c0:31:f9:37:ba:48:ea:1c:
43:cd:4f:a4:7b:88:5d:80:53:4d:98:7d:25:3f:f4:
f2:13:5a:c0:f9:a4:d5:36:05:8b:34:df:70:b4:21:
33:40:33:84:bc:ea:e1:65:da:46:e4:ad:2d:84:c4:
5b:05:a7:f2:10:ba:bb:f7:73:39:eb:00:01:27:91:
80:16:10:78:3a:b8:3b:d3:37:bb:61:4c:0f:83:28:
6c:b1:23:21:13:0c:f9:6f:10:31:88:e1:98:42:3d:
36:bf:ef:a6:98:93:23:ae:85:33:b4:d5:e5:50:66:
f0:ee:03:33:71:b5:a3:a4:81:d5:5d:84:63:d2:7a:
06:f9:d1:69:e9:62:b7:be:19:9d:c7:d1:5a:e5:64:
77:71:7b:ee:e8:06:2a:19:24:08:17:ae:76:fc:2a:
18:bd:6d:33:61:03:1b:0e:76:fe:43:c3:5d:22:43:
9d:bd:e7:a4:6b:ff:0e:94:b3:fb:ff:ba:08:d8:2f:
02:3b:68:32:5a:bf:40:41:3a:8e:ec:fe:66:fe:87:
16:c2:6a:55:c1:d6:09:f3:8b:47:45:67:84:fe:f7:
fb:b1:67:04:f0:bc:e8:00:2d:30:49:f6:62:7f:12:
eb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C4:1B:CF:D5:6C:55:92:AD:0C:D3:C6:88:D3:78:5C:5E:FA:7C:53
X509v3 Authority Key Identifier:
keyid:ED:6D:A8:2D:BC:7D:7E:28:18:F9:66:80:B6:6E:FC:ED:B1:08:79:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7W2oLbx9figY-WaAtm787bEIeUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/gMQbz9VsVZKtDNPGiNN4XF76fFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/7W2oLbx9figY-WaAtm787bEIeUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.112.0/20
80.66.204.0/22
82.149.224.0/19
83.141.0.0/18
109.71.24.0/21
178.19.64.0/20
195.225.196.0/22
IPv6:
2a01:440::/29
Signature Algorithm: sha256WithRSAEncryption
6e:38:e2:3b:5d:24:d9:eb:48:70:05:c5:b6:a7:81:94:31:f4:
06:aa:d1:f1:1e:8c:91:dc:73:31:98:c3:fc:c8:df:53:60:fb:
8f:97:02:dd:6d:4d:b3:67:74:e3:f5:56:cb:8a:52:63:48:70:
ac:ca:80:69:d9:37:fc:aa:86:32:19:cf:85:ab:92:e1:98:a3:
6e:68:2f:b4:c8:2a:83:23:c6:2c:51:01:18:0e:5a:4b:74:35:
1d:31:79:c9:9c:85:ed:2d:68:55:32:f2:f5:56:ea:b8:f7:07:
f7:d6:fe:f3:72:3a:4b:04:b6:74:e5:d4:7c:0c:44:12:a1:17:
17:c0:93:85:56:7d:46:d6:19:47:f2:e3:9f:96:1c:e5:01:a5:
05:a8:f1:63:fe:cd:bb:f6:ab:d4:ff:91:b8:d3:0a:37:bb:db:
88:e0:89:a9:6e:c1:66:31:6d:38:8d:93:42:b0:5f:15:c8:87:
30:b4:04:71:b7:31:57:32:56:7c:19:7d:a6:30:28:1d:66:f7:
84:25:de:d1:62:3a:29:6f:46:64:37:f6:da:af:31:7a:b6:be:
c8:a1:21:6c:ff:7a:df:75:92:64:68:0b:f0:fb:3b:aa:a0:a3:
3e:a2:f7:16:52:8b:cf:6c:6f:c2:1b:c7:a6:30:4e:24:9e:57:
84:ce:eb:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:51 2024 by rpki-client on console-ams.rpki-client.org