Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/GHOt5tzpcsB667OHpVLmDcDQ6lc.roa
File: GHOt5tzpcsB667OHpVLmDcDQ6lc.roa (raw, json)
Hash identifier: XlyaHHSvBTeksB5V7K7e4Kx4wVsIfFUh+yzioGpyh/4=
Subject key identifier: 18:73:AD:E6:DC:E9:72:C0:7A:EB:B3:87:A5:52:E6:0D:C0:D0:EA:57
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 019343C7880C5EEA0DF9BD07C18A6E7E6F32
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/GHOt5tzpcsB667OHpVLmDcDQ6lc.roa
Signing time: Tue 19 Nov 2024 09:36:10 +0000
ROA not before: Tue 19 Nov 2024 09:36:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48309
IP address blocks: 31.25.104.0/22 maxlen: 22
31.25.108.0/24 maxlen: 24
31.25.109.0/24 maxlen: 24
31.25.110.0/23 maxlen: 23
37.191.64.0/22 maxlen: 22
37.191.68.0/22 maxlen: 22
37.191.72.0/22 maxlen: 22
37.191.74.0/24 maxlen: 24
37.191.76.0/22 maxlen: 22
37.191.80.0/21 maxlen: 24
37.191.88.0/22 maxlen: 22
37.191.92.0/22 maxlen: 24
188.136.128.0/24 maxlen: 24
188.136.129.0/24 maxlen: 24
188.136.130.0/24 maxlen: 24
188.136.131.0/24 maxlen: 24
188.136.132.0/24 maxlen: 24
188.136.133.0/24 maxlen: 24
188.136.134.0/24 maxlen: 24
188.136.135.0/24 maxlen: 24
188.136.140.0/22 maxlen: 24
188.136.141.0/24 maxlen: 24
188.136.142.0/24 maxlen: 24
188.136.143.0/24 maxlen: 24
188.136.144.0/22 maxlen: 22
188.136.144.0/24 maxlen: 24
188.136.145.0/24 maxlen: 24
188.136.146.0/24 maxlen: 24
188.136.147.0/24 maxlen: 24
188.136.149.0/24 maxlen: 24
188.136.150.0/24 maxlen: 24
188.136.151.0/24 maxlen: 24
188.136.152.0/24 maxlen: 24
188.136.153.0/24 maxlen: 24
188.136.154.0/24 maxlen: 24
188.136.155.0/24 maxlen: 24
188.136.156.0/24 maxlen: 24
188.136.157.0/24 maxlen: 24
188.136.158.0/24 maxlen: 24
188.136.159.0/24 maxlen: 24
188.136.160.0/24 maxlen: 24
188.136.161.0/24 maxlen: 24
188.136.162.0/24 maxlen: 24
188.136.163.0/24 maxlen: 24
188.136.164.0/24 maxlen: 24
188.136.165.0/24 maxlen: 24
188.136.166.0/24 maxlen: 24
188.136.167.0/24 maxlen: 24
188.136.168.0/24 maxlen: 24
188.136.169.0/24 maxlen: 24
188.136.170.0/24 maxlen: 24
188.136.171.0/24 maxlen: 24
188.136.172.0/24 maxlen: 24
188.136.173.0/24 maxlen: 24
188.136.175.0/24 maxlen: 24
188.136.185.0/24 maxlen: 24
188.136.187.0/24 maxlen: 24
188.136.189.0/24 maxlen: 24
188.136.190.0/24 maxlen: 24
188.136.191.0/24 maxlen: 24
188.136.192.0/23 maxlen: 23
188.136.194.0/24 maxlen: 24
188.136.196.0/22 maxlen: 22
188.136.196.0/24 maxlen: 24
188.136.200.0/24 maxlen: 24
188.136.209.0/24 maxlen: 24
188.136.210.0/24 maxlen: 24
188.136.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 10:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:43:c7:88:0c:5e:ea:0d:f9:bd:07:c1:8a:6e:7e:6f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Nov 19 09:36:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1873ade6dce972c07aebb387a552e60dc0d0ea57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7e:3e:c9:59:bb:79:8c:eb:59:c2:6f:51:9b:
05:d1:71:f7:ad:3b:ff:9f:53:64:ad:e2:44:c8:06:
f8:57:16:26:fb:4f:4a:22:7b:92:2a:27:cd:85:dc:
16:16:ff:87:40:c7:30:cc:8d:0f:52:ee:f0:54:c8:
04:5e:70:8a:bf:c2:72:3d:72:1d:15:54:9b:e9:02:
cc:c7:c5:ce:b3:78:16:39:2f:28:5a:16:84:12:b4:
94:28:46:28:a3:05:fe:01:84:60:01:9b:1a:6e:9a:
a2:b1:bd:3b:73:df:22:b9:cb:ea:fc:29:d6:70:06:
84:93:1d:44:16:27:e2:dd:5f:f8:54:b2:06:21:e5:
25:6f:45:65:dc:45:32:db:38:5b:6f:fa:d4:89:99:
1e:45:bc:42:df:b7:4a:59:ba:b9:1d:35:80:9d:35:
ed:0b:c4:09:cb:c3:fc:57:62:94:b3:28:34:3a:b7:
d0:26:58:87:73:12:ba:e4:2e:b5:3f:2a:44:f6:5d:
22:51:03:d5:ce:d6:0d:8a:d1:58:8a:d4:68:65:30:
59:6f:b9:c5:6d:e9:8c:a1:37:2d:70:f4:73:98:cc:
bf:88:bd:03:05:e4:b0:52:72:f9:11:ef:6d:d2:ee:
52:4b:8b:20:93:6c:90:65:2f:5f:59:3d:55:39:75:
8f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:73:AD:E6:DC:E9:72:C0:7A:EB:B3:87:A5:52:E6:0D:C0:D0:EA:57
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/GHOt5tzpcsB667OHpVLmDcDQ6lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
37.191.64.0/19
188.136.128.0/21
188.136.140.0-188.136.147.255
188.136.149.0-188.136.173.255
188.136.175.0/24
188.136.185.0/24
188.136.187.0/24
188.136.189.0-188.136.194.255
188.136.196.0-188.136.200.255
188.136.209.0-188.136.211.255
Signature Algorithm: sha256WithRSAEncryption
82:79:2f:a7:9d:42:9f:b9:cf:f5:84:82:28:a6:61:7c:9d:c9:
3a:de:22:b8:9f:8a:7e:70:2b:f3:27:59:85:c8:c8:82:c7:28:
fe:02:82:5f:3f:a4:49:a9:fc:9b:38:77:0c:d0:59:bb:2e:cb:
12:81:e6:5c:f3:61:18:a5:c1:84:bb:c2:36:84:6d:ae:4a:91:
4c:23:b3:12:52:66:ee:fc:25:44:c6:17:a8:53:9c:b2:9e:36:
06:a8:c0:b1:65:ae:79:3b:29:21:9d:9e:fc:cb:7d:1f:e0:e7:
77:48:ce:65:37:df:1a:e1:c4:4b:fc:35:4e:95:69:e8:d7:a1:
fb:88:46:69:9e:12:7d:4c:fe:1d:60:fa:fc:7f:74:f5:8e:b2:
fb:2d:88:21:63:5d:af:a3:af:be:e2:5c:07:ec:b5:ee:8e:96:
c3:b4:50:e3:a4:f5:5f:d4:e8:a1:85:e3:f3:d0:04:e5:0e:bc:
9f:18:bb:dc:4d:a6:c1:d6:00:d6:ee:7f:4f:ec:23:9e:6d:7d:
ed:0b:8f:b7:ba:0e:b1:dc:45:5b:bc:48:69:5d:58:ed:70:36:
8a:f1:6c:33:63:51:0a:c9:e4:4f:b2:4c:b1:53:1e:4b:c6:95:
2d:45:47:a0:a0:fd:3b:9e:ee:c3:df:4a:38:9d:ce:af:f6:a9:
77:85:9e:5a
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgISAZNDx4gMXuoN+b0HwYpufm8yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNjk4YzRiNjEyYWZlZTJjYmIxY2RkNTA5ZTRmMDI0NmZi
YjgwZTEwHhcNMjQxMTE5MDkzNjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODczYWRlNmRjZTk3MmMwN2FlYmIzODdhNTUyZTYwZGMwZDBlYTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmn4+yVm7eYzrWcJvUZsF0XH3rTv/
n1NkreJEyAb4VxYm+09KInuSKifNhdwWFv+HQMcwzI0PUu7wVMgEXnCKv8JyPXId
FVSb6QLMx8XOs3gWOS8oWhaEErSUKEYoowX+AYRgAZsabpqisb07c98iucvq/CnW
cAaEkx1EFifi3V/4VLIGIeUlb0Vl3EUy2zhbb/rUiZkeRbxC37dKWbq5HTWAnTXt
C8QJy8P8V2KUsyg0OrfQJliHcxK65C61PypE9l0iUQPVztYNitFYitRoZTBZb7nF
bemMoTctcPRzmMy/iL0DBeSwUnL5Ee9t0u5SS4sgk2yQZS9fWT1VOXWPqwIDAQAB
o4ICbjCCAmowHQYDVR0OBBYEFBhzrebc6XLAeuuzh6VS5g3A0OpXMB8GA1UdIwQY
MBaAFFtpjEthKv7iy7HN1Qnk8CRvu4DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMt
Y2MyZmFmZTNhOGI0LzEvR0hPdDV0enBjc0I2NjdPSHBWTG1EY0RRNmxjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMtY2MyZmFmZTNhOGI0
LzEvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGDBggrBgEFBQcBBwEB/wR0MHIwcAQCAAEwagMEAx8ZaAME
BSW/QAMEA7yIgDAMAwQCvIiMAwQCvIiQMAwDBAC8iJUDBAG8iKwDBAC8iK8DBAC8
iLkDBAC8iLswDAMEALyIvQMEALyIwjAMAwQCvIjEAwQAvIjIMAwDBAC8iNEDBAK8
iNAwDQYJKoZIhvcNAQELBQADggEBAIJ5L6edQp+5z/WEgiimYXydyTreIrifin5w
K/MnWYXIyILHKP4Cgl8/pEmp/Js4dwzQWbsuyxKB5lzzYRilwYS7wjaEba5KkUwj
sxJSZu78JUTGF6hTnLKeNgaowLFlrnk7KSGdnvzLfR/g53dIzmU33xrhxEv8NU6V
aejXofuIRmmeEn1M/h1g+vx/dPWOsvstiCFjXa+jr77iXAfste6OlsO0UOOk9V/U
6KGF4/PQBOUOvJ8Yu9xNpsHWANbuf0/sI55tfe0Lj7e6DrHcRVu8SGldWO1wNorx
bDNjUQrJ5E+yTLFTHkvGlS1FR6Cg/Tue7sPfSjidzq/2qXeFnlo=
-----END CERTIFICATE-----
Generated at Tue Nov 19 13:17:35 2024 by rpki-client on console-fra.rpki-client.org