Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/OIQ0SAuZzDU1COSNfsy2XxxxID0.roa
File: OIQ0SAuZzDU1COSNfsy2XxxxID0.roa (raw, json)
Hash identifier: fyIkfQU4dnQ1ceAAo8hNCseXXoJuLrCRqstVTX9pZ+4=
Subject key identifier: 38:84:34:48:0B:99:CC:35:35:08:E4:8D:7E:CC:B6:5F:1C:71:20:3D
Certificate issuer: /CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Certificate serial: 0190BA4925ABE91112F7F1B79C8CEC7AAD50
Authority key identifier: 1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/OIQ0SAuZzDU1COSNfsy2XxxxID0.roa
Signing time: Tue 16 Jul 2024 06:44:34 +0000
ROA not before: Tue 16 Jul 2024 06:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41176
IP address blocks: 89.108.0.0/18 maxlen: 18
89.108.26.0/23 maxlen: 23
89.108.26.0/24 maxlen: 24
89.108.27.0/24 maxlen: 24
89.108.28.0/24 maxlen: 24
89.108.29.0/24 maxlen: 24
89.108.30.0/24 maxlen: 24
89.108.60.0/22 maxlen: 22
185.20.152.0/22 maxlen: 22
185.20.152.0/24 maxlen: 24
188.117.64.0/18 maxlen: 18
188.117.72.0/22 maxlen: 22
188.117.76.0/22 maxlen: 22
188.117.76.0/24 maxlen: 24
188.117.77.0/24 maxlen: 24
188.117.78.0/24 maxlen: 24
188.117.80.0/23 maxlen: 23
188.117.80.0/24 maxlen: 24
188.117.81.0/24 maxlen: 24
188.117.84.0/22 maxlen: 22
188.117.84.0/24 maxlen: 24
188.117.85.0/24 maxlen: 24
188.117.86.0/24 maxlen: 24
188.117.87.0/24 maxlen: 24
188.117.93.0/24 maxlen: 24
188.117.96.0/21 maxlen: 21
188.117.100.0/23 maxlen: 23
188.117.104.0/24 maxlen: 24
188.117.107.0/24 maxlen: 24
188.117.109.0/24 maxlen: 24
188.117.124.0/24 maxlen: 24
212.76.64.0/19 maxlen: 19
212.76.64.0/24 maxlen: 24
212.76.68.0/24 maxlen: 24
212.76.69.0/24 maxlen: 24
212.76.70.0/24 maxlen: 24
212.76.73.0/24 maxlen: 24
212.76.83.0/24 maxlen: 24
212.76.85.0/24 maxlen: 24
212.76.88.0/24 maxlen: 24
212.76.95.0/24 maxlen: 24
213.236.32.0/19 maxlen: 19
213.236.35.0/24 maxlen: 24
213.236.36.0/24 maxlen: 24
213.236.37.0/24 maxlen: 24
213.236.38.0/24 maxlen: 24
213.236.39.0/24 maxlen: 24
213.236.41.0/24 maxlen: 24
213.236.48.0/24 maxlen: 24
213.236.53.0/24 maxlen: 24
213.236.56.0/21 maxlen: 21
213.236.56.0/22 maxlen: 22
213.236.59.0/24 maxlen: 24
213.236.60.0/22 maxlen: 22
213.236.60.0/24 maxlen: 24
2a02:d70::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 15 Oct 2024 12:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ba:49:25:ab:e9:11:12:f7:f1:b7:9c:8c:ec:7a:ad:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Validity
Not Before: Jul 16 06:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=388434480b99cc353508e48d7eccb65f1c71203d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3e:14:9a:51:b0:28:a4:58:f2:b4:de:e3:33:
37:88:3b:2c:79:ef:f7:a6:8b:26:f0:df:61:a8:8c:
d7:8d:56:67:cf:f8:cc:43:29:29:34:86:7f:11:a8:
d2:f2:dc:02:4b:bf:51:c3:96:d4:e3:4a:73:d3:39:
65:9c:38:ac:2a:c2:09:7f:7a:53:c8:be:72:c0:e7:
01:8f:1a:5c:30:9b:27:6a:1d:eb:d1:64:38:e7:09:
15:90:27:da:7a:e1:ab:fa:57:53:89:99:a1:d7:3e:
41:80:d1:dd:2d:8a:0c:da:a0:1d:4f:56:b4:43:a5:
42:7a:29:10:9c:22:09:59:bc:7a:b1:0f:2c:9d:19:
d9:f2:92:b5:21:81:cc:25:6b:06:a3:60:4c:6e:83:
eb:93:7f:52:f4:76:39:4d:69:80:21:c2:e5:c8:57:
e2:73:d1:6c:7a:b2:d0:0d:e8:2d:1f:c7:8c:2a:a5:
28:7b:97:05:40:bb:1a:29:17:26:e9:78:15:69:d3:
23:c6:f5:c4:f2:56:e6:3f:30:9e:15:6a:14:79:db:
7e:be:04:16:2d:e5:b4:c4:0f:16:0e:e5:1c:e0:a9:
96:4d:59:17:b9:da:c5:4f:f3:e1:3d:0d:a7:2a:c4:
bd:aa:19:fc:68:f5:e8:78:93:dd:ca:a5:cf:80:b5:
f2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:84:34:48:0B:99:CC:35:35:08:E4:8D:7E:CC:B6:5F:1C:71:20:3D
X509v3 Authority Key Identifier:
keyid:1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/OIQ0SAuZzDU1COSNfsy2XxxxID0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/GipL_SwMaXZagpnvdJZfhipxSLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.108.0.0/18
185.20.152.0/22
188.117.64.0/18
212.76.64.0/19
213.236.32.0/19
IPv6:
2a02:d70::/32
Signature Algorithm: sha256WithRSAEncryption
0d:8f:7b:e5:07:e7:c1:a9:2f:77:5f:f7:fa:61:54:d1:a3:c4:
de:a0:bc:74:80:89:96:6e:79:e6:3a:d8:ab:fc:7c:b5:37:1d:
bd:05:2a:7e:65:0e:f3:2a:9d:ad:b2:5f:3a:5a:74:ba:69:cd:
d5:42:fa:61:41:97:bc:fa:1d:d2:35:46:b1:1f:db:bd:90:7e:
16:ff:82:56:48:dc:0b:88:df:8a:41:10:81:72:4c:17:a9:4e:
07:1e:91:55:4c:17:cb:0f:a4:ac:34:ce:4a:c4:75:c9:57:f2:
4f:72:bf:65:80:70:73:6f:6e:d4:85:fa:44:9d:62:d9:1d:c2:
93:61:d8:bd:97:e2:b8:ba:83:4c:1d:2d:60:57:a4:3f:ca:b4:
b2:6b:dc:71:5e:24:34:f1:f5:32:77:f7:3a:ba:bb:f0:26:cc:
0a:75:af:d0:b4:31:ae:b5:25:5e:7c:e2:8f:a4:40:0c:d9:e5:
dc:01:b0:bc:34:61:51:a9:d3:02:28:79:b0:63:2d:6e:f4:62:
39:4e:b0:be:1a:93:a0:c1:e1:e3:a6:73:34:52:ef:ba:49:40:
ea:71:67:2b:e9:1c:d9:36:3c:f5:cb:b1:6f:fb:54:f3:f6:4f:
b9:31:22:64:4b:b7:27:c6:5c:e3:7a:11:8e:16:9e:c9:fd:65:
5b:72:6c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 15 14:29:00 2024 by rpki-client on console-fra.rpki-client.org