Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/gh10jw-cVmBxStjCY0UdJFOsWdU.roa
File: gh10jw-cVmBxStjCY0UdJFOsWdU.roa (raw, json)
Hash identifier: q/bvWzcRqvbFg0Y+niuoplLKbEG6YRcud633B24Gh7I=
Subject key identifier: 82:1D:74:8F:0F:9C:56:60:71:4A:D8:C2:63:45:1D:24:53:AC:59:D5
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 0185BE9D9BF80B9C0472253C2498746DC856
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/gh10jw-cVmBxStjCY0UdJFOsWdU.roa
Signing time: Tue 17 Jan 2023 07:24:38 +0000
ROA not before: Tue 17 Jan 2023 07:24:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3352
IP address blocks: 83.60.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:9d:9b:f8:0b:9c:04:72:25:3c:24:98:74:6d:c8:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 17 07:24:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=821d748f0f9c5660714ad8c263451d2453ac59d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a2:72:99:8e:f2:02:e9:d3:a1:51:f8:46:06:
f6:4e:c1:b4:fa:e3:bb:82:d0:74:34:46:45:ad:42:
ad:b8:e8:0c:cc:a2:ec:a0:53:31:b8:c7:83:6d:4a:
cf:39:c8:84:1b:70:9d:79:25:a3:81:56:78:4d:e5:
de:79:ff:8b:41:6f:ba:ce:db:fb:f9:b5:c8:56:b0:
c6:4b:4b:0c:74:6a:d6:cd:d1:a6:b1:3c:dc:8d:d1:
ab:93:b8:2f:d0:a0:f3:7f:68:94:c1:79:0f:f5:55:
5e:73:c7:d1:d1:f3:c5:5f:3d:a8:49:13:12:3e:4c:
37:7a:4d:00:c5:8c:51:81:93:28:8b:d8:35:6c:24:
d4:85:f1:7e:0d:0c:c8:68:c9:55:b7:a6:29:15:03:
f3:aa:57:22:e0:72:fd:c2:81:94:fa:49:44:cc:39:
99:a2:ad:63:e3:26:ae:61:db:4b:09:b5:11:b1:47:
8b:00:38:8f:3d:c2:75:82:5e:ae:3a:14:92:37:90:
c3:37:2d:43:e9:64:a9:b2:9b:47:dd:da:f5:27:cb:
79:c4:ec:65:45:e4:97:ac:a6:82:5a:00:17:c5:50:
e6:24:15:71:44:fc:f5:c3:4d:37:b9:7b:fd:53:a1:
b7:cf:af:19:6e:57:f9:64:04:ab:2b:e3:b4:4b:ba:
a8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1D:74:8F:0F:9C:56:60:71:4A:D8:C2:63:45:1D:24:53:AC:59:D5
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/gh10jw-cVmBxStjCY0UdJFOsWdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.137.0.0/16
79.144.0.0/15
79.147.0.0/16
80.30.0.0/15
81.36.0.0-81.40.255.255
83.34.0.0/15
83.37.0.0/16
83.47.0.0/16
83.57.0.0/16
83.59.0.0-83.60.255.255
83.63.0.0/16
88.8.0.0/14
88.13.0.0-88.16.255.255
88.24.0.0/15
Signature Algorithm: sha256WithRSAEncryption
b7:65:66:ed:0c:1a:92:ee:8c:64:ef:2d:e2:21:78:30:11:f4:
f3:67:42:da:68:af:b7:69:71:aa:26:fb:f6:9c:38:75:18:2e:
d1:3d:a9:eb:f3:f1:59:cf:95:8d:c4:95:1f:46:fe:b5:8b:42:
4a:b9:6e:7f:7f:b2:2b:df:26:4b:0e:15:37:22:c6:c3:ae:96:
76:38:dc:dc:e9:c8:21:a9:3f:af:eb:d0:04:c0:84:9a:89:63:
eb:b4:a4:24:fa:b9:5c:c4:07:8a:d1:19:31:f1:e6:8e:79:c6:
87:7a:df:2e:c5:74:23:8c:e8:74:12:05:72:34:dc:88:bd:f0:
38:cb:6e:51:f9:c2:4e:fe:fc:0c:66:0c:c2:a3:e1:2e:3b:f9:
61:aa:c7:ad:8f:5c:56:82:b9:a0:fc:98:fe:e7:9d:0b:4f:b6:
8c:d0:93:f9:21:b3:5c:91:c6:2e:f9:05:21:10:b7:5c:40:ff:
76:ae:35:96:9f:1d:49:5d:50:50:90:8e:bf:85:2f:14:27:cb:
d2:4c:0c:e5:ed:88:60:b5:e9:53:1e:9b:2f:7c:1c:01:af:40:
fa:2a:3e:ce:32:fe:2d:d8:75:39:7b:11:05:b9:6c:56:15:82:
12:51:70:b9:9b:e7:75:70:7b:c3:a5:36:8a:48:62:19:3a:b2:
ed:82:9e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:42 2023 by rpki-client on console-fra.rpki-client.org