Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/Gb7txoQHcOLL0dVmkq643vXn-4k.roa
File: Gb7txoQHcOLL0dVmkq643vXn-4k.roa (raw, json)
Hash identifier: /Et3HVRWTOHQs/pVWVDaQsbsn9ph/ZENPjXicA2MqfA=
Subject key identifier: 19:BE:ED:C6:84:07:70:E2:CB:D1:D5:66:92:AE:B8:DE:F5:E7:FB:89
Certificate issuer: /CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Certificate serial: 0187098ED5C7437A631ABC2FAE38ECE08FFB
Authority key identifier: 13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/Gb7txoQHcOLL0dVmkq643vXn-4k.roa
Signing time: Wed 22 Mar 2023 13:42:48 +0000
ROA not before: Wed 22 Mar 2023 13:42:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50889
IP address blocks: 185.136.71.0/24 maxlen: 24
185.136.69.0/24 maxlen: 24
185.136.70.0/24 maxlen: 24
77.111.250.0/24 maxlen: 24
77.111.251.0/24 maxlen: 24
77.111.248.0/24 maxlen: 24
77.111.249.0/24 maxlen: 24
80.84.166.0/24 maxlen: 24
80.84.160.0/24 maxlen: 24
80.84.164.0/24 maxlen: 24
80.84.165.0/24 maxlen: 24
80.84.163.0/24 maxlen: 24
80.84.161.0/24 maxlen: 24
80.84.162.0/24 maxlen: 24
80.84.167.0/24 maxlen: 24
80.84.171.0/24 maxlen: 24
80.84.172.0/24 maxlen: 24
80.84.170.0/24 maxlen: 24
80.84.168.0/24 maxlen: 24
80.84.169.0/24 maxlen: 24
80.84.173.0/24 maxlen: 24
80.84.174.0/24 maxlen: 24
80.84.175.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:09:8e:d5:c7:43:7a:63:1a:bc:2f:ae:38:ec:e0:8f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Validity
Not Before: Mar 22 13:42:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19beedc6840770e2cbd1d56692aeb8def5e7fb89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:be:db:e1:9b:a0:62:af:a7:9d:df:be:c2:b6:
2f:ec:7f:88:7c:c3:7d:31:ff:22:85:ff:89:b8:1b:
8f:22:e1:29:ef:08:77:63:c9:ac:6f:44:3e:88:7a:
db:61:05:07:27:3f:be:22:f4:2a:9d:da:9d:04:28:
d4:37:23:f5:f4:a5:7b:76:81:5c:e5:5a:83:77:81:
0a:68:42:fa:44:8b:f0:89:d1:6f:90:65:40:d7:22:
11:0a:e2:26:30:77:2c:dc:b5:6f:c8:f3:a1:54:13:
1c:c7:8b:31:71:6f:63:1c:e1:89:78:8e:c7:3f:30:
35:8d:6f:47:0e:c3:f9:08:24:d8:8f:29:ab:be:0b:
e6:cd:3f:4b:fd:cf:de:d1:6d:03:3f:b1:e5:c2:77:
91:f3:be:f7:6a:9d:fd:4a:5c:fd:3f:1d:02:ac:14:
cd:63:e6:cf:ab:6b:c3:65:f9:96:3d:de:20:94:da:
07:ec:c7:bf:b1:55:ab:67:9c:fa:06:90:e5:1c:b6:
16:e4:94:18:fe:51:6b:e6:49:d7:d0:27:f1:b6:85:
1a:81:dc:28:1a:2b:da:2c:20:91:da:f3:35:96:3c:
ed:bf:45:ef:20:7c:b3:9d:d9:63:41:8e:b4:9d:37:
fc:b7:3c:89:7b:2d:01:54:c0:6d:89:ef:0e:84:ac:
6a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BE:ED:C6:84:07:70:E2:CB:D1:D5:66:92:AE:B8:DE:F5:E7:FB:89
X509v3 Authority Key Identifier:
keyid:13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/Gb7txoQHcOLL0dVmkq643vXn-4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/E6D3FD_6IhE0QtyFie4TUuvj2qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.248.0/22
80.84.160.0/20
185.136.69.0-185.136.71.255
Signature Algorithm: sha256WithRSAEncryption
74:e5:20:1f:24:7b:00:aa:4c:04:3d:44:50:40:ce:3a:d0:7e:
60:5b:69:a3:ce:46:00:3c:40:51:4a:9b:3c:70:59:65:a0:03:
39:eb:51:1e:9e:90:7d:2f:2a:42:00:ef:02:87:b9:8e:f5:50:
19:70:90:58:1f:75:91:87:fb:81:78:ea:92:13:5b:11:a9:fb:
2e:08:96:c4:07:fd:ca:dc:38:10:cf:8f:05:c4:dc:e9:1c:e9:
29:5a:e4:fb:bb:d5:e7:d9:6d:ce:d7:fb:69:b2:6e:d6:e2:a0:
dd:ea:d6:0c:62:93:84:a3:c0:31:fb:8c:0e:8c:ff:12:f4:32:
49:d2:2b:f2:19:db:67:56:59:c0:13:4b:cb:22:f5:42:0b:9f:
b2:d0:c3:9d:b9:7d:08:6e:b7:a8:29:39:a0:62:29:66:64:64:
08:e5:a4:72:1c:f6:14:fe:15:84:89:15:6d:58:6c:1b:e2:8a:
28:bb:31:a5:a6:c1:f6:26:9a:b3:15:c9:8d:fa:f7:d5:d3:35:
72:ab:8c:15:3d:eb:c3:d0:e5:f4:34:a8:80:74:0b:5f:aa:4e:
9a:fb:80:fc:43:e0:1d:88:5c:0b:3a:78:6a:d6:6b:d5:49:ff:
c3:08:16:50:23:c3:93:cd:42:72:74:2f:59:ab:cc:5e:c6:5c:
44:e1:76:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:40:11 2024 by rpki-client on console-fra.rpki-client.org