Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/gmr4IkKnZAylomBMVsnNtkuQ7AM.roa
File: gmr4IkKnZAylomBMVsnNtkuQ7AM.roa (raw, json)
Hash identifier: GrzV9TnRAmumloz9d58RnZpYljES1V5+YOFGsGW+0pc=
Subject key identifier: 82:6A:F8:22:42:A7:64:0C:A5:A2:60:4C:56:C9:CD:B6:4B:90:EC:03
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185A69475086080C43C1B019C992ED9EF69
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/gmr4IkKnZAylomBMVsnNtkuQ7AM.roa
Signing time: Thu 12 Jan 2023 15:23:45 +0000
ROA not before: Thu 12 Jan 2023 15:23:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204997
IP address blocks: 185.174.137.0/24 maxlen: 24
45.144.64.0/24 maxlen: 24
45.144.66.0/24 maxlen: 24
45.144.65.0/24 maxlen: 24
45.144.67.0/24 maxlen: 24
185.255.132.0/24 maxlen: 24
185.255.134.0/24 maxlen: 24
185.255.133.0/24 maxlen: 24
185.255.135.0/24 maxlen: 24
185.252.146.0/24 maxlen: 24
185.252.147.0/24 maxlen: 24
185.195.24.0/24 maxlen: 24
185.195.27.0/24 maxlen: 24
185.195.25.0/24 maxlen: 24
185.195.26.0/24 maxlen: 24
185.204.0.0/24 maxlen: 24
185.204.2.0/24 maxlen: 24
185.204.3.0/24 maxlen: 24
139.28.223.0/24 maxlen: 24
139.28.222.0/24 maxlen: 24
91.217.81.0/24 maxlen: 24
185.180.231.0/24 maxlen: 24
185.180.230.0/24 maxlen: 24
195.66.114.0/24 maxlen: 24
185.244.172.0/24 maxlen: 24
185.244.173.0/24 maxlen: 24
185.139.69.0/24 maxlen: 24
185.139.71.0/24 maxlen: 24
185.139.68.0/24 maxlen: 24
185.139.70.0/24 maxlen: 24
193.109.78.0/24 maxlen: 24
193.109.79.0/24 maxlen: 24
185.212.148.0/24 maxlen: 24
185.188.183.0/24 maxlen: 24
185.188.182.0/24 maxlen: 24
185.17.3.0/24 maxlen: 24
147.78.64.0/24 maxlen: 24
147.78.66.0/24 maxlen: 24
147.78.65.0/24 maxlen: 24
147.78.67.0/24 maxlen: 24
46.17.104.0/24 maxlen: 24
185.104.249.0/24 maxlen: 24
2a04:5200:fff2::/48 maxlen: 48
2a04:5200:ff00::/48 maxlen: 48
2a04:5200:fff9::/48 maxlen: 48
2a04:5200:fff3::/48 maxlen: 48
2a04:5200:fff6::/48 maxlen: 48
2a04:5200:fff7::/48 maxlen: 48
2a04:5200:fff4::/48 maxlen: 48
2a04:5200:fff8::/48 maxlen: 48
2a04:5200:fff1::/48 maxlen: 48
2a04:5200:fff5::/48 maxlen: 48
2a04:5200:ff10::/48 maxlen: 48
2a04:5200:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Apr 2023 16:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:94:75:08:60:80:c4:3c:1b:01:9c:99:2e:d9:ef:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 12 15:23:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=826af82242a7640ca5a2604c56c9cdb64b90ec03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:00:b9:d3:51:3e:dc:04:11:5f:21:5e:e7:a1:
d3:7f:2b:63:92:68:b7:4d:25:c2:ae:94:ad:83:63:
cc:b2:d1:ee:2e:6a:3f:91:a6:32:7e:5d:d3:b5:5d:
0c:e0:33:8c:41:2e:45:10:93:51:c9:be:b8:15:ac:
8a:5e:da:57:40:2e:a8:2e:4c:7e:bf:04:4a:5a:6c:
b9:8f:1c:ba:ce:c3:5b:dd:7d:d3:ff:d6:21:ac:c0:
d2:56:4d:32:51:2c:c2:ae:4c:fe:01:46:76:97:d4:
26:f6:eb:b1:e5:95:3d:42:31:b9:78:c8:d6:27:1d:
d7:0b:16:4d:d4:e2:d3:01:1c:44:e0:fc:cb:c6:81:
76:14:85:7c:13:60:45:2a:23:5f:a6:e3:12:02:a7:
3f:6b:46:cb:26:37:ba:ea:f6:85:1c:5f:dd:77:0f:
51:33:a1:88:b9:00:b2:6f:11:54:cc:42:2b:8d:63:
dd:65:41:db:ff:dd:1f:22:17:d6:f0:14:71:e8:f0:
34:31:a4:fe:d3:a8:74:18:f3:a5:90:75:bf:56:a8:
af:dd:35:87:55:d2:a9:f2:27:9f:cc:96:55:33:d6:
4d:3a:f9:06:c5:3c:5f:1a:c1:63:52:82:42:6a:e7:
e9:da:2c:c9:2b:77:91:74:7f:f3:e8:fb:37:0a:b1:
1c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:6A:F8:22:42:A7:64:0C:A5:A2:60:4C:56:C9:CD:B6:4B:90:EC:03
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/gmr4IkKnZAylomBMVsnNtkuQ7AM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.64.0/22
46.17.104.0/24
91.217.81.0/24
139.28.222.0/23
147.78.64.0/22
185.17.3.0/24
185.104.249.0/24
185.139.68.0/22
185.174.137.0/24
185.180.230.0/23
185.188.182.0/23
185.195.24.0/22
185.204.0.0/24
185.204.2.0/23
185.212.148.0/24
185.244.172.0/23
185.252.146.0/23
185.255.132.0/22
193.109.78.0/23
195.66.114.0/24
IPv6:
2a04:5200:ff00::/48
2a04:5200:ff10::/48
2a04:5200:fff1::-2a04:5200:fff9:ffff:ffff:ffff:ffff:ffff
2a04:5200:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
57:4b:8e:97:cd:55:40:84:46:12:8d:4b:ce:b5:87:07:5b:d3:
43:ad:e9:d9:53:d8:27:57:ba:3b:d2:3f:d2:25:d6:2f:84:8f:
96:c9:48:5b:54:31:18:f5:ec:af:4d:e7:19:ea:d2:57:c7:a9:
07:73:f6:17:9b:78:5d:62:f2:96:a1:4a:29:d7:b8:cb:7c:10:
d0:76:d6:84:5b:e5:c7:ac:ad:1a:49:59:3f:f7:dd:ce:d6:03:
33:7e:33:b7:1d:0b:15:8e:0f:96:93:9b:f4:77:29:b3:bf:cf:
2e:49:b3:bc:f4:c1:fa:01:0e:e6:ab:80:e4:eb:e6:b2:96:9d:
9d:85:25:e8:ae:91:1f:7d:bc:1e:c9:15:8d:e7:df:55:02:1f:
98:57:19:86:97:81:52:aa:f5:bb:bc:3b:6b:dc:59:d3:3a:89:
8e:9b:f2:0d:19:e9:ce:b0:93:ea:2a:60:01:fd:ac:28:96:f5:
4f:0e:74:38:9a:54:9c:56:df:9c:5e:2f:72:58:8f:15:ab:d0:
63:25:be:85:da:7b:75:c0:10:a8:89:43:82:40:ab:0e:35:09:
ca:88:05:2e:80:61:e7:b8:1f:cd:e0:77:2d:fa:05:9f:b1:66:
b1:4c:27:34:36:85:3e:c9:02:8b:0c:64:8f:6c:70:91:82:31:
2a:a8:04:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org