Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/gVWhAEda0feNjTz5T3vLPzrYZLY.roa
File: gVWhAEda0feNjTz5T3vLPzrYZLY.roa (raw, json)
Hash identifier: tfWthM61N9d5hgi/xK1QMfarFSMpwp7IzYiqs1HafYA=
Subject key identifier: 81:55:A1:00:47:5A:D1:F7:8D:8D:3C:F9:4F:7B:CB:3F:3A:D8:64:B6
Certificate issuer: /CN=48171672d53fdf8b2537764f537e365a5927bdaf
Certificate serial: 018A22E7075E95E97BD85DD0317CCFD2BB90
Authority key identifier: 48:17:16:72:D5:3F:DF:8B:25:37:76:4F:53:7E:36:5A:59:27:BD:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBcWctU_34slN3ZPU342Wlknva8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/gVWhAEda0feNjTz5T3vLPzrYZLY.roa
Signing time: Wed 23 Aug 2023 14:58:00 +0000
ROA not before: Wed 23 Aug 2023 14:58:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21056
IP address blocks: 103.61.184.0/22 maxlen: 22
103.248.184.0/22 maxlen: 22
45.151.12.0/22 maxlen: 32
103.26.124.0/22 maxlen: 22
80.93.128.0/20 maxlen: 32
185.231.160.0/22 maxlen: 32
46.44.192.0/18 maxlen: 32
144.48.192.0/22 maxlen: 32
45.143.36.0/22 maxlen: 32
185.230.92.0/22 maxlen: 32
45.151.64.0/22 maxlen: 32
185.241.20.0/22 maxlen: 32
185.224.60.0/22 maxlen: 32
87.247.232.0/21 maxlen: 32
45.84.140.0/22 maxlen: 32
213.182.64.0/19 maxlen: 32
185.224.104.0/22 maxlen: 32
79.135.32.0/19 maxlen: 32
185.230.192.0/22 maxlen: 32
185.170.36.0/22 maxlen: 32
103.43.232.0/22 maxlen: 22
185.158.116.0/22 maxlen: 32
185.230.232.0/22 maxlen: 32
78.152.96.0/19 maxlen: 32
185.234.164.0/22 maxlen: 32
94.138.160.0/19 maxlen: 32
91.143.192.0/20 maxlen: 32
2a00:14f8::/32 maxlen: 64
Validation: Failed, certificate revoked on Mon 23 Oct 2023 13:19:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:22:e7:07:5e:95:e9:7b:d8:5d:d0:31:7c:cf:d2:bb:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48171672d53fdf8b2537764f537e365a5927bdaf
Validity
Not Before: Aug 23 14:58:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8155a100475ad1f78d8d3cf94f7bcb3f3ad864b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:49:87:da:5b:25:8e:3a:42:4c:54:09:ca:44:
29:6f:02:5c:6e:97:9a:81:1e:d6:81:57:4c:46:fb:
cb:19:7c:5f:39:7b:3a:83:61:e5:83:ac:8c:7e:c9:
02:ab:e3:7a:67:69:8b:f5:55:2c:7a:3a:c3:bf:ee:
a4:2b:bb:ae:8e:d1:1b:16:6c:01:c7:8f:70:e6:ae:
a0:82:48:b0:76:71:ab:60:e3:a4:02:71:03:86:88:
8d:05:83:62:91:1e:f2:36:8d:95:56:28:87:ce:e9:
12:d4:9a:69:d1:0d:de:25:6b:c5:f2:a8:f9:99:77:
71:64:7b:9d:5f:74:13:29:2c:e6:37:14:ea:f2:ae:
bf:e2:1a:72:31:34:50:71:4e:3c:4f:98:88:7e:91:
c7:3e:1e:fe:6e:c6:f7:e2:c8:a1:30:a2:61:36:43:
bf:d1:a5:19:ed:88:3f:59:a5:96:fa:96:17:06:e9:
b0:69:1b:6e:d3:cf:05:f6:b6:0e:e9:44:02:55:64:
09:87:7f:95:69:4c:7c:d8:1f:44:24:f4:a7:dc:05:
21:89:49:8b:2b:43:ac:19:34:88:18:b1:7e:da:9c:
2b:dc:e4:04:d8:d0:ac:29:15:0f:24:18:e5:00:da:
0a:d5:28:8c:bc:55:69:2b:3f:75:7c:38:c9:7c:da:
ae:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:55:A1:00:47:5A:D1:F7:8D:8D:3C:F9:4F:7B:CB:3F:3A:D8:64:B6
X509v3 Authority Key Identifier:
keyid:48:17:16:72:D5:3F:DF:8B:25:37:76:4F:53:7E:36:5A:59:27:BD:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBcWctU_34slN3ZPU342Wlknva8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/gVWhAEda0feNjTz5T3vLPzrYZLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/SBcWctU_34slN3ZPU342Wlknva8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.140.0/22
45.143.36.0/22
45.151.12.0/22
45.151.64.0/22
46.44.192.0/18
78.152.96.0/19
79.135.32.0/19
80.93.128.0/20
87.247.232.0/21
91.143.192.0/20
94.138.160.0/19
103.26.124.0/22
103.43.232.0/22
103.61.184.0/22
103.248.184.0/22
144.48.192.0/22
185.158.116.0/22
185.170.36.0/22
185.224.60.0/22
185.224.104.0/22
185.230.92.0/22
185.230.192.0/22
185.230.232.0/22
185.231.160.0/22
185.234.164.0/22
185.241.20.0/22
213.182.64.0/19
IPv6:
2a00:14f8::/32
Signature Algorithm: sha256WithRSAEncryption
9c:46:34:c4:26:db:a2:56:fd:74:a5:d3:51:6c:c9:c2:26:78:
0e:31:54:d4:f0:4e:bb:b7:3f:d4:f0:eb:db:c5:8a:10:b0:95:
68:b0:18:16:7b:ac:2c:a5:99:72:30:19:8a:88:d3:42:24:41:
e3:0a:fc:41:63:b4:69:ba:81:3a:a6:16:c5:8c:5b:fe:ee:ae:
a3:64:9c:c6:ff:e1:1b:50:dc:24:02:3c:06:f7:ed:ac:a3:2b:
13:9b:93:09:b4:73:a8:f4:9d:3c:d2:99:9a:17:5a:66:41:36:
21:88:22:a9:8d:f3:fb:13:3e:1b:5c:1b:ae:94:59:27:36:83:
2d:7f:1c:66:cc:c6:be:68:41:12:1e:7b:dc:fb:ef:59:a8:00:
08:8a:96:61:f9:b1:1c:21:bd:c4:d4:18:3c:4d:4a:5b:8a:4b:
a6:11:10:8d:51:63:cb:62:80:40:de:42:14:f1:30:21:11:e6:
b0:dc:88:3e:dd:bd:76:0a:dc:06:d6:75:e7:b9:62:71:f2:d2:
83:af:b2:5d:35:b0:ed:91:3e:d9:b9:a4:d6:b5:8d:7e:33:83:
5e:88:a4:31:cb:59:d0:e8:04:24:52:98:0e:ee:f2:ed:2b:ef:
09:2b:f2:c9:b6:8e:f7:2f:0e:b6:20:95:1d:f7:a4:6d:b5:7b:
00:9f:6e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:27 2024 by rpki-client on console-ams.rpki-client.org