Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/gvotcb_-Y7Z2CNVnmshxXYscLAs.roa
File: gvotcb_-Y7Z2CNVnmshxXYscLAs.roa (raw, json)
Hash identifier: 6BtFu899tYEidVLF6tN9JuqXQ+gELUkkgw4aFuRQf6k=
Subject key identifier: 82:FA:2D:71:BF:FE:63:B6:76:08:D5:67:9A:C8:71:5D:8B:1C:2C:0B
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018A4FFE0E6DF48BAA687B180CFF1A4A9ECB
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/gvotcb_-Y7Z2CNVnmshxXYscLAs.roa
Signing time: Fri 01 Sep 2023 09:06:04 +0000
ROA not before: Fri 01 Sep 2023 09:06:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4f:fe:0e:6d:f4:8b:aa:68:7b:18:0c:ff:1a:4a:9e:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 1 09:06:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82fa2d71bffe63b67608d5679ac8715d8b1c2c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:41:7a:ad:e7:f2:11:44:f8:d9:56:b3:9b:8e:
1c:39:18:51:7f:69:de:65:f5:e8:64:d0:e2:a5:42:
7c:ad:3b:3b:42:f7:52:dd:8b:93:4d:72:11:59:10:
19:9e:28:90:85:95:ca:79:0f:cb:ae:21:50:e2:b3:
48:af:4c:14:94:30:0a:bf:93:83:81:e8:a6:1c:c2:
5e:95:da:9f:44:b1:ce:f0:be:08:25:5e:8d:24:ac:
dc:69:35:d6:02:53:19:19:bc:71:11:1f:9e:4f:17:
3c:a5:ee:ea:46:e5:97:27:c3:b4:44:1f:12:ee:92:
e1:ee:57:a7:0a:5a:68:20:c4:8d:9b:8a:86:cf:e2:
5c:f0:a0:3d:fb:8a:33:38:9a:39:c3:43:12:3a:3a:
47:7c:bf:2e:c1:07:48:f9:ed:f0:44:02:85:69:1f:
3c:49:9b:43:c6:d2:d8:26:39:ba:a3:67:7a:7b:2f:
a7:9d:b5:32:f3:5e:09:3e:a1:0d:eb:f7:62:e1:d5:
2e:fa:fb:10:cd:5c:ba:00:cb:c6:88:68:62:f0:6c:
bb:55:67:08:69:d1:64:59:90:2b:3e:19:36:a5:14:
49:db:5f:db:b9:7b:c1:2e:fb:3f:c5:fa:d7:a1:77:
70:c3:1d:f4:16:31:d9:5f:2c:34:37:8e:3e:a2:d1:
a4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FA:2D:71:BF:FE:63:B6:76:08:D5:67:9A:C8:71:5D:8B:1C:2C:0B
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/gvotcb_-Y7Z2CNVnmshxXYscLAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/23
45.141.235.0/24
78.159.128.0/23
78.159.131.0/24
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:3a:45:82:90:52:c3:31:ad:4b:f8:9b:bf:96:0b:17:bc:35:
74:79:7b:ae:79:54:92:20:41:77:6e:d9:ce:2f:34:81:a8:e9:
f8:4a:42:9e:aa:8e:32:64:25:9f:bd:f1:83:b9:4d:04:ac:fd:
66:98:03:11:fb:bc:53:bb:93:0c:73:94:ae:5a:16:5b:61:c1:
62:1c:4d:36:57:ca:bb:16:e8:64:92:ff:65:8e:71:db:7f:0c:
31:17:f2:0d:fb:0f:77:63:2e:9e:b4:2f:83:0c:31:4a:99:9d:
ea:68:8d:25:ed:46:a4:2a:ae:50:88:01:5c:2b:72:28:46:f5:
54:62:1b:0c:1a:5e:9d:be:ed:41:bf:c4:ad:45:58:b7:e4:cb:
68:8c:7b:14:ab:62:14:fd:d5:4d:b8:43:04:d7:b0:f1:94:44:
a6:d8:fd:69:40:64:07:00:f3:e8:2e:67:73:ec:f4:04:2b:46:
31:7c:24:ca:42:e8:75:aa:28:25:83:f0:98:b8:74:21:59:41:
0f:2b:db:b7:58:48:7f:c5:6e:8d:25:8c:35:6c:44:b0:27:8d:
1c:7e:02:0c:60:f5:d3:c1:4d:f1:0d:c7:d0:d3:1a:42:c0:08:
92:ec:54:08:6e:8a:0d:33:16:f7:e0:d1:c2:4a:d9:b0:74:fd:
ab:9f:55:84
-----BEGIN CERTIFICATE-----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Generated at Wed Sep 20 07:59:56 2023 by rpki-client on console-fra.rpki-client.org