Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/Gh-n7WcxeuFUASRCsGDxs8zyAb0.roa
File: Gh-n7WcxeuFUASRCsGDxs8zyAb0.roa (raw, json)
Hash identifier: mT2pBSXfnN3g7KqU42JHLbp/18gDcZv9gVelQBQ3T6Y=
Subject key identifier: 1A:1F:A7:ED:67:31:7A:E1:54:01:24:42:B0:60:F1:B3:CC:F2:01:BD
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0192E2ED1674883E7D802EA376DEE7810CDF
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/Gh-n7WcxeuFUASRCsGDxs8zyAb0.roa
Signing time: Thu 31 Oct 2024 14:14:01 +0000
ROA not before: Thu 31 Oct 2024 14:14:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 5.182.186.0/24 maxlen: 24
5.182.187.0/24 maxlen: 24
5.182.193.0/24 maxlen: 24
5.182.194.0/24 maxlen: 24
5.182.195.0/24 maxlen: 24
5.182.198.0/24 maxlen: 24
31.132.54.0/23 maxlen: 23
63.246.129.0/24 maxlen: 24
63.246.130.0/24 maxlen: 24
63.246.131.0/24 maxlen: 24
63.246.132.0/24 maxlen: 24
63.246.133.0/24 maxlen: 24
63.246.137.0/24 maxlen: 24
63.246.144.0/24 maxlen: 24
63.246.148.0/24 maxlen: 24
63.246.150.0/24 maxlen: 24
63.246.151.0/24 maxlen: 24
63.246.152.0/24 maxlen: 24
63.246.158.0/24 maxlen: 24
63.246.159.0/24 maxlen: 24
78.31.204.0/24 maxlen: 24
78.31.206.0/24 maxlen: 24
94.154.170.0/24 maxlen: 24
103.216.197.0/24 maxlen: 24
149.126.13.0/24 maxlen: 24
162.218.88.0/24 maxlen: 24
162.218.89.0/24 maxlen: 24
185.52.137.0/24 maxlen: 24
185.201.40.0/24 maxlen: 24
185.201.41.0/24 maxlen: 24
185.201.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 06:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e2:ed:16:74:88:3e:7d:80:2e:a3:76:de:e7:81:0c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Oct 31 14:14:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a1fa7ed67317ae154012442b060f1b3ccf201bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:31:5e:ec:ad:30:6b:4d:71:ad:a2:13:38:7d:
fc:cb:e2:02:42:db:6f:dd:6a:94:e2:12:d6:70:4f:
2f:f2:35:e5:0e:1d:72:22:5c:a6:ab:da:c9:23:c1:
1d:e2:60:d2:22:75:4c:4e:e1:a7:87:89:6b:ca:fa:
77:ae:90:50:3e:b8:5c:5f:17:66:2e:d9:dc:28:d4:
9b:35:09:b5:43:90:f6:59:ef:fb:d2:c4:07:ff:5a:
27:a2:1c:fd:67:15:83:fa:d1:7f:73:ec:56:45:02:
fa:66:42:d8:69:e3:67:7c:39:c3:7c:79:c4:f7:85:
3f:80:da:34:da:c5:11:15:ac:a7:bc:f3:75:40:da:
fb:2f:44:89:1d:84:f3:01:14:a8:ba:f4:55:b6:e3:
c3:7b:17:73:0d:09:b0:4d:d4:72:f2:18:c9:1b:19:
24:c3:fa:2b:56:08:a2:71:7c:39:46:6d:fb:83:f6:
9d:2a:d8:7f:2a:de:c7:1e:8c:e8:9e:b3:cc:0e:4c:
47:20:73:f0:8f:77:01:c4:9b:cd:db:bf:cf:f9:59:
30:54:c8:a4:97:91:ed:6d:16:09:af:f8:e8:85:a0:
6c:7d:13:33:a9:a4:19:48:45:ee:b8:4e:53:72:db:
36:3d:73:3d:c1:17:41:7a:af:37:77:b8:fd:05:6f:
cf:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:1F:A7:ED:67:31:7A:E1:54:01:24:42:B0:60:F1:B3:CC:F2:01:BD
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/Gh-n7WcxeuFUASRCsGDxs8zyAb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.186.0/23
5.182.193.0-5.182.195.255
5.182.198.0/24
31.132.54.0/23
63.246.129.0-63.246.133.255
63.246.137.0/24
63.246.144.0/24
63.246.148.0/24
63.246.150.0-63.246.152.255
63.246.158.0/23
78.31.204.0/24
78.31.206.0/24
94.154.170.0/24
103.216.197.0/24
149.126.13.0/24
162.218.88.0/23
185.52.137.0/24
185.201.40.0/23
185.201.43.0/24
Signature Algorithm: sha256WithRSAEncryption
16:ef:1a:82:fc:da:34:2e:10:ab:7d:00:91:94:bb:8a:86:1a:
53:64:ff:76:9a:43:28:a5:1e:dc:34:12:56:98:a4:24:6f:38:
58:e0:89:df:bb:c7:94:32:5f:4e:00:a9:21:58:8d:0a:d7:b1:
c0:5f:10:b3:36:f7:ba:41:8f:4d:7a:c5:cf:76:b6:fa:3f:fa:
43:5a:d3:a6:ae:f2:2a:7a:69:76:a1:91:49:a1:b7:67:81:26:
3a:51:85:c2:9b:11:64:cd:d0:b9:88:7e:7a:51:a4:0f:ed:17:
27:9c:07:e2:cb:06:66:17:79:66:da:76:90:a6:50:94:ca:07:
3f:40:4d:f2:d1:e6:0b:4f:bc:66:60:37:49:d7:02:34:ee:f3:
70:11:5b:c3:af:f6:f1:eb:f6:23:ac:8a:c8:23:97:96:3a:f0:
54:09:b8:31:de:b5:3f:05:3d:0e:fc:98:71:b3:6d:54:b5:1c:
6d:a6:4e:64:c4:8d:20:ac:a2:a0:6b:c9:43:c0:e5:b6:95:f0:
92:02:ea:8f:d4:db:07:7e:e6:14:6a:6f:8c:29:e9:72:1b:9d:
02:66:65:cb:90:6e:2c:ed:bf:f7:30:ab:04:35:c9:2c:a3:ba:
e9:22:ec:2f:60:f3:93:7e:86:b6:38:e3:db:c4:64:80:65:fb:
f2:8b:64:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 07:54:25 2024 by rpki-client on console-fra.rpki-client.org