Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/gl7EvhdTWiDhpn0DRvf_uxIdK7w.roa
File: gl7EvhdTWiDhpn0DRvf_uxIdK7w.roa (raw, json)
Hash identifier: F7mDN6mSV96lK4tB7Udzdd2/VLNaoYc/2r+lUzsjt30=
Subject key identifier: 82:5E:C4:BE:17:53:5A:20:E1:A6:7D:03:46:F7:FF:BB:12:1D:2B:BC
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0188D95CE538DB5CF912BF49B88ED7D6D7C7
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/gl7EvhdTWiDhpn0DRvf_uxIdK7w.roa
Signing time: Tue 20 Jun 2023 15:12:03 +0000
ROA not before: Tue 20 Jun 2023 15:12:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58305
IP address blocks: 198.105.124.0/23 maxlen: 24
45.43.64.0/19 maxlen: 24
45.43.74.0/23 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
198.105.116.0/23 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.165.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.164.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
107.161.174.0/23 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
162.217.251.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:1111::/48 maxlen: 48
2a07:9944:2222::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a07:9944:30::/48 maxlen: 48
2a02:2ca7:2e::/48 maxlen: 48
2a07:9942:39d6::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate revoked on Sun 02 Jul 2023 17:24:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d9:5c:e5:38:db:5c:f9:12:bf:49:b8:8e:d7:d6:d7:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jun 20 15:12:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=825ec4be17535a20e1a67d0346f7ffbb121d2bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:61:9e:aa:ef:3e:69:d3:96:1d:83:0e:5d:78:
42:3d:68:79:e2:76:33:34:a6:b3:da:5c:23:53:56:
e5:c4:77:c1:7b:45:dc:ff:1e:21:3f:1b:45:aa:b1:
12:e7:03:be:4f:16:a4:3b:03:50:a9:99:d8:cf:e7:
59:ff:2d:c3:59:5d:6a:6b:06:4c:6b:e4:69:90:7a:
60:fa:70:c1:74:04:8d:cc:ba:50:68:ed:f9:f7:0e:
2b:6a:7a:e9:54:3f:2c:93:56:d4:ac:d7:19:a9:99:
0e:b3:7e:d9:b8:75:0e:1e:cd:9b:4b:ea:a2:e9:ca:
07:b4:41:eb:c9:25:10:b5:b8:d0:90:5c:3b:2a:70:
17:76:f4:25:20:2b:cc:c1:08:46:6f:2c:12:65:c4:
fe:05:da:6f:69:90:59:1e:cc:16:ee:3e:23:4b:26:
0d:4f:fe:d6:e0:44:24:c9:23:db:7c:65:de:0e:89:
dd:79:00:57:92:35:78:da:db:15:01:f5:25:d0:08:
45:93:ac:fd:50:2c:40:c7:46:8c:ba:03:62:af:5d:
65:78:92:e0:45:83:80:e8:10:7a:2a:2c:ef:cd:26:
c3:c1:92:99:3c:c3:06:2f:5b:ec:ce:61:b0:c8:c4:
0e:0c:6b:8f:91:09:bf:35:ec:17:cb:5f:cd:44:23:
46:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:5E:C4:BE:17:53:5A:20:E1:A6:7D:03:46:F7:FF:BB:12:1D:2B:BC
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/gl7EvhdTWiDhpn0DRvf_uxIdK7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.164.0/23
107.161.168.0/21
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0/22
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
18:f0:8f:31:ac:74:74:0d:c9:c9:f0:bc:e7:f9:74:7e:38:78:
45:ff:ab:2b:4d:16:89:72:24:ab:c3:48:4a:77:33:07:cf:22:
e7:a5:fc:b3:1b:9c:12:ad:b1:55:a9:84:8d:8a:f2:44:63:8c:
77:cf:e3:49:89:e7:cb:f0:5b:ab:a9:42:2a:bb:5d:84:2a:27:
ea:69:ad:9b:06:20:42:7b:14:e0:37:ee:0c:b0:13:ab:62:3c:
98:8c:f2:bd:b8:f0:02:f7:48:51:04:82:e2:37:e9:a8:c9:17:
d3:ed:d9:5b:fe:7b:44:9b:89:85:eb:d2:5a:d6:76:f7:ac:63:
1a:22:87:60:35:80:b0:dc:2f:53:b9:37:e5:4c:5c:14:a5:0a:
55:80:bf:25:96:7c:4a:05:61:d9:6e:d3:1c:1e:c7:63:8f:ae:
dd:80:99:95:82:67:ba:d6:49:73:0e:2c:d7:aa:bf:6d:c4:fe:
75:c5:16:f6:c9:79:e9:7b:a4:10:eb:e4:61:99:33:73:d7:7b:
93:7e:ce:cb:a7:89:6c:64:2b:96:9f:0c:20:b6:cc:fc:e3:0f:
ac:37:1b:97:62:b0:12:a0:c8:d9:72:4e:24:de:c1:5e:a9:39:
25:1a:f6:49:f7:b5:ea:f4:a3:16:85:a7:a8:bf:67:c5:10:cd:
6b:de:dd:f7
-----BEGIN CERTIFICATE-----
MIIFWDCCBECgAwIBAgISAYjZXOU421z5Er9JuI7X1tfHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NTRjMzQ3ZDY4ZDE1NDkzZGU3MWJiOTYyZjBhNTY3ZTEz
NGQ2MDMwHhcNMjMwNjIwMTUxMjAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjVlYzRiZTE3NTM1YTIwZTFhNjdkMDM0NmY3ZmZiYjEyMWQyYmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGGequ8+adOWHYMOXXhCPWh54nYz
NKaz2lwjU1blxHfBe0Xc/x4hPxtFqrES5wO+TxakOwNQqZnYz+dZ/y3DWV1qawZM
a+RpkHpg+nDBdASNzLpQaO359w4ranrpVD8sk1bUrNcZqZkOs37ZuHUOHs2bS+qi
6coHtEHrySUQtbjQkFw7KnAXdvQlICvMwQhGbywSZcT+BdpvaZBZHswW7j4jSyYN
T/7W4EQkySPbfGXeDondeQBXkjV42tsVAfUl0AhFk6z9UCxAx0aMugNir11leJLg
RYOA6BB6KizvzSbDwZKZPMMGL1vszmGwyMQODGuPkQm/NewXy1/NRCNGgQIDAQAB
o4ICZDCCAmAwHQYDVR0OBBYEFIJexL4XU1og4aZ9A0b3/7sSHSu8MB8GA1UdIwQY
MBaAFOdUw0fWjRVJPecbuWLwpWfhNNYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2It
MzdiNjJkMjIzOTI0LzEvZ2w3RXZoZFRXaURocG4wRFJ2Zl91eElkSzd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2ItMzdiNjJkMjIzOTI0
LzEvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHoGCCsGAQUFBwEHAQH/BGswaTBKBAIAATBEAwQFLStAMAwD
BAVroaADBABroaIDBAFroaQDBANroagDBAVrtYADBAJxFJwDBAWb/iADBAKi2fgD
BAOi3PADBAXGaWAwGwQCAAIwFQMFAyoCLKADBQMqBZ9AAwUDKgeZQDANBgkqhkiG
9w0BAQsFAAOCAQEAGPCPMax0dA3JyfC85/l0fjh4Rf+rK00WiXIkq8NISnczB88i
56X8sxucEq2xVamEjYryRGOMd8/jSYnny/Bbq6lCKrtdhCon6mmtmwYgQnsU4Dfu
DLATq2I8mIzyvbjwAvdIUQSC4jfpqMkX0+3ZW/57RJuJhevSWtZ296xjGiKHYDWA
sNwvU7k35UxcFKUKVYC/JZZ8SgVh2W7THB7HY4+u3YCZlYJnutZJcw4s16q/bcT+
dcUW9sl56XukEOvkYZkzc9d7k37Oy6eJbGQrlp8MILbM/OMPrDcbl2KwEqDI2XJO
JN7BXqk5JRr2Sfe16vSjFoWnqL9nxRDNa97d9w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org