Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Gs3wcHSnPMpwqItnssIkTQLlAQc.roa
File: Gs3wcHSnPMpwqItnssIkTQLlAQc.roa (raw, json)
Hash identifier: +IMWY9c0Ziy23uunu8CVqZGmEOQ1+1z/5uegCyJv8Fs=
Subject key identifier: 1A:CD:F0:70:74:A7:3C:CA:70:A8:8B:67:B2:C2:24:4D:02:E5:01:07
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018D398A269042B81F97D8DAFCE1BCCC3D70
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Gs3wcHSnPMpwqItnssIkTQLlAQc.roa
Signing time: Wed 24 Jan 2024 03:36:11 +0000
ROA not before: Wed 24 Jan 2024 03:36:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48503
IP address blocks: 217.76.70.0/24 maxlen: 24
2a03:32c0::/48 maxlen: 48
2a03:32c0:1::/48 maxlen: 48
2a03:32c0:2::/48 maxlen: 48
2a03:32c0:3::/48 maxlen: 48
2a03:32c0:4::/48 maxlen: 48
2a03:32c0:5::/48 maxlen: 48
2a03:32c0:6::/48 maxlen: 48
2a03:32c0:7::/48 maxlen: 48
2a03:32c0:1000::/48 maxlen: 48
2a03:32c0:1001::/48 maxlen: 48
2a03:32c0:1002::/48 maxlen: 48
2a03:32c0:1003::/48 maxlen: 48
2a03:32c0:1004::/48 maxlen: 48
2a03:32c0:1005::/48 maxlen: 48
2a03:32c0:1006::/48 maxlen: 48
2a03:32c0:1007::/48 maxlen: 48
2a03:32c0:1008::/48 maxlen: 48
2a03:32c0:1009::/48 maxlen: 48
2a03:32c0:2000::/48 maxlen: 48
2a03:32c0:2001::/48 maxlen: 48
2a03:32c0:2002::/48 maxlen: 48
2a03:32c0:2003::/48 maxlen: 48
2a03:32c0:2004::/48 maxlen: 48
2a03:32c0:2005::/48 maxlen: 48
2a03:32c0:2006::/48 maxlen: 48
2a03:32c0:2007::/48 maxlen: 48
2a03:32c0:2008::/48 maxlen: 48
2a03:32c0:2009::/48 maxlen: 48
2a03:32c0:3000::/48 maxlen: 48
2a03:32c0:3001::/48 maxlen: 48
2a03:32c0:3002::/48 maxlen: 48
2a03:32c0:3003::/48 maxlen: 48
2a03:32c0:3004::/48 maxlen: 48
2a03:32c0:3005::/48 maxlen: 48
2a03:32c0:4000::/48 maxlen: 48
2a03:32c0:4001::/48 maxlen: 48
2a03:32c0:4002::/48 maxlen: 48
2a03:32c0:5000::/48 maxlen: 48
2a03:32c0:5001::/48 maxlen: 48
2a03:32c0:5002::/48 maxlen: 48
2a03:32c0:6000::/48 maxlen: 48
2a03:32c0:6001::/48 maxlen: 48
2a03:32c0:7000::/48 maxlen: 48
2a03:32c0:7001::/48 maxlen: 48
2a03:32c0:8000::/48 maxlen: 48
2a03:32c0:8001::/48 maxlen: 48
2a03:32c0:8002::/48 maxlen: 48
2a03:32c0:8003::/48 maxlen: 48
2a03:32c0:8004::/48 maxlen: 48
2a03:32c0:8005::/48 maxlen: 48
2a03:32c0:8006::/48 maxlen: 48
2a03:32c0:8007::/48 maxlen: 48
2a03:32c0:9000::/48 maxlen: 48
2a03:32c0:9001::/48 maxlen: 48
2a03:32c0:9002::/48 maxlen: 48
2a03:32c0:9003::/48 maxlen: 48
2a03:32c0:9004::/48 maxlen: 48
2a03:32c0:9005::/48 maxlen: 48
2a03:32c0:9006::/48 maxlen: 48
2a03:32c0:9007::/48 maxlen: 48
2a03:32c0:a000::/48 maxlen: 48
2a03:32c0:a001::/48 maxlen: 48
2a03:32c0:a002::/48 maxlen: 48
2a03:32c0:a003::/48 maxlen: 48
2a03:32c0:a004::/48 maxlen: 48
2a03:32c0:a005::/48 maxlen: 48
2a03:32c0:a006::/48 maxlen: 48
2a03:32c0:a007::/48 maxlen: 48
2a03:32c0:a008::/48 maxlen: 48
2a03:32c0:a009::/48 maxlen: 48
2a03:32c0:b000::/48 maxlen: 48
2a03:32c0:b001::/48 maxlen: 48
2a03:32c0:b002::/48 maxlen: 48
2a03:32c0:b003::/48 maxlen: 48
2a03:32c0:b004::/48 maxlen: 48
2a03:32c0:b005::/48 maxlen: 48
2a03:32c0:b006::/48 maxlen: 48
2a03:32c0:b007::/48 maxlen: 48
2a03:32c0:b008::/48 maxlen: 48
2a03:32c0:b009::/48 maxlen: 48
2a03:32c0:e000::/48 maxlen: 48
2a03:32c0:e001::/48 maxlen: 48
2a03:32c0:e002::/48 maxlen: 48
2a03:32c0:e003::/48 maxlen: 48
2a03:32c0:e004::/48 maxlen: 48
2a03:32c0:e005::/48 maxlen: 48
2a03:32c0:e006::/48 maxlen: 48
2a03:32c0:e007::/48 maxlen: 48
2a03:32c0:e008::/48 maxlen: 48
2a03:32c0:e009::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 24 Jan 2024 08:25:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:39:8a:26:90:42:b8:1f:97:d8:da:fc:e1:bc:cc:3d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Jan 24 03:36:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1acdf07074a73cca70a88b67b2c2244d02e50107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f9:c1:b5:c2:c0:df:fe:72:3f:d2:6b:c6:6c:
18:8a:1e:fc:61:c4:ac:dd:fe:55:57:2e:d8:3c:c6:
e9:b1:ba:1e:57:fd:14:e5:3a:80:8f:f8:b2:f8:d8:
2d:72:87:11:e1:75:29:79:6f:12:a3:77:c0:45:b9:
ab:ca:c5:24:67:f5:6d:5a:b5:c8:88:29:01:5e:a3:
44:fe:12:ac:64:e3:45:41:1f:05:ef:c8:24:0c:87:
10:a5:d8:30:72:c0:aa:ea:69:76:d7:7d:d6:a5:45:
99:a5:37:58:fe:8e:12:71:93:82:d4:b8:37:09:ba:
53:09:2b:cc:f9:c1:3f:32:4d:09:f9:43:1f:38:ae:
ab:5f:16:07:02:b7:63:a9:bd:f0:a0:0e:2a:69:fe:
59:d6:f9:47:8c:f8:8f:94:b9:fc:63:0f:1d:14:aa:
dc:05:01:16:40:af:a0:76:3f:3d:06:ab:7c:cf:05:
00:a5:ae:ac:4e:bc:14:3f:0e:2d:7d:12:27:ea:ed:
ef:5b:a9:f7:73:4c:6b:a3:df:57:6a:2b:fe:5d:ab:
3f:17:df:28:a8:db:62:ce:ea:2f:f8:c5:dc:c9:73:
bd:98:a3:d8:6a:20:58:7d:ff:df:49:01:ed:f9:1e:
74:41:94:06:63:7c:5a:19:88:a9:c1:5c:4e:e2:32:
a3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CD:F0:70:74:A7:3C:CA:70:A8:8B:67:B2:C2:24:4D:02:E5:01:07
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Gs3wcHSnPMpwqItnssIkTQLlAQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.76.70.0/24
IPv6:
2a03:32c0::/45
2a03:32c0:1000::-2a03:32c0:1009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:2000::-2a03:32c0:2009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:3000::-2a03:32c0:3005:ffff:ffff:ffff:ffff:ffff
2a03:32c0:4000::-2a03:32c0:4002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:5000::-2a03:32c0:5002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:6000::/47
2a03:32c0:7000::/47
2a03:32c0:8000::/45
2a03:32c0:9000::/45
2a03:32c0:a000::-2a03:32c0:a009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:b000::-2a03:32c0:b009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:e000::-2a03:32c0:e009:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7a:05:5b:31:f1:02:cd:a5:74:4b:2e:e7:c2:92:ed:a8:8a:70:
53:67:12:72:c0:85:30:7d:b7:12:0d:fb:37:e7:84:40:81:81:
fe:b2:57:86:ec:57:61:78:5d:62:cf:4f:23:43:cc:90:5f:01:
79:f7:d6:c7:b2:a6:7d:c1:4d:fb:07:d7:f9:e3:c0:9f:3c:74:
d6:2f:f5:cb:c2:be:c2:dc:59:c7:05:89:93:f0:dd:a1:8e:b2:
9c:b8:63:4e:a1:80:f9:57:6a:a6:89:8b:72:df:24:fe:68:2e:
0f:22:be:b7:82:db:40:63:79:fa:4d:48:76:09:2e:ee:8a:d5:
7e:4b:28:6e:bf:0b:32:15:de:4c:22:09:5b:a6:fc:54:b7:95:
c6:52:ca:d0:74:d1:0d:f4:8b:06:be:22:16:ee:64:a2:12:af:
e7:77:db:9f:c1:0a:7a:d0:14:19:e7:52:70:96:38:14:d3:e9:
ed:16:65:77:ec:b5:12:c6:2d:1d:30:d5:53:c1:f2:dd:0f:6b:
5b:22:dc:c2:ab:38:58:cb:03:7a:1d:87:ac:a1:46:ef:5a:3b:
7c:3a:7b:81:30:a5:9a:15:a1:91:b0:b5:77:6b:80:58:0a:ba:
18:6c:ba:f0:d3:95:9b:5f:d5:4f:fd:20:28:37:74:29:be:63:
a5:1f:f7:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 24 13:24:20 2024 by rpki-client on console-fra.rpki-client.org