Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/GmafaugibLTFYWAsa4Wq47m2A9E.roa
File: GmafaugibLTFYWAsa4Wq47m2A9E.roa (raw, json)
Hash identifier: H5+d/q5RSHlWEyGVJDY5pTTrrOdAhhc7MGsGK3AK4hg=
Subject key identifier: 1A:66:9F:6A:E8:22:6C:B4:C5:61:60:2C:6B:85:AA:E3:B9:B6:03:D1
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 0192FCD181DEE6FE799CA9D44907895027F7
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/GmafaugibLTFYWAsa4Wq47m2A9E.roa
Signing time: Tue 05 Nov 2024 14:54:01 +0000
ROA not before: Tue 05 Nov 2024 14:54:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13037
IP address blocks: 51.148.0.0/16 maxlen: 16
51.155.0.0/16 maxlen: 16
62.3.64.0/18 maxlen: 18
77.104.128.0/18 maxlen: 18
82.68.0.0/15 maxlen: 15
82.71.0.0/16 maxlen: 16
82.71.240.0/20 maxlen: 20
88.97.0.0/18 maxlen: 18
88.97.64.0/19 maxlen: 19
88.97.96.0/20 maxlen: 20
88.97.176.0/20 maxlen: 20
88.98.0.0/20 maxlen: 20
88.98.16.0/23 maxlen: 23
88.98.18.0/24 maxlen: 24
88.98.21.0/24 maxlen: 24
88.98.22.0/23 maxlen: 23
88.98.24.0/21 maxlen: 21
88.98.32.0/19 maxlen: 19
88.98.64.0/19 maxlen: 19
88.98.128.0/19 maxlen: 19
88.98.160.0/21 maxlen: 21
88.98.170.0/23 maxlen: 23
88.98.172.0/22 maxlen: 22
88.98.176.0/20 maxlen: 20
146.66.64.0/18 maxlen: 18
212.23.0.0/19 maxlen: 19
212.23.0.0/23 maxlen: 23
217.155.0.0/16 maxlen: 16
2a02:8010::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:50:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fc:d1:81:de:e6:fe:79:9c:a9:d4:49:07:89:50:27:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Nov 5 14:54:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a669f6ae8226cb4c561602c6b85aae3b9b603d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:44:6d:1b:2f:74:ea:53:8d:0d:72:70:e6:f8:
7f:b0:ea:59:3f:06:e4:db:fc:56:56:c2:1a:a8:56:
68:eb:c8:4d:71:e9:f4:b3:7b:70:04:52:73:6b:ee:
7d:95:66:27:b3:8d:b8:3b:7e:cb:9b:e1:14:93:6b:
a2:5c:01:20:f8:26:ce:9c:5d:72:7e:5c:b0:19:d1:
e4:2f:af:c2:89:6c:4e:ea:ed:65:e4:b1:af:2d:e1:
c3:42:3f:5e:f5:81:3e:c2:33:17:0a:91:74:9d:be:
03:d3:9b:de:9a:a5:bc:ae:50:25:ad:19:1a:5e:4d:
0e:d5:8e:5c:d0:cb:e4:5a:03:9f:4c:69:20:8d:43:
d1:68:b0:6d:91:af:4a:ce:8e:1a:3e:63:e3:95:87:
f2:38:5c:36:c9:15:90:5b:e7:bb:42:83:cd:05:8c:
96:10:22:08:47:65:23:17:5f:d2:6e:ad:db:52:d3:
54:92:30:71:89:dc:7d:35:20:85:97:d6:c5:f8:b8:
95:08:d3:5d:e5:ea:00:90:10:47:15:0e:ce:19:5e:
4a:fb:39:5c:4d:15:fb:b7:e9:d2:61:5f:c2:f2:d9:
5b:21:8c:d7:ef:b5:aa:b7:eb:32:9b:5a:09:3e:0a:
51:79:01:06:dd:01:5c:60:66:ab:85:db:db:15:ff:
bd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:66:9F:6A:E8:22:6C:B4:C5:61:60:2C:6B:85:AA:E3:B9:B6:03:D1
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/GmafaugibLTFYWAsa4Wq47m2A9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.148.0.0/16
51.155.0.0/16
62.3.64.0/18
77.104.128.0/18
82.68.0.0/15
82.71.0.0/16
88.97.0.0-88.97.111.255
88.97.176.0/20
88.98.0.0-88.98.18.255
88.98.21.0-88.98.95.255
88.98.128.0-88.98.167.255
88.98.170.0-88.98.191.255
146.66.64.0/18
212.23.0.0/19
217.155.0.0/16
IPv6:
2a02:8010::/29
Signature Algorithm: sha256WithRSAEncryption
8a:71:86:c8:54:23:09:52:69:98:5f:ae:ca:aa:47:a7:d4:86:
87:d5:e9:12:61:db:f9:7c:c4:d7:e0:5c:fd:a8:e8:ae:b9:a6:
bc:aa:04:20:c3:8c:cf:e9:fa:ce:2d:ff:ad:c2:98:c8:a9:35:
78:f8:b8:b4:03:37:14:fa:75:ff:25:95:f8:6c:6e:f2:b7:49:
e6:8c:3b:ea:60:e4:7d:76:85:42:a4:0a:1a:2c:c5:b7:ca:56:
da:31:fe:a3:73:3e:35:fd:e8:4f:e1:60:9f:30:7b:3b:cc:27:
66:6b:dc:dc:b5:57:ba:fc:6f:08:85:68:74:70:fd:c9:6a:7c:
14:5d:f3:54:42:66:e8:24:6b:56:44:76:f0:02:e4:60:b7:52:
72:36:22:07:4a:ba:d7:15:ee:3a:aa:57:67:fb:4c:29:f9:b0:
e4:18:9f:e1:07:9a:90:a8:85:dd:52:12:72:1c:e2:96:3e:f5:
a4:31:4c:80:0b:7d:5a:8c:1d:50:d3:bd:7c:4e:3e:e2:ba:b9:
05:36:d5:f0:60:42:a1:78:71:d4:fc:17:72:b9:43:90:04:a2:
4d:7d:8b:e0:15:93:0c:b2:78:da:94:70:83:89:1f:08:a6:fd:
69:20:da:fb:b5:f8:65:ff:52:c5:09:fc:83:ba:3d:fa:51:fd:
1e:bb:fb:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:01:10 2025 by rpki-client