Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/DaUy8WGXDT4ga8Gjfp-ZSsjcrNk.roa
File: DaUy8WGXDT4ga8Gjfp-ZSsjcrNk.roa (raw, json)
Hash identifier: +JzjqK7RB8rnVQ3a8lGcEZdK/TSeRlA7ArIGb6WEJ7M=
Subject key identifier: 0D:A5:32:F1:61:97:0D:3E:20:6B:C1:A3:7E:9F:99:4A:C8:DC:AC:D9
Certificate issuer: /CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Certificate serial: 018CC870B75748B64D29D0BEE2581A8B4565
Authority key identifier: 1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/DaUy8WGXDT4ga8Gjfp-ZSsjcrNk.roa
Signing time: Tue 02 Jan 2024 04:31:19 +0000
ROA not before: Tue 02 Jan 2024 04:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41176
IP address blocks: 188.117.64.0/18 maxlen: 18
188.117.76.0/24 maxlen: 24
188.117.76.0/22 maxlen: 22
188.117.77.0/24 maxlen: 24
188.117.78.0/24 maxlen: 24
188.117.72.0/22 maxlen: 22
188.117.84.0/22 maxlen: 22
188.117.84.0/24 maxlen: 24
188.117.85.0/24 maxlen: 24
188.117.81.0/24 maxlen: 24
188.117.80.0/24 maxlen: 24
188.117.80.0/23 maxlen: 23
188.117.86.0/24 maxlen: 24
188.117.87.0/24 maxlen: 24
188.117.93.0/24 maxlen: 24
188.117.96.0/21 maxlen: 21
188.117.104.0/24 maxlen: 24
188.117.100.0/23 maxlen: 23
188.117.107.0/24 maxlen: 24
188.117.109.0/24 maxlen: 24
188.117.124.0/24 maxlen: 24
212.76.64.0/24 maxlen: 24
212.76.64.0/19 maxlen: 19
212.76.70.0/24 maxlen: 24
212.76.69.0/24 maxlen: 24
212.76.68.0/24 maxlen: 24
212.76.73.0/24 maxlen: 24
212.76.85.0/24 maxlen: 24
212.76.83.0/24 maxlen: 24
212.76.88.0/24 maxlen: 24
212.76.95.0/24 maxlen: 24
89.108.0.0/18 maxlen: 18
89.108.29.0/24 maxlen: 24
89.108.28.0/24 maxlen: 24
89.108.30.0/24 maxlen: 24
89.108.26.0/24 maxlen: 24
89.108.26.0/23 maxlen: 23
89.108.27.0/24 maxlen: 24
213.236.32.0/19 maxlen: 19
213.236.35.0/24 maxlen: 24
213.236.38.0/24 maxlen: 24
213.236.37.0/24 maxlen: 24
185.20.152.0/24 maxlen: 24
185.20.152.0/22 maxlen: 22
213.236.39.0/24 maxlen: 24
213.236.41.0/24 maxlen: 24
213.236.48.0/24 maxlen: 24
213.236.56.0/22 maxlen: 22
213.236.56.0/21 maxlen: 21
213.236.53.0/24 maxlen: 24
213.236.59.0/24 maxlen: 24
213.236.60.0/24 maxlen: 24
89.108.60.0/22 maxlen: 22
2a02:d70::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 11 Jan 2024 06:48:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:b7:57:48:b6:4d:29:d0:be:e2:58:1a:8b:45:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Validity
Not Before: Jan 2 04:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0da532f161970d3e206bc1a37e9f994ac8dcacd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a5:43:8f:64:0f:02:ba:40:18:de:0c:98:07:
21:e0:08:ff:5c:55:7f:59:dd:6c:22:3e:85:dd:1f:
39:73:41:3c:f6:1f:cc:de:cc:e6:05:0a:09:5d:87:
06:a9:52:a7:30:6d:1e:08:91:8a:ae:45:f9:a7:11:
00:27:86:b9:10:91:fd:b8:3f:cb:eb:0f:cb:c6:f3:
a6:a8:64:80:d1:a3:e2:da:24:57:b3:1d:36:1a:46:
46:9d:fb:0a:61:5c:38:77:db:55:6c:68:9e:18:8d:
c6:55:2a:87:10:60:78:eb:e1:d1:1e:31:18:bc:e7:
fa:d4:b0:12:aa:5e:e3:0c:1d:66:1e:3e:46:99:3e:
c3:69:b3:9d:af:b1:0f:7f:0c:47:3c:ed:69:49:ff:
ac:c4:00:15:7b:93:f1:37:d6:87:11:bb:89:07:45:
8d:55:56:8b:db:ff:75:ff:1c:27:8c:26:d4:ec:6f:
f1:4a:19:ab:1c:9f:b9:1e:37:40:c6:e8:ab:99:7a:
00:b1:79:c5:21:3c:bd:5e:0f:6c:06:ea:15:83:cc:
fa:44:0d:09:93:0e:ed:d2:22:06:5b:23:2b:38:cf:
3a:30:41:92:de:ee:01:e6:a4:d2:a0:d7:18:6a:4f:
26:ba:30:8d:73:5d:cb:f4:ef:76:a4:34:64:c1:b5:
35:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A5:32:F1:61:97:0D:3E:20:6B:C1:A3:7E:9F:99:4A:C8:DC:AC:D9
X509v3 Authority Key Identifier:
keyid:1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/DaUy8WGXDT4ga8Gjfp-ZSsjcrNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/GipL_SwMaXZagpnvdJZfhipxSLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.108.0.0/18
185.20.152.0/22
188.117.64.0/18
212.76.64.0/19
213.236.32.0/19
IPv6:
2a02:d70::/32
Signature Algorithm: sha256WithRSAEncryption
6e:d0:22:73:fc:2d:63:46:44:87:08:f5:54:5e:ac:9a:85:21:
58:62:9b:f2:95:3d:36:ad:ab:b8:91:3f:c3:21:b6:84:2d:bc:
c3:b5:dc:9c:e1:28:1a:4b:2d:24:43:6e:7d:f7:d6:9c:2d:0b:
a4:ca:b6:32:49:5a:4e:1f:fa:3e:04:26:4a:b5:c9:21:81:cb:
c5:ad:2c:f9:a4:ef:d3:3e:e3:40:92:b2:db:32:3c:c5:26:6b:
47:ad:47:ab:0b:04:2a:97:08:24:09:92:9a:93:c0:3b:e2:91:
49:e7:2c:1a:78:12:11:09:7c:78:8c:34:d0:38:5c:6b:c1:ea:
06:de:b4:19:4e:6a:3d:f4:c0:5e:0d:f0:44:85:2b:fa:8d:10:
cc:9e:c4:19:76:2f:60:c0:59:a4:fe:b8:9c:84:fa:cb:bb:b2:
59:4a:40:9d:88:5d:5a:34:8d:81:54:70:c4:1c:98:02:68:8c:
c7:5b:44:8b:84:27:fb:37:cb:53:d3:4f:86:20:6b:d7:a6:29:
ee:6c:f5:8e:df:f5:45:44:ad:28:ab:e8:b9:2d:95:80:a3:0b:
b2:ac:76:1b:80:e2:38:05:00:27:3c:33:b8:65:f9:15:20:13:
82:f7:e3:70:f4:20:23:a9:7b:34:f4:19:9c:60:89:52:a3:af:
ec:f8:32:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 11 09:30:58 2024 by rpki-client on console-fra.rpki-client.org