Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/4dI0PdVEJp1WZG3qEe73q-RiuiQ.roa
File: 4dI0PdVEJp1WZG3qEe73q-RiuiQ.roa (raw, json)
Hash identifier: u8uxVE3P07cLJ1u6Kqr5HgwQoEo1Ne35sD6BU8jx1qE=
Subject key identifier: E1:D2:34:3D:D5:44:26:9D:56:64:6D:EA:11:EE:F7:AB:E4:62:BA:24
Certificate issuer: /CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Certificate serial: 01856DE64BF6EBA0B4CA51B3B2477F29E983
Authority key identifier: 1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/4dI0PdVEJp1WZG3qEe73q-RiuiQ.roa
Signing time: Sun 01 Jan 2023 15:14:47 +0000
ROA not before: Sun 01 Jan 2023 15:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41176
IP address blocks: 188.117.64.0/18 maxlen: 18
188.117.76.0/24 maxlen: 24
188.117.76.0/22 maxlen: 22
188.117.77.0/24 maxlen: 24
188.117.78.0/24 maxlen: 24
188.117.72.0/22 maxlen: 22
188.117.84.0/22 maxlen: 22
188.117.84.0/24 maxlen: 24
188.117.85.0/24 maxlen: 24
188.117.81.0/24 maxlen: 24
188.117.86.0/24 maxlen: 24
188.117.87.0/24 maxlen: 24
188.117.93.0/24 maxlen: 24
188.117.96.0/21 maxlen: 21
188.117.104.0/24 maxlen: 24
188.117.100.0/23 maxlen: 23
188.117.107.0/24 maxlen: 24
188.117.109.0/24 maxlen: 24
188.117.124.0/24 maxlen: 24
212.76.64.0/24 maxlen: 24
212.76.64.0/19 maxlen: 19
212.76.70.0/24 maxlen: 24
212.76.69.0/24 maxlen: 24
212.76.68.0/24 maxlen: 24
212.76.73.0/24 maxlen: 24
212.76.83.0/24 maxlen: 24
212.76.88.0/24 maxlen: 24
212.76.95.0/24 maxlen: 24
89.108.0.0/18 maxlen: 18
89.108.29.0/24 maxlen: 24
89.108.28.0/24 maxlen: 24
89.108.30.0/24 maxlen: 24
89.108.26.0/24 maxlen: 24
89.108.26.0/23 maxlen: 23
89.108.27.0/24 maxlen: 24
213.236.32.0/19 maxlen: 19
213.236.35.0/24 maxlen: 24
213.236.38.0/24 maxlen: 24
213.236.37.0/24 maxlen: 24
185.20.152.0/24 maxlen: 24
185.20.152.0/22 maxlen: 22
213.236.41.0/24 maxlen: 24
213.236.48.0/24 maxlen: 24
213.236.56.0/22 maxlen: 22
213.236.56.0/21 maxlen: 21
213.236.53.0/24 maxlen: 24
213.236.59.0/24 maxlen: 24
213.236.60.0/24 maxlen: 24
89.108.60.0/22 maxlen: 22
2a02:d70::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:4b:f6:eb:a0:b4:ca:51:b3:b2:47:7f:29:e9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Validity
Not Before: Jan 1 15:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1d2343dd544269d56646dea11eef7abe462ba24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b9:16:70:b9:3a:e1:d7:53:82:9b:c1:1c:29:
ee:bb:57:e3:2e:7f:b1:8d:a7:bf:39:85:71:4c:2f:
7d:8e:45:e2:2d:95:a9:6f:45:ff:ee:9d:20:2e:02:
21:9d:be:3f:87:0e:5e:cb:e7:e0:d2:b1:3d:0f:0c:
0d:f0:5c:31:99:fe:35:51:2b:6f:b7:04:4d:b5:b6:
e2:f4:10:46:9b:9d:30:f0:6c:1d:9e:58:d9:27:c9:
2c:4e:95:a6:08:22:52:b2:0f:24:2e:2b:fb:b5:d8:
78:1a:c8:c5:48:65:d1:39:06:8f:01:cb:98:62:aa:
96:94:bc:93:f6:68:0b:95:db:34:8c:13:d3:1e:5e:
df:22:8c:ac:97:8c:95:6e:4d:79:53:de:0e:31:e9:
86:78:2e:4f:7b:bf:c8:89:cc:92:7d:62:48:9f:e0:
c6:e4:78:c9:ed:1c:9a:c0:c8:c8:70:2d:f6:c9:5a:
99:3d:5e:5b:d4:23:82:a0:c9:42:d6:34:ed:a8:82:
5d:dd:35:fa:d0:61:9f:67:26:24:85:c8:9d:c2:cf:
06:67:34:d3:9f:96:47:40:36:3a:4a:ca:b0:5e:ed:
f3:d9:69:7c:2d:d6:96:67:57:25:98:1d:6f:fe:e3:
be:bd:f3:9b:f1:b7:5b:30:4a:85:b1:36:d3:cc:85:
b7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D2:34:3D:D5:44:26:9D:56:64:6D:EA:11:EE:F7:AB:E4:62:BA:24
X509v3 Authority Key Identifier:
keyid:1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/4dI0PdVEJp1WZG3qEe73q-RiuiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/GipL_SwMaXZagpnvdJZfhipxSLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.108.0.0/18
185.20.152.0/22
188.117.64.0/18
212.76.64.0/19
213.236.32.0/19
IPv6:
2a02:d70::/32
Signature Algorithm: sha256WithRSAEncryption
8b:23:50:63:d2:31:0e:34:3b:ec:56:af:0d:d2:6d:09:cc:1f:
4e:a3:c0:5b:05:d8:c4:41:1a:ee:42:03:3d:30:7b:f0:14:15:
56:ff:a8:56:e1:63:f9:a5:95:95:4c:5e:c7:60:d1:3d:97:78:
7f:0d:ae:d6:50:e3:bf:47:ae:4e:d2:27:e6:4c:3d:31:be:b5:
f9:83:40:26:a8:1e:43:b0:14:e7:6b:c4:6f:b2:cd:20:59:53:
47:c8:97:46:4c:41:5d:10:fe:a3:5c:73:c7:bf:64:cc:de:69:
f5:00:69:12:11:a4:84:0b:1e:71:a5:9c:fb:91:71:fc:a3:a3:
31:5e:23:10:af:9b:4f:82:98:a6:bc:23:18:84:6c:39:82:77:
16:c8:1c:8d:56:1b:ff:9c:ad:9f:40:60:7c:0f:40:10:3b:27:
f3:4a:f0:21:40:0c:c5:95:8c:c3:0c:26:06:f8:e1:08:5b:89:
36:6e:aa:53:5f:21:c2:43:ec:60:b5:fd:ce:eb:a7:6d:19:f1:
92:0d:0e:51:d1:bd:db:cd:d8:8c:df:03:e6:95:32:14:60:96:
50:59:9f:47:6b:e7:4e:e0:2e:2a:8d:81:61:50:b4:60:c3:e2:
71:1b:2a:5d:90:a2:e8:eb:14:6c:17:bd:62:96:d9:ec:8a:d5:
d4:26:a1:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-ams.rpki-client.org