Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/GPOkUhD7BXnEL6hGQYWSbc7l1iQ.roa
File: GPOkUhD7BXnEL6hGQYWSbc7l1iQ.roa (raw, json)
Hash identifier: 4OKLr37/W2ktU1LYsSPAH1GUBk6w0B1SgmuYXIIxjn0=
Subject key identifier: 18:F3:A4:52:10:FB:05:79:C4:2F:A8:46:41:85:92:6D:CE:E5:D6:24
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190FFF500A9C79F2465B079C146EC719743
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/GPOkUhD7BXnEL6hGQYWSbc7l1iQ.roa
Signing time: Mon 29 Jul 2024 19:26:04 +0000
ROA not before: Mon 29 Jul 2024 19:26:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8903
IP address blocks: 45.10.104.0/22 maxlen: 22
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
85.209.72.0/22 maxlen: 22
89.42.70.0/24 maxlen: 24
89.42.71.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.45.208.0/24 maxlen: 24
89.45.209.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.34.0/24 maxlen: 24
178.19.35.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.45.0/24 maxlen: 24
178.19.46.0/23 maxlen: 23
178.19.47.0/24 maxlen: 24
185.71.28.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.140.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.182.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 08:53:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ff:f5:00:a9:c7:9f:24:65:b0:79:c1:46:ec:71:97:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 29 19:26:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18f3a45210fb0579c42fa8464185926dcee5d624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d0:a4:6b:6f:97:d3:0e:f8:7c:7b:70:52:c6:
46:71:7b:2e:f1:99:6b:16:1f:63:f0:d5:2f:33:07:
f8:a5:1e:da:ba:d8:27:85:7f:c3:3d:4f:28:2b:13:
4b:53:2d:32:2d:e1:b1:2d:27:ce:a4:17:55:bc:ea:
c7:30:50:5a:e8:fa:c4:40:e1:a0:85:31:88:5a:9a:
3b:b5:24:51:4b:62:07:d8:97:8a:2c:47:8f:c6:15:
e5:b1:78:c8:d4:00:5e:15:d8:9f:9d:55:0a:4c:7d:
fd:ce:0d:c1:eb:54:3c:66:7b:40:fe:2c:91:8a:0f:
44:7f:9e:1e:51:c6:b7:70:65:e9:dc:c0:31:7c:78:
81:25:23:a9:42:b4:30:b6:c7:2a:c6:bf:62:d0:cb:
11:56:5c:b1:b4:59:46:27:ae:36:2d:06:71:ff:09:
5d:ac:c4:31:a6:b1:51:96:f6:52:f7:ab:52:ae:a2:
ad:2d:3a:18:c6:5f:88:21:4f:42:53:e2:88:c0:38:
3b:19:8c:9e:29:a2:e8:9a:33:bf:93:42:35:16:13:
be:32:5d:eb:31:b5:d7:6c:f3:03:eb:b0:8e:70:de:
2c:8a:14:32:e7:f4:65:93:1a:71:5e:aa:32:e0:52:
0d:67:43:bb:51:dc:3f:84:d6:d4:7d:b1:9a:6a:51:
32:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F3:A4:52:10:FB:05:79:C4:2F:A8:46:41:85:92:6D:CE:E5:D6:24
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/GPOkUhD7BXnEL6hGQYWSbc7l1iQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.83.50.0/23
80.66.112.0/20
85.209.72.0/22
89.42.70.0/23
89.44.150.0/23
89.45.208.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/22
178.19.44.0/22
185.71.28.0/24
185.203.21.0-185.203.23.255
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.140.0/24
194.15.146.0/24
194.15.182.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
26:9a:61:7a:9a:b7:3b:8e:0c:19:1d:04:cb:25:d9:00:4a:a4:
40:55:f2:c1:d0:4b:f4:df:1b:06:bf:05:19:44:07:e4:8f:4c:
61:8c:52:bb:da:62:a3:c5:f8:5d:60:77:af:60:e4:71:07:ef:
a7:33:48:78:1b:34:28:de:67:8e:8e:32:1e:24:38:ed:2a:e2:
49:a1:e0:94:d9:82:d1:a1:d4:11:5d:67:be:4f:d6:25:74:07:
b3:e1:f7:89:dd:e6:67:c4:55:e7:da:63:55:5e:9e:4d:30:7b:
eb:f3:dd:3e:a5:10:04:51:f6:78:86:9b:84:60:e4:9a:b3:90:
dc:1b:37:55:82:a7:4a:84:17:bf:84:46:3e:c2:1b:60:7b:2a:
51:96:ac:d6:6b:8c:cb:99:e8:d7:fe:cf:21:22:4c:c7:b1:92:
b4:ae:80:04:1a:53:25:28:8d:51:28:d7:bf:e5:4c:ab:67:d5:
c2:75:86:cb:3d:6b:e6:78:df:82:41:6e:27:8b:be:3e:5d:48:
45:b4:2b:f7:c0:94:fd:34:54:27:da:38:de:22:a0:31:3a:8f:
f2:e8:6f:d4:05:b0:67:ed:a5:a5:74:cd:ac:7f:72:44:ec:13:
f2:59:5f:2e:58:68:4c:c8:b8:d2:bb:15:14:02:2d:7f:aa:38:
31:3b:3c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 10:33:50 2024 by rpki-client on console-fra.rpki-client.org