Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gcLPQaWw5oAEfowvElgVbFvJEHY.roa
File: gcLPQaWw5oAEfowvElgVbFvJEHY.roa (raw, json)
Hash identifier: 8V1c9jRZ1rieIFiSgxGW47hOsDgJNZqEQmELanArRJY=
Subject key identifier: 81:C2:CF:41:A5:B0:E6:80:04:7E:8C:2F:12:58:15:6C:5B:C9:10:76
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A98B36C7C5529D6B93452B19B8C337F64
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gcLPQaWw5oAEfowvElgVbFvJEHY.roa
Signing time: Fri 15 Sep 2023 11:56:50 +0000
ROA not before: Fri 15 Sep 2023 11:56:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 91.216.185.0/24 maxlen: 24
89.36.140.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.12.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
86.105.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Sep 2023 08:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:b3:6c:7c:55:29:d6:b9:34:52:b1:9b:8c:33:7f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 15 11:56:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81c2cf41a5b0e680047e8c2f1258156c5bc91076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4c:a7:81:47:f0:cd:71:36:3a:63:88:f4:9f:
c7:1c:af:3b:80:af:1c:3a:26:01:b8:a6:3e:c8:f1:
ba:6e:2a:3a:e6:f8:e2:4c:cb:80:34:2c:ca:5d:cc:
97:55:b0:04:53:7f:67:2f:36:f7:7d:71:f8:21:ca:
66:70:98:b6:02:8e:96:09:7e:ce:05:8c:53:3a:cb:
d9:34:66:9e:e9:36:9a:b9:b7:f1:f7:02:89:d4:0c:
76:53:a8:44:d4:e0:f3:3b:4d:79:1a:a0:d8:cd:40:
8b:3f:2a:b4:3b:d4:42:6a:24:d2:1b:79:41:e7:27:
36:ed:af:ca:43:08:0b:03:5c:74:f3:f9:e3:6b:c3:
78:18:9c:15:1a:c9:e0:5c:6a:72:0d:55:64:f5:f7:
75:cd:71:67:28:7a:53:8d:0e:69:28:f2:a2:91:59:
92:bf:87:46:92:8f:ab:0c:36:28:48:9f:05:0b:a6:
ad:f5:f3:83:b1:0a:b8:42:57:0e:ce:8b:69:f6:5b:
8c:19:0e:68:ff:d7:29:23:0f:3b:8f:f7:f3:aa:3f:
a2:a1:0b:df:cd:15:29:49:9d:7b:06:5d:8e:0f:08:
52:18:14:4a:12:0d:ea:b2:67:a0:85:50:b2:0f:f2:
58:8f:00:8c:19:16:12:b4:64:50:11:73:96:27:ae:
28:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:C2:CF:41:A5:B0:E6:80:04:7E:8C:2F:12:58:15:6C:5B:C9:10:76
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gcLPQaWw5oAEfowvElgVbFvJEHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.12.0/24
86.105.4.0/24
86.107.100.0/24
89.36.140.0/24
89.40.36.0/24
89.45.35.0/24
91.216.185.0/24
93.115.203.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:5a:fb:2a:2e:d7:8d:a3:e9:03:88:83:ca:fc:96:87:df:b5:
6d:73:08:10:8c:e9:9f:c6:5d:7f:ff:67:d5:55:e4:1d:94:2e:
df:50:01:15:9e:42:57:7f:2c:b4:f3:7c:6c:ed:73:76:11:cd:
4d:cf:03:58:8b:a3:0c:48:88:b5:50:fb:a9:2c:dc:dd:f4:e0:
0d:9c:c7:3f:16:8f:0f:4e:60:59:2a:f9:95:1f:b0:41:7c:3d:
67:3c:e0:d0:34:bf:85:5c:f4:77:39:17:47:e7:02:19:c3:99:
32:c7:36:0b:12:47:ae:ae:cb:39:ed:8a:14:b2:db:96:40:23:
d5:04:78:0a:87:1b:0e:88:21:9d:bb:80:5a:28:22:03:e3:a4:
d9:3b:3a:31:50:63:72:a6:5f:46:28:2d:73:47:26:cd:7b:a9:
a6:1c:c0:cc:69:06:15:45:1d:4f:72:7b:95:09:7b:e4:f0:86:
73:06:5e:a9:8e:21:b2:53:68:3f:f4:49:1d:09:95:eb:49:15:
6e:cf:b1:28:b1:c7:f8:8a:1d:7e:de:00:69:22:25:df:09:79:
44:1e:5e:f3:ae:82:2d:b8:51:41:0d:e8:96:a3:85:a9:7c:92:
29:15:2c:ca:2b:eb:91:7c:6e:0e:ac:3d:69:34:5c:2c:91:b1:
67:82:a2:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org