Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/gmmE5IQvQ7ngxopeXadiMDHrU2g.roa
File: gmmE5IQvQ7ngxopeXadiMDHrU2g.roa (raw, json)
Hash identifier: F5wZZXEcJkPJ3kxUi8z8L2eQ0zIeIALeex9TerGbITQ=
Subject key identifier: 82:69:84:E4:84:2F:43:B9:E0:C6:8A:5E:5D:A7:62:30:31:EB:53:68
Certificate issuer: /CN=6525d8b7f19e2fb75cb7f95789d9118f6b1b9705
Certificate serial: 01856E143AC106E169441DBBCB882D566B4F
Authority key identifier: 65:25:D8:B7:F1:9E:2F:B7:5C:B7:F9:57:89:D9:11:8F:6B:1B:97:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSXYt_GeL7dct_lXidkRj2sblwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/gmmE5IQvQ7ngxopeXadiMDHrU2g.roa
Signing time: Sun 01 Jan 2023 16:04:57 +0000
ROA not before: Sun 01 Jan 2023 16:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8393
IP address blocks: 193.193.228.0/24 maxlen: 24
193.193.229.0/24 maxlen: 24
193.193.227.0/24 maxlen: 24
193.193.233.0/24 maxlen: 24
193.193.232.0/24 maxlen: 24
193.193.230.0/24 maxlen: 24
193.193.231.0/24 maxlen: 24
193.193.235.0/24 maxlen: 24
193.193.236.0/24 maxlen: 24
193.193.234.0/24 maxlen: 24
193.193.240.0/24 maxlen: 24
193.193.239.0/24 maxlen: 24
193.193.237.0/24 maxlen: 24
193.193.238.0/24 maxlen: 24
193.193.245.0/24 maxlen: 24
193.193.246.0/24 maxlen: 24
193.193.244.0/24 maxlen: 24
193.193.242.0/24 maxlen: 24
193.193.243.0/24 maxlen: 24
193.193.241.0/24 maxlen: 24
193.193.249.0/24 maxlen: 24
193.193.250.0/24 maxlen: 24
193.193.247.0/24 maxlen: 24
193.193.248.0/24 maxlen: 24
193.193.251.0/24 maxlen: 24
193.193.252.0/23 maxlen: 23
193.193.254.0/24 maxlen: 24
193.193.255.0/24 maxlen: 24
193.193.226.0/24 maxlen: 24
193.193.225.0/24 maxlen: 24
193.193.224.0/24 maxlen: 24
213.157.35.0/24 maxlen: 24
213.157.36.0/24 maxlen: 24
213.157.33.0/24 maxlen: 24
213.157.34.0/24 maxlen: 24
213.157.32.0/24 maxlen: 24
213.157.37.0/24 maxlen: 24
213.157.38.0/24 maxlen: 24
213.157.42.0/24 maxlen: 24
213.157.43.0/24 maxlen: 24
213.157.40.0/24 maxlen: 24
213.157.41.0/24 maxlen: 24
213.157.39.0/24 maxlen: 24
213.157.44.0/24 maxlen: 24
213.157.49.0/24 maxlen: 24
213.157.50.0/24 maxlen: 24
213.157.47.0/24 maxlen: 24
213.157.48.0/24 maxlen: 24
213.157.46.0/24 maxlen: 24
213.157.45.0/24 maxlen: 24
213.157.51.0/24 maxlen: 24
213.157.58.0/23 maxlen: 23
213.157.56.0/24 maxlen: 24
213.157.57.0/24 maxlen: 24
213.157.54.0/23 maxlen: 23
213.157.53.0/24 maxlen: 24
213.157.52.0/24 maxlen: 24
213.157.63.0/24 maxlen: 24
213.157.61.0/24 maxlen: 24
213.157.62.0/24 maxlen: 24
213.157.60.0/24 maxlen: 24
91.203.22.0/24 maxlen: 24
91.203.20.0/24 maxlen: 24
91.203.21.0/24 maxlen: 24
185.217.16.0/24 maxlen: 24
185.217.17.0/24 maxlen: 24
185.217.19.0/24 maxlen: 24
185.217.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Jan 2023 10:40:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:3a:c1:06:e1:69:44:1d:bb:cb:88:2d:56:6b:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6525d8b7f19e2fb75cb7f95789d9118f6b1b9705
Validity
Not Before: Jan 1 16:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=826984e4842f43b9e0c68a5e5da7623031eb5368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e8:3a:77:cc:80:94:75:09:5a:1b:49:6c:92:
86:de:8e:28:64:77:38:db:21:39:7a:8d:6a:45:a6:
73:48:6a:4a:db:16:c2:22:bc:2e:33:e4:1b:f8:c0:
d6:3a:5f:78:96:aa:07:fd:07:61:98:a1:f1:f6:e5:
66:a1:9b:a5:44:6d:1a:34:21:92:90:05:96:3c:89:
52:1c:c9:c8:73:96:2f:45:4c:e6:a6:53:4c:ce:fc:
21:65:5c:24:cc:0a:02:1a:dd:93:d8:14:d9:72:cf:
f7:18:a2:1e:b4:a9:5f:e0:95:6d:6d:d9:f0:11:98:
fd:4f:67:15:1a:5a:3d:23:4e:ce:dd:eb:84:44:07:
0a:19:83:41:5b:8a:6e:6c:7e:26:cb:a1:d0:d5:78:
96:3d:d7:3b:c1:89:cb:2c:a5:9d:dd:f7:63:4c:7f:
36:df:28:7d:b4:e5:67:a7:b7:4f:be:bf:73:68:c0:
28:8a:10:37:1c:5e:a1:83:04:a5:02:2d:fb:de:51:
72:81:d7:ca:9f:68:24:90:a8:0b:83:da:0a:4b:ac:
31:7f:61:33:8f:94:de:18:95:0c:9c:bf:73:7a:74:
d1:bb:5e:66:b0:99:c7:99:24:56:f1:2a:0c:4d:47:
1a:25:73:f1:91:ff:4d:90:d1:7e:00:f0:7b:09:75:
c2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:69:84:E4:84:2F:43:B9:E0:C6:8A:5E:5D:A7:62:30:31:EB:53:68
X509v3 Authority Key Identifier:
keyid:65:25:D8:B7:F1:9E:2F:B7:5C:B7:F9:57:89:D9:11:8F:6B:1B:97:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSXYt_GeL7dct_lXidkRj2sblwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/gmmE5IQvQ7ngxopeXadiMDHrU2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/ZSXYt_GeL7dct_lXidkRj2sblwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.20.0-91.203.22.255
185.217.16.0/22
193.193.224.0/19
213.157.32.0/19
Signature Algorithm: sha256WithRSAEncryption
19:a9:c3:e4:74:b9:28:9d:a5:b3:2b:f6:7a:0c:81:a0:a9:14:
19:4c:60:44:9c:a9:b4:22:4b:d9:4a:4d:90:da:e5:3c:5d:2f:
15:fa:f9:b2:85:12:9f:f7:c2:f8:c2:78:76:6f:e0:44:9c:0b:
8f:12:1a:20:c1:d2:42:ec:b7:bd:46:bf:41:bb:68:9b:56:94:
7e:dd:6a:98:41:e5:d8:71:34:a7:1b:49:8a:37:69:d0:7c:ab:
d0:f3:60:73:26:3a:bf:70:40:00:1d:11:fe:2f:4f:fc:be:e1:
48:38:d0:17:b5:b5:01:0e:2f:af:3c:c2:24:14:ea:b1:28:41:
e7:f9:e5:6c:4a:af:05:d1:d0:10:3b:3e:82:07:5e:62:e1:93:
93:d2:d9:7c:5b:86:16:5a:cb:2b:bc:f7:91:a4:ce:53:bc:77:
1e:a8:65:ca:1e:6f:dd:9c:f0:7f:d7:fe:af:e0:0b:81:c4:d4:
7d:12:c2:99:4e:21:d4:68:31:6c:82:1a:88:3c:ab:74:b9:0d:
ed:7e:99:1a:43:f6:c4:81:68:c4:40:ee:24:16:cd:ab:88:59:
80:28:91:2e:8c:54:76:7c:87:89:79:11:c2:72:b4:e8:30:42:
11:7a:d7:13:5d:41:57:58:a7:0b:d2:f5:8c:74:89:9c:24:e9:
a8:f6:a4:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:10 2024 by rpki-client on console-fra.rpki-client.org