Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/gmbMo_UoKCVo1WZ-Af9y3sHJ2bI.roa
File: gmbMo_UoKCVo1WZ-Af9y3sHJ2bI.roa (raw, json)
Hash identifier: AZtYVfBdYp1/nwlZZ+4P8huTGNX4wPI8j6VO79mbdnw=
Subject key identifier: 82:66:CC:A3:F5:28:28:25:68:D5:66:7E:01:FF:72:DE:C1:C9:D9:B2
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019083A92555E4781ACECBD23052EF3A6D0A
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/gmbMo_UoKCVo1WZ-Af9y3sHJ2bI.roa
Signing time: Fri 05 Jul 2024 16:10:18 +0000
ROA not before: Fri 05 Jul 2024 16:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.134.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.204.0/22 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.68.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 07:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:83:a9:25:55:e4:78:1a:ce:cb:d2:30:52:ef:3a:6d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 5 16:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8266cca3f528282568d5667e01ff72dec1c9d9b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:81:fd:ad:c5:2f:51:19:de:fb:c7:cd:2b:70:
75:ef:31:db:0d:7d:fe:e2:8b:1c:ff:14:03:28:5d:
87:24:eb:01:8b:cd:26:82:19:3c:38:be:7c:4c:c5:
da:95:4b:f9:a4:91:39:89:2e:60:b3:cd:9c:46:52:
bc:42:e2:fb:08:ce:43:37:93:47:9d:55:1b:b7:9c:
79:e0:7e:7b:cc:90:43:e9:d9:15:5b:d0:80:d4:af:
30:ab:3c:14:cf:1f:7d:dd:cd:6e:a7:54:a3:c7:34:
5c:ec:a0:61:f9:e6:9a:7f:84:95:88:87:57:d8:b0:
54:c4:d7:23:1d:76:fa:82:a6:d4:a3:4f:52:46:36:
fd:80:6f:b9:1f:c4:e2:d3:ae:69:ce:58:76:96:33:
8c:64:2b:8c:a8:d8:a4:f7:4e:99:16:39:dd:ed:99:
da:dd:fb:ca:4b:c2:1f:62:df:b6:b5:fa:a8:87:be:
15:02:37:ec:2b:0f:3d:65:65:6f:42:b9:2b:7d:aa:
b1:71:44:d4:41:4d:4b:c1:1f:a0:50:70:e4:a2:79:
84:17:15:95:6e:6f:6e:83:b1:75:47:b6:6b:8d:e8:
a2:1c:4c:a0:72:46:ae:e7:21:f4:b9:1d:39:d6:27:
d8:21:fa:2b:68:d0:d6:1d:5d:77:e2:28:33:ce:7e:
c3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:66:CC:A3:F5:28:28:25:68:D5:66:7E:01:FF:72:DE:C1:C9:D9:B2
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/gmbMo_UoKCVo1WZ-Af9y3sHJ2bI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0/23
82.153.136.0/22
89.213.50.0/23
89.213.56.0/22
89.213.134.0/24
89.213.148.0-89.213.159.255
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.232.0/21
109.176.16.0/21
109.176.204.0/22
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.211.0/24
217.145.68.0/24
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
a3:d7:50:cf:72:d3:ee:b1:96:6f:23:97:2c:60:f2:01:89:4c:
45:7c:86:8a:40:d8:43:ca:81:55:83:14:b7:e4:59:d7:c4:c6:
92:d3:d3:ee:3f:87:9f:bb:fe:91:10:3a:62:e4:96:46:96:37:
31:a8:b9:dc:31:2d:9a:8c:23:42:87:c7:ad:ae:ff:f8:0e:93:
fb:28:0b:32:87:5b:a1:ec:dc:69:ac:91:ce:40:6b:d0:a5:71:
2a:b5:5c:7d:5d:66:8c:14:48:8f:b5:33:55:8e:4f:cf:6f:08:
59:4c:a0:e9:29:c5:9a:cc:f8:6e:30:7f:6a:d6:d3:80:1e:52:
e1:4f:89:7e:bc:3f:fd:94:d9:69:ef:a6:4e:d9:0c:c1:1e:14:
69:14:72:6f:bb:c2:3b:97:8e:40:30:d6:f2:52:2d:37:8d:26:
60:3b:b3:f3:3c:7d:a5:08:9d:f9:00:f8:34:84:f7:92:cb:6b:
1a:82:ca:62:5d:6b:6e:21:71:bb:93:52:0b:fc:32:bf:83:85:
29:8c:00:47:43:9f:48:ef:fd:41:4d:20:f3:15:54:ef:d3:84:
90:8f:44:75:e0:35:a3:a9:1b:46:d6:ba:24:aa:d5:a3:0a:06:
a9:6f:9b:51:1b:3d:11:c4:1a:9c:f6:bf:bf:85:c0:f6:7e:79:
9f:7f:2d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:32:23 2025 by rpki-client