Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/GPxWzFEg-XaBpb6nqgtJF4JNfsA.roa
File: GPxWzFEg-XaBpb6nqgtJF4JNfsA.roa (raw, json)
Hash identifier: vE3CnREWv4VOO2ZLeJJ9ZKkbu1zWExsKJk2qoNtoQr4=
Subject key identifier: 18:FC:56:CC:51:20:F9:76:81:A5:BE:A7:AA:0B:49:17:82:4D:7E:C0
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 01856F14E4E1967A219D1E4DA2DF042604BC
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/GPxWzFEg-XaBpb6nqgtJF4JNfsA.roa
Signing time: Sun 01 Jan 2023 20:45:18 +0000
ROA not before: Sun 01 Jan 2023 20:45:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24685
IP address blocks: 80.92.224.0/24 maxlen: 32
80.92.226.0/24 maxlen: 32
212.110.152.0/23 maxlen: 32
80.92.231.0/24 maxlen: 32
80.92.233.0/24 maxlen: 32
80.92.234.0/24 maxlen: 32
82.117.229.0/24 maxlen: 32
193.111.48.0/23 maxlen: 32
92.60.179.0/24 maxlen: 32
92.60.178.0/24 maxlen: 32
92.60.178.0/23 maxlen: 32
82.117.244.0/24 maxlen: 32
185.38.208.0/24 maxlen: 32
185.38.209.0/24 maxlen: 32
185.39.196.0/24 maxlen: 32
128.0.172.0/24 maxlen: 32
193.111.0.0/24 maxlen: 32
85.90.211.0/24 maxlen: 32
31.172.136.0/23 maxlen: 32
31.172.140.0/23 maxlen: 32
85.90.223.0/24 maxlen: 32
2a01:6b0:7::/48 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e4:e1:96:7a:21:9d:1e:4d:a2:df:04:26:04:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Jan 1 20:45:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18fc56cc5120f97681a5bea7aa0b4917824d7ec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:84:68:96:d5:15:70:1c:3f:20:b9:2e:ae:28:
55:a5:ff:60:f7:32:6f:f5:23:92:2d:7f:44:cb:30:
18:8f:c5:5c:3e:bc:a0:d2:1d:ef:9e:7f:8f:de:10:
f8:0e:8a:14:9b:7e:76:64:44:fd:bf:6a:51:2f:ef:
32:44:22:2b:1f:81:1b:b7:69:77:e1:8e:c4:93:32:
63:49:80:ae:ef:f8:9e:e6:5c:00:31:a9:d5:83:00:
05:50:c8:d2:b2:5e:5d:40:21:3d:21:d8:c6:1b:fb:
f8:a1:64:1c:d3:df:58:4a:72:b6:44:f7:e1:5f:30:
81:c6:c0:7c:db:58:42:38:25:20:15:01:c4:fb:23:
c0:3c:35:1b:64:91:bb:32:92:a3:fb:07:be:08:2d:
4c:1e:5c:8e:19:53:27:64:1f:56:87:64:ed:6b:34:
72:fd:25:60:12:03:5e:d0:c9:90:e5:22:25:2a:02:
22:1e:31:c5:8b:3d:2f:57:d7:8e:a2:6a:70:85:4a:
1f:3e:7c:28:3c:d0:66:6a:25:1f:99:f5:b3:a5:2e:
7e:82:45:09:f7:a7:e8:ff:51:8c:8d:93:de:f2:49:
5f:1a:49:0a:3a:d9:57:3c:fc:6e:8b:8a:ea:d2:26:
04:67:69:54:dc:43:f0:e0:b2:b9:99:d1:99:3f:ce:
1f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:FC:56:CC:51:20:F9:76:81:A5:BE:A7:AA:0B:49:17:82:4D:7E:C0
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/GPxWzFEg-XaBpb6nqgtJF4JNfsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.136.0/23
31.172.140.0/23
80.92.224.0/24
80.92.226.0/24
80.92.231.0/24
80.92.233.0-80.92.234.255
82.117.229.0/24
82.117.244.0/24
85.90.211.0/24
85.90.223.0/24
92.60.178.0/23
128.0.172.0/24
185.38.208.0/23
185.39.196.0/24
193.111.0.0/24
193.111.48.0/23
212.110.152.0/23
IPv6:
2a01:6b0:7::/48
Signature Algorithm: sha256WithRSAEncryption
ab:61:b3:26:c9:5d:a4:5b:e8:06:b2:f6:a8:8c:cb:11:0e:6f:
36:6a:0b:df:0a:51:59:fc:65:62:3f:15:00:58:0f:13:f9:7b:
08:2f:b9:f8:96:37:7c:c9:bb:20:78:dd:44:43:13:38:e5:2b:
4e:0d:19:7f:1d:ab:72:d2:1c:cf:f4:dd:6c:20:3e:31:12:b0:
d0:08:89:71:78:c2:70:ba:67:0b:20:59:38:55:fd:bd:7a:9d:
89:8d:f3:d4:65:3a:d8:05:2c:6a:27:41:8d:60:35:73:d1:46:
c5:d4:ab:49:8b:97:14:81:3f:7c:5c:51:3e:c1:7c:97:72:33:
a8:d7:54:59:e7:8b:75:8e:bf:13:81:73:fe:0e:52:e3:a6:dc:
99:a2:59:6d:06:e9:8a:67:64:eb:ba:fa:5a:06:d2:a6:3f:7d:
f9:d5:c8:20:4d:8e:cb:ab:d5:f5:7f:83:30:45:58:fd:72:27:
dd:63:5f:6e:df:bb:c4:fe:34:d8:4c:42:4e:b2:c0:7d:37:fa:
c4:e6:ed:03:31:f8:0a:c3:0d:a9:b4:48:61:a8:f7:e4:c3:41:
7e:24:57:62:06:91:cc:d9:67:13:8b:e4:93:51:58:68:5a:e4:
b4:13:79:ab:0e:d4:85:7a:f9:27:0d:29:c7:a1:ec:52:cd:b3:
63:cd:13:be
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAYVvFOThlnohnR5Not8EJgS8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkODcxNDJiZGMyYjNmMGQwODQ4YTBkODAwYjY5MzBiMWFi
YjM0YmMwHhcNMjMwMTAxMjA0NTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOGZjNTZjYzUxMjBmOTc2ODFhNWJlYTdhYTBiNDkxNzgyNGQ3ZWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4RoltUVcBw/ILkurihVpf9g9zJv
9SOSLX9EyzAYj8VcPryg0h3vnn+P3hD4DooUm352ZET9v2pRL+8yRCIrH4Ebt2l3
4Y7EkzJjSYCu7/ie5lwAManVgwAFUMjSsl5dQCE9IdjGG/v4oWQc099YSnK2RPfh
XzCBxsB821hCOCUgFQHE+yPAPDUbZJG7MpKj+we+CC1MHlyOGVMnZB9Wh2TtazRy
/SVgEgNe0MmQ5SIlKgIiHjHFiz0vV9eOompwhUofPnwoPNBmaiUfmfWzpS5+gkUJ
96fo/1GMjZPe8klfGkkKOtlXPPxui4rq0iYEZ2lU3EPw4LK5mdGZP84fwQIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFBj8VsxRIPl2gaW+p6oLSReCTX7AMB8GA1UdIwQY
MBaAFA2HFCvcKz8NCEig2AC2kwsauzS8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFljVUs5d3JQdzBJU0tEWUFMYVRDeHE3Tkx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC84ZjhjYzAtZjY5My00MjFjLWJjNTQt
YTMxNzA4ZDQwMzkxLzEvR1B4V3pGRWctWGFCcGI2bnFndEpGNEpOZnNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC84ZjhjYzAtZjY5My00MjFjLWJjNTQtYTMxNzA4ZDQwMzkx
LzEvRFljVUs5d3JQdzBJU0tEWUFMYVRDeHE3Tkx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzB0BAIAATBuAwQBH6yI
AwQBH6yMAwQAUFzgAwQAUFziAwQAUFznMAwDBABQXOkDBABQXOoDBABSdeUDBABS
dfQDBABVWtMDBABVWt8DBAFcPLIDBACAAKwDBAG5JtADBAC5J8QDBADBbwADBAHB
bzADBAHUbpgwDwQCAAIwCQMHACoBBrAABzANBgkqhkiG9w0BAQsFAAOCAQEAq2Gz
JsldpFvoBrL2qIzLEQ5vNmoL3wpRWfxlYj8VAFgPE/l7CC+5+JY3fMm7IHjdREMT
OOUrTg0Zfx2rctIcz/TdbCA+MRKw0AiJcXjCcLpnCyBZOFX9vXqdiY3z1GU62AUs
aidBjWA1c9FGxdSrSYuXFIE/fFxRPsF8l3IzqNdUWeeLdY6/E4Fz/g5S46bcmaJZ
bQbpimdk67r6WgbSpj99+dXIIE2Oy6vV9X+DMEVY/XIn3WNfbt+7xP402ExCTrLA
fTf6xObtAzH4CsMNqbRIYaj35MNBfiRXYgaRzNlnE4vkk1FYaFrktBN5qw7UhXr5
Jw0px6HsUs2zY80Tvg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:01 2023 by rpki-client on console-fra.rpki-client.org