Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/GTD13Nyo32ZEQ_kUxgk9aCTmz-Q.roa
File: GTD13Nyo32ZEQ_kUxgk9aCTmz-Q.roa (raw, json)
Hash identifier: ALnd0nqHEdnfGOOZtZXBduQvfcCWy3FH/SWe5zG3JFU=
Subject key identifier: 19:30:F5:DC:DC:A8:DF:66:44:43:F9:14:C6:09:3D:68:24:E6:CF:E4
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018986FE18FB42D5623DE50091D291DAE393
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/GTD13Nyo32ZEQ_kUxgk9aCTmz-Q.roa
Signing time: Mon 24 Jul 2023 08:22:26 +0000
ROA not before: Mon 24 Jul 2023 08:22:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 193.39.216.0/22 maxlen: 24
45.146.224.0/22 maxlen: 24
185.131.188.0/22 maxlen: 24
185.248.208.0/22 maxlen: 24
5.182.72.0/22 maxlen: 24
185.151.176.0/22 maxlen: 24
185.230.0.0/22 maxlen: 24
141.98.36.0/22 maxlen: 24
185.198.108.0/22 maxlen: 24
141.98.52.0/22 maxlen: 24
185.114.64.0/22 maxlen: 24
45.136.32.0/22 maxlen: 24
185.123.136.0/22 maxlen: 24
185.126.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Sep 2023 05:13:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:86:fe:18:fb:42:d5:62:3d:e5:00:91:d2:91:da:e3:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jul 24 08:22:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1930f5dcdca8df664443f914c6093d6824e6cfe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fc:6d:b3:5d:67:a0:2b:a8:e4:49:ec:ee:22:
8c:da:23:30:59:35:58:be:6a:ed:aa:76:0c:f4:ae:
15:1c:7c:6b:cd:f5:87:57:be:f1:d2:15:b4:f5:8a:
16:1d:18:7f:f4:dd:1f:a8:62:93:52:4f:ee:b3:5a:
b0:9e:fc:96:46:6f:44:45:37:e9:fb:be:be:f1:91:
08:09:7d:ef:e3:c5:a4:17:ec:58:dd:c5:6d:89:14:
45:ee:97:83:95:3d:b8:3d:6b:d8:d3:b0:8c:14:aa:
a6:93:57:38:69:02:fe:b5:a7:7b:da:f0:b5:8b:e1:
54:5c:7a:d3:e8:67:ce:67:32:18:b3:e1:d3:08:8d:
4c:b6:bc:f2:75:23:78:b8:03:53:42:f7:a3:97:65:
6f:f7:51:f4:89:39:c1:5a:d7:92:de:6e:61:9b:5a:
7d:65:62:2e:aa:b7:a6:42:ff:99:82:7a:7f:9b:01:
c9:4d:98:f8:78:4c:f3:d8:81:a8:0e:fc:58:bb:41:
1c:85:6f:d6:02:08:35:95:13:9f:a4:25:06:c3:15:
51:fd:b9:cb:2b:e0:57:44:c1:10:5b:b5:01:c7:17:
e6:6a:9f:73:8b:82:3d:96:08:0b:f2:48:90:03:c1:
d3:7e:be:29:97:e8:93:4d:79:ad:be:d9:a3:b4:80:
a4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:30:F5:DC:DC:A8:DF:66:44:43:F9:14:C6:09:3D:68:24:E6:CF:E4
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/GTD13Nyo32ZEQ_kUxgk9aCTmz-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.72.0/22
45.136.32.0/22
45.146.224.0/22
141.98.36.0/22
141.98.52.0/22
185.114.64.0/22
185.123.136.0/22
185.126.232.0/22
185.131.188.0/22
185.151.176.0/22
185.198.108.0/22
185.230.0.0/22
185.248.208.0/22
193.39.216.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:f7:a4:27:65:f7:d6:61:5a:0b:e9:ce:8e:86:f9:de:4a:98:
ea:f1:23:42:0b:0e:07:38:60:4d:ee:39:27:b9:8a:32:6d:08:
60:a8:3c:b0:e1:71:a9:43:55:74:db:f1:f9:93:41:31:c2:6e:
a7:53:75:50:88:24:45:5f:52:f9:3a:57:15:77:f9:68:c3:77:
d4:d1:d8:01:68:6b:f3:2e:ef:57:e5:a0:07:1d:5c:3e:7e:19:
a0:fd:36:0c:0b:36:e1:81:aa:e9:2a:ed:cb:53:82:ac:ce:cb:
a5:6e:58:18:73:28:67:3f:38:2c:5e:06:8c:39:53:9a:50:a4:
83:11:e9:e9:f3:fc:ca:0b:91:de:41:66:7e:f1:35:ac:66:ec:
c6:8e:8e:a0:4a:25:cf:9e:55:2a:7a:25:b5:f1:ca:1d:b9:06:
03:f4:32:9e:01:87:c9:bd:93:5c:d7:4c:99:5b:6a:0b:3f:66:
bb:9a:f7:c2:48:41:0b:97:a5:40:69:8a:d1:28:bb:b1:7f:6b:
79:2d:64:91:4f:ba:9f:99:81:59:b2:f1:25:22:b2:29:e4:36:
f7:fb:35:cd:2f:91:10:c2:fc:ea:d2:c2:00:06:40:99:22:c6:
0b:1d:28:23:4e:72:39:d5:14:04:af:ba:9e:ef:2a:8d:77:e4:
99:3a:03:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org