Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/GhUL8DvYXEMdlkk_g0ffTZaa6f8.roa
File: GhUL8DvYXEMdlkk_g0ffTZaa6f8.roa (raw, json)
Hash identifier: 5yAaF7LpQ3SVqDci24k8J0ar/B4KZvyil2BQlu+mD0s=
Subject key identifier: 1A:15:0B:F0:3B:D8:5C:43:1D:96:49:3F:83:47:DF:4D:96:9A:E9:FF
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 01856EB8E386AFE62958F0F0AEAC459E4245
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/GhUL8DvYXEMdlkk_g0ffTZaa6f8.roa
Signing time: Sun 01 Jan 2023 19:04:48 +0000
ROA not before: Sun 01 Jan 2023 19:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44709
IP address blocks: 91.228.126.0/23 maxlen: 23
194.36.91.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.251.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.253.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
5.100.254.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.255.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
45.93.95.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
2a06:c5c0:900::/48 maxlen: 48
2a06:c5c0:700::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 26 Jan 2023 06:57:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:e3:86:af:e6:29:58:f0:f0:ae:ac:45:9e:42:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 1 19:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a150bf03bd85c431d96493f8347df4d969ae9ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7a:45:e7:d6:c3:67:c1:80:99:95:21:9a:b2:
cd:ca:1e:c9:44:12:25:19:d6:95:c8:c8:19:c0:d3:
0a:4c:58:6a:41:60:53:f3:fd:7b:99:50:71:fe:57:
ee:72:e5:a0:14:4a:fd:90:0c:86:c3:e1:d0:f3:55:
f9:4d:4a:1a:fd:79:f4:48:8b:63:61:23:c2:81:ce:
bc:f1:de:b7:e5:d5:ce:db:30:d4:1b:c5:de:21:bc:
8e:4d:36:28:cd:c1:dd:c9:42:a9:b3:71:72:4b:d1:
30:dd:a8:4c:f4:72:8f:c3:c2:88:47:2b:2e:e3:10:
fa:0a:b6:d6:5f:52:fd:43:51:1a:09:94:22:00:0b:
95:0a:b8:a9:ef:58:14:41:de:22:d1:d1:94:5d:9f:
41:94:fc:bc:fd:05:3d:33:3e:13:06:81:56:a7:09:
fb:d4:41:99:14:a1:1f:ca:1c:6d:1a:00:8e:b2:95:
63:bc:51:b3:dd:84:fc:5a:4d:21:c3:fb:60:29:b8:
d7:27:5f:15:d1:b4:08:c9:bf:21:b2:7b:b2:57:d9:
02:e7:d4:8f:da:dc:44:43:f4:78:88:16:06:e0:57:
55:2a:84:d1:0c:cc:b2:a6:26:21:f3:26:b8:8e:ff:
1b:3d:56:ab:8f:f6:fa:db:8f:7e:d1:ec:e1:a3:c6:
6d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:15:0B:F0:3B:D8:5C:43:1D:96:49:3F:83:47:DF:4D:96:9A:E9:FF
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/GhUL8DvYXEMdlkk_g0ffTZaa6f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.228.126.0/23
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.56.72.0/22
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
212.80.204.0/22
IPv6:
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
64:81:f8:dc:6e:c1:4d:58:be:65:d7:b0:4e:69:97:d4:b8:3d:
d5:47:bd:b7:8f:30:a3:e9:f1:f8:3b:4e:86:cf:fb:fd:52:a7:
50:18:c1:eb:ec:d0:f3:4a:4c:63:50:42:1d:a2:85:be:03:34:
ea:31:6f:6e:cd:93:6e:64:f0:a0:7a:48:c9:df:1e:3e:e6:0e:
bc:04:39:f7:21:12:4c:78:e7:69:2b:fc:81:85:0e:b8:da:33:
83:49:48:55:a3:60:f8:ec:53:26:68:95:e9:52:f4:64:7b:b5:
9b:08:cf:ce:c2:85:94:56:7c:a5:26:c5:ea:4b:45:64:08:7b:
23:5c:46:e3:97:22:88:7b:cd:07:8a:e5:99:92:77:4e:f1:6f:
a9:8d:5b:64:9a:b1:aa:cd:a7:8a:85:35:9e:48:9e:21:ff:c7:
52:09:22:2b:7c:3d:d7:51:07:b9:ab:e7:ca:0c:79:03:c5:b1:
f7:25:15:d3:33:9a:74:9f:92:28:b5:a9:fa:60:4b:8f:c3:02:
ec:91:36:20:14:a9:b1:f8:11:e3:56:62:f7:16:0a:be:aa:61:
a5:20:31:9f:5a:22:a0:eb:4c:55:ee:e7:3d:53:06:83:dd:2c:
28:6e:d5:57:a2:67:bc:56:ce:4b:44:73:97:af:f2:6e:ea:70:
75:70:97:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:36 2024 by rpki-client on console-ams.rpki-client.org