Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/gvo7g760s8I8Kv2TYzcoMUgOcBI.roa
File: gvo7g760s8I8Kv2TYzcoMUgOcBI.roa (raw, json)
Hash identifier: X3obRNunA6v+BRawe6plHTjaI3TYdDKwBTOqMXoCiuM=
Subject key identifier: 82:FA:3B:83:BE:B4:B3:C2:3C:2A:FD:93:63:37:28:31:48:0E:70:12
Certificate issuer: /CN=f6eea10afacf3a9c26ea1b1ec488e955e4dfa06a
Certificate serial: 0186C619F77DDA57817B14145A726B3E2AC5
Authority key identifier: F6:EE:A1:0A:FA:CF:3A:9C:26:EA:1B:1E:C4:88:E9:55:E4:DF:A0:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9u6hCvrPOpwm6hsexIjpVeTfoGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/gvo7g760s8I8Kv2TYzcoMUgOcBI.roa
Signing time: Thu 09 Mar 2023 11:20:35 +0000
ROA not before: Thu 09 Mar 2023 11:20:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31263
IP address blocks: 80.88.160.0/20 maxlen: 20
89.34.203.0/24 maxlen: 24
84.247.16.0/24 maxlen: 24
85.204.252.0/24 maxlen: 24
45.142.184.0/22 maxlen: 22
31.44.160.0/20 maxlen: 20
45.67.40.0/22 maxlen: 22
31.193.144.0/20 maxlen: 20
46.102.173.0/24 maxlen: 24
80.68.176.0/20 maxlen: 20
45.94.0.0/22 maxlen: 22
77.241.12.0/22 maxlen: 22
84.247.208.0/20 maxlen: 20
84.247.224.0/19 maxlen: 19
193.135.15.0/24 maxlen: 24
79.133.100.0/22 maxlen: 22
119.12.32.0/20 maxlen: 20
193.135.24.0/24 maxlen: 24
92.62.80.0/20 maxlen: 20
77.240.224.0/20 maxlen: 20
77.241.0.0/21 maxlen: 21
84.247.192.0/18 maxlen: 18
77.241.10.0/24 maxlen: 24
77.241.10.0/23 maxlen: 23
77.241.11.0/24 maxlen: 24
178.238.48.0/20 maxlen: 20
185.5.196.0/22 maxlen: 22
77.81.166.0/24 maxlen: 24
93.91.128.0/20 maxlen: 20
185.229.172.0/22 maxlen: 22
178.175.192.0/18 maxlen: 18
2a07:5ec0::/29 maxlen: 29
2a07:55c0::/29 maxlen: 29
2a07:580::/29 maxlen: 29
2a07:4f00::/29 maxlen: 29
2a02:600::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:19:f7:7d:da:57:81:7b:14:14:5a:72:6b:3e:2a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6eea10afacf3a9c26ea1b1ec488e955e4dfa06a
Validity
Not Before: Mar 9 11:20:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82fa3b83beb4b3c23c2afd9363372831480e7012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:38:6a:4d:8d:62:14:78:b7:00:c6:05:d0:f3:
4f:53:ad:36:9a:12:09:32:0b:bf:09:7f:69:14:25:
43:b6:65:96:dd:f3:f6:46:f0:b9:97:10:71:52:63:
5a:b9:e3:c5:3c:45:49:5f:47:6e:be:89:e5:7b:b3:
d6:6d:a8:7b:f6:ad:03:63:c0:32:c4:8d:f7:85:f8:
13:5e:f4:25:f2:08:f3:76:b9:bd:ed:af:a4:e9:1a:
58:82:db:17:74:76:70:81:97:8a:25:2f:6d:5b:86:
09:50:b8:27:44:89:fc:26:77:3c:69:a1:dc:1e:8c:
87:0f:d5:e4:1d:d8:6c:49:0b:8d:5f:0c:d8:11:56:
e8:4f:91:79:f5:25:b6:91:f0:97:1a:16:44:e6:f1:
97:03:91:e9:ad:11:73:6f:01:6c:6c:1a:17:42:c5:
26:fd:02:cb:1f:97:c2:d8:f1:b6:77:ac:b0:a4:58:
84:3b:d0:99:65:33:6e:d3:c7:01:58:86:12:95:c3:
31:96:47:ea:6f:6f:df:f1:ee:a0:aa:ce:62:64:16:
7a:41:2c:2f:50:e2:1c:65:28:a4:4c:60:ba:0f:a2:
a8:c1:a1:f5:f1:1e:3f:72:56:cc:a4:15:de:5a:a1:
bf:89:9a:36:4e:b4:c6:00:ca:54:7a:a5:2b:d3:9e:
7e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FA:3B:83:BE:B4:B3:C2:3C:2A:FD:93:63:37:28:31:48:0E:70:12
X509v3 Authority Key Identifier:
keyid:F6:EE:A1:0A:FA:CF:3A:9C:26:EA:1B:1E:C4:88:E9:55:E4:DF:A0:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9u6hCvrPOpwm6hsexIjpVeTfoGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/gvo7g760s8I8Kv2TYzcoMUgOcBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/9u6hCvrPOpwm6hsexIjpVeTfoGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.160.0/20
31.193.144.0/20
45.67.40.0/22
45.94.0.0/22
45.142.184.0/22
46.102.173.0/24
77.81.166.0/24
77.240.224.0/20
77.241.0.0/21
77.241.10.0-77.241.15.255
79.133.100.0/22
80.68.176.0/20
80.88.160.0/20
84.247.16.0/24
84.247.192.0/18
85.204.252.0/24
89.34.203.0/24
92.62.80.0/20
93.91.128.0/20
119.12.32.0/20
178.175.192.0/18
178.238.48.0/20
185.5.196.0/22
185.229.172.0/22
193.135.15.0/24
193.135.24.0/24
IPv6:
2a02:600::/29
2a07:580::/29
2a07:4f00::/29
2a07:55c0::/29
2a07:5ec0::/29
Signature Algorithm: sha256WithRSAEncryption
4c:62:ae:b5:d4:2b:78:94:ba:1d:4d:cc:75:7b:49:2d:8a:74:
ac:db:d1:66:39:b8:f4:dc:3b:9a:c9:70:b5:e1:97:0b:41:2a:
33:57:5b:0c:36:61:c6:31:9e:29:4a:fd:c2:78:1a:06:bf:d5:
20:87:8d:97:d8:42:6d:98:c2:18:18:a1:a8:12:51:a3:db:80:
ac:10:50:f8:db:ed:a5:ef:82:0f:67:8b:a3:a4:05:b5:2c:a9:
c2:27:4d:5a:45:77:d3:00:ad:8c:dd:0b:b4:a8:d2:76:6b:64:
2b:fe:90:0a:5e:c8:01:5f:09:e6:54:2d:dd:65:b1:02:9f:e6:
5a:68:58:ca:fd:fb:f0:02:2f:44:18:62:11:49:4c:43:38:4f:
93:2a:f5:74:64:cb:55:b1:85:53:8d:c0:04:1a:49:57:c6:d4:
b3:c9:5e:72:b5:0c:e5:5b:46:70:12:57:d4:27:90:8d:6d:bb:
20:d5:f5:95:53:aa:54:36:c3:d4:a9:1a:ad:4b:6c:44:60:8a:
6a:b3:a6:48:c3:c5:ab:49:2e:ad:7e:0a:dc:83:1b:9b:3a:e2:
d8:e0:ff:0e:36:c3:8c:d8:f0:83:7a:b3:1d:08:a0:0e:a6:af:
da:37:63:31:72:7f:0e:c1:84:c1:f2:36:bf:73:c7:4f:24:2a:
bd:b3:c3:71
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:26 2024 by rpki-client on console-ams.rpki-client.org