Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/gia_dk62rnn_vRneAF7uz3uEU6o.roa
File: gia_dk62rnn_vRneAF7uz3uEU6o.roa (raw, json)
Hash identifier: UO1efNAS4fPNPTe5hh9kPHd9x/2CTrVu/U3cJ9GZPz8=
Subject key identifier: 82:26:BF:76:4E:B6:AE:79:FF:BD:19:DE:00:5E:EE:CF:7B:84:53:AA
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 018C6E13E394589DFDE7972ED375B221ACD1
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/gia_dk62rnn_vRneAF7uz3uEU6o.roa
Signing time: Fri 15 Dec 2023 15:24:06 +0000
ROA not before: Fri 15 Dec 2023 15:24:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8648
IP address blocks: 193.22.255.0/24 maxlen: 24
185.80.92.0/22 maxlen: 24
82.141.0.0/18 maxlen: 24
185.137.168.0/22 maxlen: 24
212.110.96.0/19 maxlen: 24
128.127.64.0/21 maxlen: 24
195.225.133.0/24 maxlen: 24
45.87.136.0/22 maxlen: 24
95.130.248.0/21 maxlen: 24
94.154.148.0/22 maxlen: 24
93.90.176.0/20 maxlen: 24
195.42.120.0/23 maxlen: 24
91.203.212.0/22 maxlen: 24
109.237.128.0/20 maxlen: 24
195.62.96.0/19 maxlen: 24
195.82.152.0/23 maxlen: 24
84.254.120.0/24 maxlen: 24
193.25.114.0/23 maxlen: 24
195.110.42.0/23 maxlen: 24
185.211.60.0/22 maxlen: 24
185.207.228.0/22 maxlen: 24
195.5.120.0/23 maxlen: 24
185.32.116.0/22 maxlen: 24
89.22.96.0/19 maxlen: 24
185.143.164.0/22 maxlen: 24
194.116.186.0/23 maxlen: 24
5.11.48.0/21 maxlen: 24
91.206.142.0/23 maxlen: 24
91.220.49.0/24 maxlen: 24
194.145.226.0/24 maxlen: 24
213.146.96.0/19 maxlen: 24
193.38.156.0/22 maxlen: 24
109.75.176.0/20 maxlen: 24
93.190.64.0/21 maxlen: 24
91.203.108.0/22 maxlen: 24
185.65.88.0/22 maxlen: 24
178.250.168.0/21 maxlen: 24
37.218.248.0/21 maxlen: 24
185.117.248.0/22 maxlen: 24
141.101.32.0/21 maxlen: 24
185.84.80.0/23 maxlen: 24
185.84.80.0/22 maxlen: 24
185.84.82.0/24 maxlen: 24
178.20.96.0/21 maxlen: 24
188.64.44.0/23 maxlen: 24
188.64.40.0/21 maxlen: 24
188.64.40.0/22 maxlen: 24
195.34.82.0/23 maxlen: 24
192.162.84.0/22 maxlen: 24
91.226.88.0/22 maxlen: 24
31.47.240.0/20 maxlen: 24
46.243.88.0/21 maxlen: 24
81.88.16.0/20 maxlen: 24
185.51.8.0/22 maxlen: 24
185.158.212.0/22 maxlen: 24
81.88.27.0/24 maxlen: 24
185.3.232.0/22 maxlen: 24
81.88.32.0/20 maxlen: 24
5.44.96.0/20 maxlen: 24
2a0e:fe80::/29 maxlen: 48
2a04:4cc0::/29 maxlen: 48
2a01:aee0::/32 maxlen: 48
2a02:2b80::/32 maxlen: 48
2a02:a60::/32 maxlen: 48
2a0b:6340::/29 maxlen: 48
2a04:ff40::/29 maxlen: 48
2a00:5300::/32 maxlen: 48
2a00:12c0::/29 maxlen: 48
2a02:248::/32 maxlen: 48
2a0d:6940::/29 maxlen: 48
2a00:fa40::/32 maxlen: 48
2a0b:2a40::/29 maxlen: 48
2001:880::/32 maxlen: 32
2a01:64c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6e:13:e3:94:58:9d:fd:e7:97:2e:d3:75:b2:21:ac:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Dec 15 15:24:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8226bf764eb6ae79ffbd19de005eeecf7b8453aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c3:85:1d:5e:9d:71:c5:0c:1e:42:55:2e:51:
98:7b:89:31:d5:22:e6:23:78:54:f1:41:e1:a7:a9:
7d:ed:89:15:42:db:8f:88:d2:70:d9:af:9e:d6:f5:
86:8d:d5:cc:1c:91:40:d0:1d:d5:a1:43:39:2a:57:
f3:c2:c2:a1:d1:2d:1e:5a:6c:ee:68:4a:23:14:53:
fd:66:c6:c9:e6:5b:3a:00:ae:e5:e3:a7:dd:14:e1:
0b:0d:c8:7f:b9:fd:55:ef:49:fd:46:61:5c:9e:cb:
95:2f:02:bd:57:7a:1b:ea:80:ce:55:f8:19:a3:6e:
7d:ad:b9:33:3b:23:c1:03:4e:9f:80:96:a3:5e:8a:
53:5f:74:67:1d:df:1e:fe:e7:66:e4:58:04:08:31:
b9:56:40:9c:52:11:c1:96:bb:f0:42:f4:46:8f:7f:
4b:04:0c:76:35:3a:2c:db:8d:37:66:71:7f:55:00:
a8:91:d3:84:f5:8a:37:7e:a7:97:6e:de:84:fb:0e:
12:84:dd:f0:6a:b8:0a:97:21:77:a6:59:38:86:ba:
ff:55:3d:dc:b2:5b:65:54:03:7b:e4:2e:e0:46:93:
e0:f9:c2:70:97:b4:bd:1a:33:56:58:22:f1:01:ef:
f6:77:07:f9:fd:f1:c0:b8:33:ad:e5:a7:4a:a9:f2:
b1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:26:BF:76:4E:B6:AE:79:FF:BD:19:DE:00:5E:EE:CF:7B:84:53:AA
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/gia_dk62rnn_vRneAF7uz3uEU6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.48.0/21
5.44.96.0/20
31.47.240.0/20
37.218.248.0/21
45.87.136.0/22
46.243.88.0/21
81.88.16.0-81.88.47.255
82.141.0.0/18
84.254.120.0/24
89.22.96.0/19
91.203.108.0/22
91.203.212.0/22
91.206.142.0/23
91.220.49.0/24
91.226.88.0/22
93.90.176.0/20
93.190.64.0/21
94.154.148.0/22
95.130.248.0/21
109.75.176.0/20
109.237.128.0/20
128.127.64.0/21
141.101.32.0/21
178.20.96.0/21
178.250.168.0/21
185.3.232.0/22
185.32.116.0/22
185.51.8.0/22
185.65.88.0/22
185.80.92.0/22
185.84.80.0/22
185.117.248.0/22
185.137.168.0/22
185.143.164.0/22
185.158.212.0/22
185.207.228.0/22
185.211.60.0/22
188.64.40.0/21
192.162.84.0/22
193.22.255.0/24
193.25.114.0/23
193.38.156.0/22
194.116.186.0/23
194.145.226.0/24
195.5.120.0/23
195.34.82.0/23
195.42.120.0/23
195.62.96.0/19
195.82.152.0/23
195.110.42.0/23
195.225.133.0/24
212.110.96.0/19
213.146.96.0/19
IPv6:
2001:880::/32
2a00:12c0::/29
2a00:5300::/32
2a00:fa40::/32
2a01:64c0::/32
2a01:aee0::/32
2a02:248::/32
2a02:a60::/32
2a02:2b80::/32
2a04:4cc0::/29
2a04:ff40::/29
2a0b:2a40::/29
2a0b:6340::/29
2a0d:6940::/29
2a0e:fe80::/29
Signature Algorithm: sha256WithRSAEncryption
5f:df:1d:0d:0b:92:be:46:f7:b7:2c:90:19:bd:80:e5:b6:aa:
0b:c6:f6:87:8c:f9:1c:4c:df:1f:1d:06:db:e0:13:71:5e:44:
34:39:aa:7b:a3:6c:65:da:0d:55:58:a6:cf:58:1a:8c:66:7b:
0b:c4:6f:d0:07:6d:44:c9:b3:fb:5d:f3:18:72:df:9d:77:8b:
b0:a0:ca:f9:fa:60:d1:01:17:94:bd:da:96:ef:db:a3:a3:7e:
ea:5b:83:d9:c5:34:8d:12:cd:8a:e5:2d:2c:e4:dc:8e:36:69:
35:fc:07:9a:10:a9:eb:a5:34:9d:33:a3:9e:86:37:db:53:f7:
90:12:aa:f0:4a:cd:90:be:38:a7:67:cd:1d:a6:4e:a7:82:a4:
f3:aa:98:e0:8d:7d:fa:69:70:59:6e:17:9f:5f:16:02:ea:64:
d5:22:73:ee:09:34:8b:a1:0e:72:b3:dc:ee:ac:ff:62:22:84:
45:7a:62:bf:4d:39:bd:c5:d9:0c:07:99:7d:6a:54:f3:8f:f5:
e6:86:63:ec:84:47:41:45:9d:ba:8c:fe:55:4e:a2:9d:30:e6:
51:e8:db:8f:ef:87:06:25:3c:4a:9f:c2:a9:0f:cf:60:22:7a:
da:60:fd:33:d1:ef:37:2d:22:e5:7a:7c:fa:2e:ff:7f:0f:d3:
78:fb:4e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org