Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/9e2f8a-960d-4479-a058-4e3ce3301979/1/giQV-UadjTIpVoZnDtac-rsPakw.roa
File: giQV-UadjTIpVoZnDtac-rsPakw.roa (raw, json)
Hash identifier: 8loRYPA621RtKybYlDfUQZn/vMRCL0nk25q3/EYY/gE=
Subject key identifier: 82:24:15:F9:46:9D:8D:32:29:56:86:67:0E:D6:9C:FA:BB:0F:6A:4C
Certificate issuer: /CN=53937087814b435825470069db9e723dbe728f3b
Certificate serial: 0189FB3D55B871FE6E66BA9EDEC91A27EF97
Authority key identifier: 53:93:70:87:81:4B:43:58:25:47:00:69:DB:9E:72:3D:BE:72:8F:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U5Nwh4FLQ1glRwBp255yPb5yjzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/9e2f8a-960d-4479-a058-4e3ce3301979/1/giQV-UadjTIpVoZnDtac-rsPakw.roa
Signing time: Tue 15 Aug 2023 22:07:28 +0000
ROA not before: Tue 15 Aug 2023 22:07:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25579
IP address blocks: 185.124.120.0/22 maxlen: 22
213.146.225.0/24 maxlen: 24
213.146.226.0/24 maxlen: 24
213.146.224.0/24 maxlen: 24
213.146.230.0/24 maxlen: 24
213.146.231.0/24 maxlen: 24
213.146.229.0/24 maxlen: 24
213.146.227.0/24 maxlen: 24
213.146.228.0/24 maxlen: 24
213.146.232.0/24 maxlen: 24
213.146.233.0/24 maxlen: 24
213.146.239.0/24 maxlen: 24
213.146.240.0/24 maxlen: 24
213.146.237.0/24 maxlen: 24
213.146.238.0/24 maxlen: 24
213.146.235.0/24 maxlen: 24
213.146.236.0/24 maxlen: 24
213.146.234.0/24 maxlen: 24
213.146.244.0/24 maxlen: 24
213.146.245.0/24 maxlen: 24
213.146.242.0/24 maxlen: 24
213.146.243.0/24 maxlen: 24
213.146.241.0/24 maxlen: 24
213.146.246.0/24 maxlen: 24
213.146.253.0/24 maxlen: 24
213.146.251.0/24 maxlen: 24
213.146.252.0/24 maxlen: 24
213.146.249.0/24 maxlen: 24
213.146.250.0/24 maxlen: 24
213.146.248.0/24 maxlen: 24
213.146.247.0/24 maxlen: 24
213.146.255.0/24 maxlen: 24
213.146.254.0/24 maxlen: 24
2a06:2800::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fb:3d:55:b8:71:fe:6e:66:ba:9e:de:c9:1a:27:ef:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53937087814b435825470069db9e723dbe728f3b
Validity
Not Before: Aug 15 22:07:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=822415f9469d8d32295686670ed69cfabb0f6a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:40:c6:37:c1:c2:24:51:0e:ed:d2:83:08:b3:
67:80:cf:35:10:89:38:69:e6:cb:83:3d:4b:49:4e:
5c:b6:d7:f8:cd:69:f4:49:e0:b0:6a:12:6e:71:10:
cd:4d:2d:77:43:9b:1a:cd:38:9b:29:9a:ef:81:b2:
a7:b0:81:c7:24:ba:08:23:e7:fc:98:1a:72:58:a7:
d9:79:8f:fd:cc:96:7e:78:76:4a:79:3b:00:c7:4e:
77:98:15:49:9f:5d:3b:08:ad:3c:75:e4:e2:3c:98:
b9:0a:06:c8:9b:0a:dd:fc:68:c9:c8:be:91:5c:e7:
54:7f:dd:39:4c:b2:40:f6:4d:43:f9:23:06:e9:8b:
f0:8f:ea:88:1d:09:93:ed:fd:ad:57:d7:95:c4:f7:
09:c5:ce:47:2a:f9:6a:a1:85:0f:34:e0:8a:9a:23:
0f:2f:dc:82:b8:b9:ec:49:a9:e8:bf:fc:8a:a3:1e:
7b:15:0f:d5:af:33:72:4c:ae:42:1a:9b:d5:b5:41:
96:9b:a9:06:00:f6:a3:db:a5:a2:d8:2a:e8:e0:dc:
ef:9f:49:fc:17:65:27:0f:01:82:65:ef:85:64:00:
ff:c4:fb:29:af:40:6b:4f:bd:b9:14:64:88:90:e4:
1a:92:e5:be:70:25:34:d9:b8:f8:23:e1:74:82:92:
ad:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:24:15:F9:46:9D:8D:32:29:56:86:67:0E:D6:9C:FA:BB:0F:6A:4C
X509v3 Authority Key Identifier:
keyid:53:93:70:87:81:4B:43:58:25:47:00:69:DB:9E:72:3D:BE:72:8F:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U5Nwh4FLQ1glRwBp255yPb5yjzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/9e2f8a-960d-4479-a058-4e3ce3301979/1/giQV-UadjTIpVoZnDtac-rsPakw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/9e2f8a-960d-4479-a058-4e3ce3301979/1/U5Nwh4FLQ1glRwBp255yPb5yjzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.120.0/22
213.146.224.0/19
IPv6:
2a06:2800::/29
Signature Algorithm: sha256WithRSAEncryption
b2:12:52:d8:ef:c7:b4:84:3c:2f:ef:70:2b:c1:f0:4c:61:54:
6e:89:63:fe:1e:fb:8c:9d:c8:51:ac:7e:c8:04:1c:c5:9b:76:
45:c6:4e:2d:4c:e3:c5:a0:1e:1c:11:f6:07:bd:27:99:3d:1b:
68:61:68:86:a9:d1:49:a9:7a:74:b5:b3:73:16:b7:8c:69:57:
87:31:cb:e4:92:cb:f2:a6:31:d6:39:bd:59:49:5e:b6:e8:4a:
04:5b:59:04:29:36:68:bd:3d:8a:11:c4:cb:d4:42:d2:5f:5d:
1a:d4:6a:00:ee:6d:47:cc:94:16:bc:85:a9:ac:e8:03:75:f2:
15:be:24:24:81:8f:1c:35:91:1b:53:9d:b5:fa:6f:95:fe:c9:
4a:b8:d1:76:25:a5:22:33:3e:91:d7:af:a9:1f:3b:82:a6:2d:
cd:d9:b9:54:1b:e3:75:bc:67:07:7c:18:9e:25:a0:a6:4d:e3:
7e:3a:72:46:db:b4:86:e0:c1:33:41:91:34:29:71:c6:ee:3a:
a4:0d:b3:09:8d:f1:26:ee:65:f0:02:a4:e0:06:cb:bb:1b:5a:
a6:55:1d:9f:68:58:72:07:e1:68:a2:ee:dc:6c:44:5e:ee:99:
45:c9:8f:6f:46:54:13:66:12:02:88:ee:92:3c:7f:84:20:d5:
a4:48:be:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:36 2024 by rpki-client on console-ams.rpki-client.org