Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/gwm3p5_-9TartfeWeHlb9551weM.roa
File: gwm3p5_-9TartfeWeHlb9551weM.roa (raw, json)
Hash identifier: eJ27/i9qcQj4eq46CMuGg0PXe7Tpbx6TQ+mGNyRte/I=
Subject key identifier: 83:09:B7:A7:9F:FE:F5:36:AB:B5:F7:96:78:79:5B:F7:9E:75:C1:E3
Certificate issuer: /CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Certificate serial: 018D2386ED84DA9E5D3F5ACE42E6736F31AA
Authority key identifier: 2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/gwm3p5_-9TartfeWeHlb9551weM.roa
Signing time: Fri 19 Jan 2024 21:01:01 +0000
ROA not before: Fri 19 Jan 2024 21:01:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50810
IP address blocks: 5.201.128.0/18 maxlen: 18
5.201.128.0/21 maxlen: 21
5.201.138.0/24 maxlen: 24
5.201.142.0/23 maxlen: 23
5.201.144.0/21 maxlen: 21
5.201.144.0/23 maxlen: 23
5.201.152.0/22 maxlen: 22
5.201.156.0/22 maxlen: 22
5.201.160.0/23 maxlen: 23
5.201.168.0/22 maxlen: 22
5.201.174.0/24 maxlen: 24
37.156.16.0/21 maxlen: 21
37.156.24.0/22 maxlen: 22
37.156.30.0/23 maxlen: 23
37.156.31.0/24 maxlen: 24
89.37.0.0/20 maxlen: 20
89.37.0.0/24 maxlen: 24
89.37.8.0/22 maxlen: 22
89.37.8.0/24 maxlen: 24
89.37.14.0/24 maxlen: 24
89.37.15.0/24 maxlen: 24
89.43.0.0/21 maxlen: 21
89.43.4.0/22 maxlen: 22
89.43.8.0/22 maxlen: 22
89.43.10.0/23 maxlen: 23
89.43.12.0/23 maxlen: 23
92.114.16.0/20 maxlen: 24
92.114.20.0/23 maxlen: 23
92.114.20.0/24 maxlen: 24
92.114.21.0/24 maxlen: 24
92.114.22.0/23 maxlen: 23
92.114.24.0/21 maxlen: 21
92.114.25.0/24 maxlen: 24
92.114.28.0/22 maxlen: 22
94.101.128.0/20 maxlen: 24
94.101.128.0/21 maxlen: 21
94.101.136.0/22 maxlen: 22
94.101.139.0/24 maxlen: 24
94.101.140.0/23 maxlen: 23
94.101.142.0/23 maxlen: 23
94.101.142.0/24 maxlen: 24
185.22.30.0/23 maxlen: 23
185.103.84.0/22 maxlen: 22
185.103.84.0/24 maxlen: 24
185.103.85.0/24 maxlen: 24
185.135.228.0/22 maxlen: 22
185.136.100.0/22 maxlen: 22
185.162.40.0/22 maxlen: 22
185.175.76.0/23 maxlen: 23
185.175.78.0/23 maxlen: 23
185.176.32.0/22 maxlen: 22
185.182.220.0/22 maxlen: 22
185.182.220.0/24 maxlen: 24
185.182.221.0/24 maxlen: 24
185.182.222.0/23 maxlen: 23
188.213.64.0/20 maxlen: 21
188.213.72.0/24 maxlen: 24
188.213.73.0/24 maxlen: 24
188.213.74.0/24 maxlen: 24
188.213.75.0/24 maxlen: 24
188.213.76.0/22 maxlen: 22
2a00:5ca0::/29 maxlen: 29
2a00:5ca0::/31 maxlen: 31
2a00:5ca0::/32 maxlen: 32
2a00:5ca2::/31 maxlen: 31
2a00:5ca4::/31 maxlen: 31
Validation: Failed, certificate revoked on Sun 21 Jan 2024 11:13:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:23:86:ed:84:da:9e:5d:3f:5a:ce:42:e6:73:6f:31:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Validity
Not Before: Jan 19 21:01:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8309b7a79ffef536abb5f79678795bf79e75c1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8c:45:cb:05:21:f6:b5:de:b3:da:9e:1f:47:
66:9f:47:b0:aa:70:8d:e5:de:62:69:87:93:42:2c:
f1:5b:c1:0f:e2:94:34:fe:4d:0c:a6:b6:2d:d8:cf:
f6:94:17:c9:47:1a:ad:af:6d:00:b0:1a:85:86:a1:
92:37:22:e1:03:9a:ba:da:42:e4:47:cf:ec:bc:28:
0b:56:17:f8:dc:a4:40:d5:01:ba:fa:04:e6:3e:9b:
c5:84:05:3e:70:33:2b:50:14:7a:3a:76:fc:21:b9:
4c:ae:28:50:34:63:d1:2a:30:db:ab:2d:6b:a6:ff:
41:28:51:e7:60:71:7a:8a:b9:e7:77:4e:0c:be:6e:
31:54:f4:c3:00:00:78:0b:29:a7:0e:d8:c4:2a:f6:
e8:fa:5e:f4:0f:c4:19:0d:22:a6:3d:29:89:f7:2a:
0d:38:9f:aa:84:dc:1f:57:e7:aa:31:e6:22:7d:4b:
30:6f:07:34:5b:74:be:73:9a:67:9b:72:bc:34:9c:
d8:7a:b2:bf:33:3d:30:fa:e5:15:76:9b:9e:7b:a4:
16:71:12:bd:40:37:18:d8:d1:f3:a1:34:59:83:ce:
68:25:23:e6:94:84:db:f9:10:d9:dc:8a:33:07:96:
14:b6:1f:82:63:9d:b8:51:a0:fb:09:2c:7e:1a:68:
c1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:09:B7:A7:9F:FE:F5:36:AB:B5:F7:96:78:79:5B:F7:9E:75:C1:E3
X509v3 Authority Key Identifier:
keyid:2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/gwm3p5_-9TartfeWeHlb9551weM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/L2pDTEtdI5xObkG35YXI1Y-Jlas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.201.128.0/18
37.156.16.0-37.156.27.255
37.156.30.0/23
89.37.0.0/20
89.43.0.0-89.43.13.255
92.114.16.0/20
94.101.128.0/20
185.22.30.0/23
185.103.84.0/22
185.135.228.0/22
185.136.100.0/22
185.162.40.0/22
185.175.76.0/22
185.176.32.0/22
185.182.220.0/22
188.213.64.0/20
IPv6:
2a00:5ca0::/29
Signature Algorithm: sha256WithRSAEncryption
1e:e8:20:92:ce:dc:36:ce:ab:03:90:07:cc:00:65:42:0d:7e:
53:fa:9d:2e:4b:ef:12:b3:c4:19:21:2d:e5:5d:10:d1:21:76:
3b:6f:fc:d2:bf:f9:da:1b:b2:38:e7:c0:b9:35:81:b3:16:d0:
db:e4:57:c2:da:36:6b:de:a7:d4:72:75:94:d7:07:23:01:56:
3c:26:88:ab:93:8f:a8:b9:77:0a:35:5b:b5:fa:cb:b8:d4:3d:
38:03:2f:52:5a:a7:ca:17:ef:d3:bb:97:4a:ba:b8:69:6e:ac:
dc:ca:b2:5c:4a:f8:11:8a:15:4c:2c:76:f4:97:75:15:6d:c5:
7a:b6:92:34:5c:a0:13:ea:dd:16:97:34:71:68:6a:9a:35:f6:
67:fa:07:b8:d8:72:80:57:aa:ad:91:e5:01:29:71:35:c1:45:
9d:ac:3f:fa:15:eb:a6:c1:7c:3f:73:af:04:11:7a:ae:db:02:
f4:cb:9d:4d:49:6f:c8:6f:fd:82:6b:a6:5e:34:79:fd:9f:2a:
82:80:6b:00:58:a5:22:c3:60:71:67:c6:1b:77:8e:4c:3d:dc:
e0:39:8d:96:76:e9:c3:f5:c4:03:98:0e:e2:47:a8:89:6a:82:
10:35:19:30:2c:04:d0:82:c3:79:f0:57:f6:52:8e:37:5e:c6:
ab:c8:fb:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 21 14:34:36 2024 by rpki-client on console-ams.rpki-client.org