Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Gqg1uSa3JaUd7cW7JU7Si9kUai0.roa
File: Gqg1uSa3JaUd7cW7JU7Si9kUai0.roa (raw, json)
Hash identifier: Q419j2soW2dyRtazWJqVEzDuTBMIw4quGDFgVL6UuAQ=
Subject key identifier: 1A:A8:35:B9:26:B7:25:A5:1D:ED:C5:BB:25:4E:D2:8B:D9:14:6A:2D
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 01869F4B7AAEF0A93E5E03145769F20C6D01
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Gqg1uSa3JaUd7cW7JU7Si9kUai0.roa
Signing time: Wed 01 Mar 2023 22:29:29 +0000
ROA not before: Wed 01 Mar 2023 22:29:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204548
IP address blocks: 81.28.6.0/24 maxlen: 24
83.229.84.0/24 maxlen: 24
83.229.85.0/24 maxlen: 24
83.229.86.0/24 maxlen: 24
83.229.87.0/24 maxlen: 24
194.36.88.0/24 maxlen: 24
63.250.59.0/24 maxlen: 24
63.250.60.0/24 maxlen: 24
45.83.41.0/24 maxlen: 24
185.237.97.0/24 maxlen: 24
185.237.96.0/24 maxlen: 24
185.53.210.0/24 maxlen: 24
185.237.14.0/24 maxlen: 24
185.237.15.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9f:4b:7a:ae:f0:a9:3e:5e:03:14:57:69:f2:0c:6d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Mar 1 22:29:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1aa835b926b725a51dedc5bb254ed28bd9146a2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ba:37:26:a9:3c:ea:47:72:d9:d1:50:e4:95:
76:0e:49:52:47:9b:51:7f:7c:97:e9:f9:64:02:70:
21:99:26:f0:27:25:5c:5f:65:2e:5e:67:c3:a7:19:
23:06:54:ad:b2:af:94:9a:77:5e:92:63:af:a0:ce:
65:12:8a:58:95:92:1b:83:98:29:0e:74:43:15:69:
2c:6e:cd:04:3a:ae:88:3f:cf:51:bb:d7:41:be:3f:
34:a6:54:96:84:ab:ac:01:4f:f0:90:ec:49:41:86:
70:31:24:a8:a3:3d:4b:f0:cf:cf:f8:1b:e3:74:7a:
a8:14:18:58:54:ef:e3:c8:98:50:9b:2a:17:a7:c0:
74:6d:d9:de:41:36:33:2c:ef:b2:15:3d:1f:3f:bc:
ac:42:4a:68:99:86:f6:ab:08:59:81:a0:59:00:6b:
73:96:62:8f:38:3c:94:43:25:6c:01:c9:60:ef:bc:
c4:1c:ad:dc:5a:2e:4a:9e:1f:bf:0e:b6:d9:93:5e:
c4:2d:48:7d:da:2c:81:0a:ab:4e:44:ea:c9:84:74:
b6:37:9a:89:d3:8e:16:71:46:02:79:38:89:a8:72:
90:90:12:35:b9:83:3e:81:0d:57:e8:cc:4b:02:5a:
e3:dd:33:2a:f5:e8:39:4d:78:ea:7f:94:f5:65:ce:
8b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A8:35:B9:26:B7:25:A5:1D:ED:C5:BB:25:4E:D2:8B:D9:14:6A:2D
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Gqg1uSa3JaUd7cW7JU7Si9kUai0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.41.0/24
63.250.59.0-63.250.60.255
81.28.6.0/24
83.229.84.0/22
91.202.170.0/24
185.53.210.0/24
185.237.14.0/23
185.237.96.0/23
194.36.88.0/24
Signature Algorithm: sha256WithRSAEncryption
64:22:8a:53:c8:1c:ca:ea:0b:63:4e:14:dc:42:ab:23:1b:54:
22:2d:8d:67:10:5b:b4:47:0e:de:5f:b3:65:5a:6c:d5:42:e7:
a4:f7:0a:2d:6c:bf:1f:30:34:7d:31:e7:f9:7c:b9:27:d0:e4:
bf:0c:2f:1e:b1:37:c2:6b:23:3e:b9:71:53:54:44:8b:ce:30:
54:8a:0c:5d:fe:7e:55:3c:d2:7d:d8:49:33:52:4b:20:36:a4:
9f:d8:20:32:66:93:a4:80:a9:81:47:86:60:0b:51:24:0a:fa:
d4:1a:31:ee:b6:5a:fa:ad:c5:78:4a:95:c1:3f:8f:ff:2d:d1:
43:2d:67:66:ff:8e:54:63:35:64:69:4b:28:4a:6b:0f:e1:d1:
42:61:7a:d8:7c:86:fe:1c:4b:c7:dd:91:a3:85:71:84:dd:da:
32:59:f6:27:ba:bb:04:ed:ea:21:0c:b7:5b:4c:78:90:cd:bd:
01:46:d8:e5:9a:6a:0d:97:41:bf:1c:c0:fa:32:19:f9:54:e8:
6f:45:7d:08:ca:fe:15:66:be:a9:2d:15:1a:25:18:7f:58:fb:
56:29:1b:34:1c:c7:09:4e:1c:61:a7:0e:28:ae:c1:23:ff:48:
77:b0:60:77:14:9a:ef:f9:0a:2d:4c:83:8a:4d:56:68:1d:49:
65:7b:55:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:25 2023 by rpki-client on console-ams.rpki-client.org