Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/gM0MSxKuWAmVrxi41JZcwjkgMGg.roa
File: gM0MSxKuWAmVrxi41JZcwjkgMGg.roa (raw, json)
Hash identifier: GrEwKHtDGd+hXstLHoiiE/JIvO/QyvpUW08WsQqKUX8=
Subject key identifier: 80:CD:0C:4B:12:AE:58:09:95:AF:18:B8:D4:96:5C:C2:39:20:30:68
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 018B9E1FF3A6A11105B6C0004CEEF84DC34B
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/gM0MSxKuWAmVrxi41JZcwjkgMGg.roa
Signing time: Sun 05 Nov 2023 06:16:15 +0000
ROA not before: Sun 05 Nov 2023 06:16:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202468
IP address blocks: 185.231.180.0/22 maxlen: 22
185.228.238.0/24 maxlen: 24
185.228.239.0/24 maxlen: 24
185.228.236.0/24 maxlen: 24
185.228.236.0/22 maxlen: 22
185.228.237.0/24 maxlen: 24
185.97.116.0/22 maxlen: 24
185.220.224.0/24 maxlen: 24
185.220.224.0/22 maxlen: 22
185.220.225.0/24 maxlen: 24
185.220.226.0/24 maxlen: 24
185.220.227.0/24 maxlen: 24
37.32.4.0/22 maxlen: 22
37.32.0.0/22 maxlen: 22
37.32.0.0/19 maxlen: 24
37.32.8.0/22 maxlen: 22
37.32.17.0/24 maxlen: 24
37.32.16.0/24 maxlen: 24
37.32.12.0/22 maxlen: 22
37.32.24.0/22 maxlen: 22
37.32.20.0/22 maxlen: 22
37.32.18.0/24 maxlen: 24
37.32.19.0/24 maxlen: 24
193.176.240.0/22 maxlen: 24
37.32.28.0/22 maxlen: 24
193.176.242.0/23 maxlen: 23
185.143.232.0/22 maxlen: 24
37.152.176.0/20 maxlen: 24
37.152.184.0/24 maxlen: 24
185.206.92.0/22 maxlen: 24
188.121.124.0/23 maxlen: 23
188.121.120.0/21 maxlen: 24
185.239.104.0/22 maxlen: 24
185.239.104.0/24 maxlen: 24
185.239.105.0/24 maxlen: 24
188.121.127.0/24 maxlen: 24
185.239.106.0/23 maxlen: 23
188.121.96.0/19 maxlen: 24
188.121.104.0/22 maxlen: 22
188.121.108.0/22 maxlen: 22
94.101.176.0/20 maxlen: 24
94.101.184.0/21 maxlen: 24
94.101.180.0/23 maxlen: 23
94.101.180.0/24 maxlen: 24
94.101.182.0/24 maxlen: 24
185.226.116.0/22 maxlen: 24
2a0c:a7c0:3::/48 maxlen: 48
2a07:3900::/48 maxlen: 48
2a07:3906::/32 maxlen: 32
2a0c:a7c0::/48 maxlen: 48
2a07:3905::/32 maxlen: 32
2a07:3900:1::/48 maxlen: 48
2a07:3901::/32 maxlen: 32
2a0c:a7c0:1::/48 maxlen: 48
2a07:3902::/32 maxlen: 32
2a0c:a7c0::/29 maxlen: 29
2a07:3903::/32 maxlen: 32
2a07:3900::/32 maxlen: 32
2a07:3904::/32 maxlen: 32
2a07:3900::/29 maxlen: 29
2a07:3907::/32 maxlen: 32
2a0c:a7c0:2::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9e:1f:f3:a6:a1:11:05:b6:c0:00:4c:ee:f8:4d:c3:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Nov 5 06:16:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80cd0c4b12ae580995af18b8d4965cc239203068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:93:9b:1a:9f:62:84:b6:aa:8d:12:f1:29:fd:
69:08:fa:87:90:db:06:97:29:07:17:c6:09:0b:2b:
50:4b:67:04:59:39:ab:2b:fc:fb:73:af:b1:04:ff:
33:4c:6c:3f:4b:82:aa:ed:69:83:33:1a:0c:ac:ac:
1a:e6:81:49:79:ed:4b:3f:13:e7:4a:de:e4:e2:4f:
97:5d:a5:f2:4f:39:e7:5d:ff:42:a3:e0:60:ce:05:
1b:df:05:82:0e:d3:e6:01:ba:b6:28:d3:ca:67:93:
bb:e9:91:76:f4:b3:e4:7f:ac:a8:25:f1:1d:d9:c9:
1a:7f:d2:60:b6:fc:45:24:57:de:fe:a0:f4:bf:8b:
13:b7:eb:00:c6:5e:38:92:90:73:dc:ff:94:87:de:
6a:35:f2:48:2e:ec:90:45:77:99:6a:35:b5:38:bb:
3b:38:80:e3:4d:5a:d3:1e:2c:1a:3e:96:98:3f:0f:
4a:6a:56:ee:d0:ce:1c:a0:b7:9c:c3:dc:19:53:49:
1c:5b:aa:e6:a5:6b:43:34:99:8f:21:ea:24:0f:f0:
b1:c0:5f:ee:00:57:ee:8d:27:58:85:ab:7f:76:5d:
0c:e6:8a:b4:9b:bc:f9:70:dc:c9:45:0a:5f:9b:e6:
1d:2f:ce:45:20:29:d1:83:9f:44:5c:34:9c:74:a9:
57:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CD:0C:4B:12:AE:58:09:95:AF:18:B8:D4:96:5C:C2:39:20:30:68
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/gM0MSxKuWAmVrxi41JZcwjkgMGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.0.0/19
37.152.176.0/20
94.101.176.0/20
185.97.116.0/22
185.143.232.0/22
185.206.92.0/22
185.220.224.0/22
185.226.116.0/22
185.228.236.0/22
185.231.180.0/22
185.239.104.0/22
188.121.96.0/19
193.176.240.0/22
IPv6:
2a07:3900::/29
2a0c:a7c0::/29
Signature Algorithm: sha256WithRSAEncryption
34:db:b0:5f:8c:6e:e0:b2:8d:cf:34:4d:78:b4:c1:fc:c6:27:
b7:44:8c:10:e0:e0:9d:1b:b7:7e:ce:8f:54:19:1a:b8:2e:b8:
f5:0c:6e:ee:d6:e1:65:96:b9:ec:61:d2:13:2f:be:38:58:93:
27:f4:d4:a6:ae:32:a9:da:95:38:5f:cc:f3:3a:fa:95:ec:ee:
2d:1a:ec:a0:fe:87:cb:f2:6f:fb:43:ca:d9:6a:14:6c:ca:a6:
98:9c:79:ac:aa:a9:79:6f:d0:63:75:cb:19:f6:d9:ce:74:b9:
3a:ae:30:cf:1a:b8:88:c0:9c:9b:a5:14:f4:ac:b0:b6:29:48:
8c:5a:9c:6d:4a:36:50:7d:98:e5:78:22:bc:b7:c5:e2:d3:e1:
32:04:47:18:c9:63:96:c0:e1:76:62:06:e3:6c:7d:0d:e7:81:
8c:51:34:97:4b:76:c2:a9:51:bc:03:e2:80:13:ff:5f:27:70:
93:ee:97:92:06:fd:ec:8f:63:cb:ea:4a:95:c4:f3:e8:1e:03:
7c:2b:33:7e:4e:7d:0f:a5:5b:2b:e4:44:60:c5:cc:f1:6c:cf:
86:94:19:23:f6:58:4e:d5:1d:71:e0:31:97:6c:82:64:ac:58:
ac:40:ac:07:a4:f8:88:d4:b9:59:a0:7a:ea:40:7d:8e:a2:e5:
db:39:c5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:50 2024 by rpki-client on console-fra.rpki-client.org