Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/Go5YMtSvun0BNeET0e0rhvvc23g.roa
File: Go5YMtSvun0BNeET0e0rhvvc23g.roa (raw, json)
Hash identifier: cBiaR9r/B7ud+oFXjTWk2hL6SwJYSGecg12OyOo92WM=
Subject key identifier: 1A:8E:58:32:D4:AF:BA:7D:01:35:E1:13:D1:ED:2B:86:FB:DC:DB:78
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 01877B47D7B59D3D44206FA4265E9B320EDD
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/Go5YMtSvun0BNeET0e0rhvvc23g.roa
Signing time: Thu 13 Apr 2023 15:41:58 +0000
ROA not before: Thu 13 Apr 2023 15:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 193.36.124.0/22 maxlen: 22
171.22.188.0/24 maxlen: 24
171.22.189.0/24 maxlen: 24
171.22.190.0/24 maxlen: 24
194.110.88.0/22 maxlen: 22
185.164.66.0/23 maxlen: 23
84.252.84.0/23 maxlen: 23
84.252.86.0/24 maxlen: 24
84.252.87.0/24 maxlen: 24
212.81.42.0/24 maxlen: 24
212.81.43.0/24 maxlen: 24
80.76.36.0/22 maxlen: 22
45.11.232.0/24 maxlen: 24
45.11.234.0/23 maxlen: 23
45.153.236.0/24 maxlen: 24
45.153.237.0/24 maxlen: 24
45.153.238.0/24 maxlen: 24
77.83.46.0/23 maxlen: 23
77.83.71.0/24 maxlen: 24
45.142.52.0/22 maxlen: 22
77.83.68.0/24 maxlen: 24
77.83.69.0/24 maxlen: 24
77.83.70.0/24 maxlen: 24
45.91.188.0/22 maxlen: 22
95.214.100.0/22 maxlen: 22
185.15.176.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7b:47:d7:b5:9d:3d:44:20:6f:a4:26:5e:9b:32:0e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Apr 13 15:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a8e5832d4afba7d0135e113d1ed2b86fbdcdb78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d8:37:68:cf:9c:ca:fc:ea:5f:ab:67:93:87:
9a:39:96:fe:70:45:c1:60:52:38:e3:e3:93:4a:aa:
f0:cd:c8:3e:73:29:02:19:ec:82:76:61:5a:4d:07:
e4:3a:1c:dc:24:45:f1:7a:93:db:e1:18:8a:74:57:
91:9c:65:90:56:9a:ed:df:71:4a:d5:f9:81:40:5b:
ca:8c:85:11:d4:de:d6:52:90:36:fe:32:ac:30:91:
96:2d:22:06:af:d0:3d:0b:14:a9:2f:9d:1d:a6:09:
03:68:91:e0:6f:ac:89:12:ae:61:f5:63:53:9b:92:
7e:81:0f:4e:7e:b7:29:83:78:ca:10:55:82:e9:6c:
29:7d:3d:c6:5a:9f:de:f3:e7:4c:c7:1a:78:ce:55:
0f:af:2d:b0:5b:9d:da:bd:18:34:7a:56:89:8c:50:
32:65:a4:fa:8b:ab:4a:1f:54:bf:6a:83:f6:85:a7:
ef:2b:16:8b:5e:cf:90:ee:ee:d2:a9:05:62:d7:b2:
11:91:0f:ae:d3:f0:d3:b6:9c:31:ac:b6:87:6c:75:
32:fc:01:d8:a4:bf:44:4e:5a:cc:4c:05:26:75:1b:
a1:ef:93:b0:9e:34:9a:c0:a9:04:cc:2b:ed:79:66:
22:43:f0:ee:ac:e4:9a:e5:3d:e7:16:66:90:0b:e7:
70:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:8E:58:32:D4:AF:BA:7D:01:35:E1:13:D1:ED:2B:86:FB:DC:DB:78
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/Go5YMtSvun0BNeET0e0rhvvc23g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.232.0/24
45.11.234.0/23
45.91.188.0/22
45.142.52.0/22
45.153.236.0-45.153.238.255
77.83.46.0/23
77.83.68.0/22
80.76.36.0/22
84.252.84.0/22
95.214.100.0/22
171.22.188.0-171.22.190.255
185.15.176.0/22
185.164.66.0/23
193.36.124.0/22
194.110.88.0/22
212.81.42.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:b2:e5:72:4d:bf:19:ad:28:d9:b6:79:46:bf:fc:18:a4:62:
80:aa:db:19:b9:a6:c3:c0:96:43:bc:a0:bf:36:f1:6f:a0:1d:
0c:51:8a:78:63:fc:0d:f1:fa:94:fa:11:be:29:85:48:c8:3d:
c3:bb:d8:d2:77:d2:6b:1b:17:6e:64:37:18:2e:e6:44:f6:fc:
ee:a4:c1:47:f8:10:f0:cf:8a:cb:80:fd:4f:06:6b:86:c0:f5:
fd:2f:59:7c:6e:53:6f:0c:b5:dc:a4:2d:46:fe:c3:fa:b9:b9:
54:bd:4d:86:54:07:2b:81:74:e1:16:2c:7c:c4:84:00:a0:7c:
dd:d0:3d:14:c0:56:a9:98:bc:08:c1:a7:7f:4e:0d:62:79:a6:
f0:15:8c:c4:a4:cc:1f:e7:d7:9d:bd:4d:e5:4e:b3:3a:2e:66:
b9:5f:d3:2e:b1:9b:bd:77:42:e9:bd:0e:20:71:17:c1:b4:7a:
88:58:40:d0:8f:54:cc:9c:09:dc:3f:76:77:65:7b:8f:37:b0:
97:79:e2:86:21:bd:e7:5b:7e:92:a0:d4:ec:00:69:00:40:b8:
be:c4:d7:3d:01:78:65:3f:cf:b1:28:f8:c4:69:15:b8:31:e2:
3d:29:9e:38:be:fe:60:39:07:c3:40:ed:59:eb:f0:b7:15:f8:
11:d0:75:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:31 2024 by rpki-client on console-fra.rpki-client.org