Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/GE_ZvkZaBvseP1PHTxJfWdLiFGc.roa
File: GE_ZvkZaBvseP1PHTxJfWdLiFGc.roa (raw, json)
Hash identifier: ztgrc9S7CwvZqLehnqEtE+7crb/9XVLpBvFpwbbVKmE=
Subject key identifier: 18:4F:D9:BE:46:5A:06:FB:1E:3F:53:C7:4F:12:5F:59:D2:E2:14:67
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018B99E4E3519F72E7C564152492D179E112
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/GE_ZvkZaBvseP1PHTxJfWdLiFGc.roa
Signing time: Sat 04 Nov 2023 10:33:16 +0000
ROA not before: Sat 04 Nov 2023 10:33:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.231.0/24 maxlen: 24
85.133.232.0/24 maxlen: 24
85.133.228.0/24 maxlen: 24
85.133.232.0/22 maxlen: 22
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.227.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.240.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.240.0/22 maxlen: 22
85.133.245.0/24 maxlen: 24
85.133.246.0/24 maxlen: 24
85.133.243.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.247.0/24 maxlen: 24
85.133.248.0/23 maxlen: 24
85.133.249.0/24 maxlen: 24
85.133.250.0/24 maxlen: 24
85.133.251.0/24 maxlen: 24
85.133.252.0/22 maxlen: 22
85.133.254.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
85.133.179.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.178.0/24 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.189.0/24 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.192.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.197.0/24 maxlen: 24
85.133.199.0/24 maxlen: 24
85.133.196.0/22 maxlen: 22
85.133.205.0/24 maxlen: 24
85.133.203.0/24 maxlen: 24
85.133.204.0/24 maxlen: 24
85.133.200.0/22 maxlen: 22
85.133.206.0/24 maxlen: 24
85.133.200.0/24 maxlen: 24
85.133.201.0/24 maxlen: 24
85.133.204.0/22 maxlen: 22
85.133.202.0/24 maxlen: 24
85.133.210.0/23 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.207.0/24 maxlen: 24
85.133.212.0/22 maxlen: 22
85.133.208.0/24 maxlen: 24
85.133.209.0/24 maxlen: 24
85.133.217.0/24 maxlen: 24
85.133.219.0/24 maxlen: 24
85.133.215.0/24 maxlen: 24
85.133.220.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.225.0/24 maxlen: 24
85.133.226.0/24 maxlen: 24
85.133.221.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.224.0/22 maxlen: 22
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.128.0/17 maxlen: 24
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.128.0/22 maxlen: 22
85.133.134.0/24 maxlen: 24
85.133.135.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.133.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.140.0/24 maxlen: 24
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.146.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.147.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.156.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.153.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.162.0/24 maxlen: 24
85.133.163.0/24 maxlen: 24
85.133.164.0/24 maxlen: 24
85.133.160.0/24 maxlen: 24
85.133.161.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.168.0/22 maxlen: 24
185.41.0.0/24 maxlen: 24
185.41.1.0/24 maxlen: 24
185.41.2.0/24 maxlen: 24
185.41.3.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 23 Nov 2023 15:39:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:99:e4:e3:51:9f:72:e7:c5:64:15:24:92:d1:79:e1:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Nov 4 10:33:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=184fd9be465a06fb1e3f53c74f125f59d2e21467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:36:43:e8:14:05:02:6c:2f:d5:48:85:b7:82:
d2:71:f6:d6:7b:55:d4:14:39:42:52:8c:f1:0d:2c:
56:b0:eb:d8:2d:0e:6c:b6:a5:34:d6:a8:e6:81:4c:
91:30:64:d9:db:51:1a:4e:c6:45:78:2a:ce:6e:d7:
fc:62:b1:68:c3:c1:1e:7c:26:0d:af:f4:f3:7f:cb:
72:39:2c:4e:49:e5:ee:87:75:ad:fb:9c:76:9b:02:
b0:d4:60:78:84:97:dd:cd:39:80:70:0a:f2:ab:e7:
06:23:55:16:8a:46:ec:8a:74:78:dd:2c:14:e7:ad:
7b:86:23:25:86:aa:dd:74:61:43:c9:e9:f6:96:52:
86:af:cf:e8:d9:fd:46:38:14:58:92:c3:8d:8b:1c:
9e:77:60:c5:a0:15:89:26:ac:66:f7:f2:cc:9b:a2:
37:bb:d0:91:7f:e7:6d:8a:fa:fa:26:f9:50:27:52:
df:ac:75:6e:0e:68:3c:99:57:45:90:2d:5f:66:a7:
e7:86:fb:19:a1:21:fd:48:be:0e:29:a3:7b:d3:f5:
94:18:c6:49:32:11:3b:fd:01:66:29:d3:29:f8:07:
84:eb:a0:e5:f9:2e:5c:c1:e2:24:2c:ed:df:20:56:
7c:3a:99:a0:0e:22:87:1e:25:96:34:57:f0:fa:71:
e1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4F:D9:BE:46:5A:06:FB:1E:3F:53:C7:4F:12:5F:59:D2:E2:14:67
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/GE_ZvkZaBvseP1PHTxJfWdLiFGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/17
185.41.0.0/22
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
6f:88:8e:55:04:16:18:95:64:c9:f3:23:a6:4e:f9:4e:8d:50:
6b:90:83:4a:0d:be:fe:2a:a4:f6:06:b9:1a:88:b6:03:d9:22:
0f:e3:cc:30:53:d1:5e:7d:ca:01:9e:54:52:4b:96:d7:09:51:
d1:86:2b:fb:fa:99:a7:dc:db:bf:3a:c7:81:9b:b7:59:ba:a4:
b4:e2:c3:b5:b8:d5:02:73:8d:7f:37:3a:f0:be:49:df:90:27:
25:47:e1:12:44:23:3c:36:ce:f9:c2:f4:66:bf:48:7b:b3:ee:
56:ad:5a:d4:12:14:10:b5:81:a3:c6:af:2b:1b:59:67:ec:60:
3c:ec:36:d3:09:be:47:47:e0:60:a5:f8:31:10:97:2c:2e:d8:
0d:b2:a7:a8:a1:82:6e:02:cb:f3:bd:1e:72:55:ed:ac:24:a1:
39:35:f6:f9:a3:74:11:26:6a:ca:c2:5e:f0:2a:75:d9:6c:1c:
79:c3:2c:17:c4:02:2b:a2:69:0c:d5:cd:da:8b:d1:16:5a:a5:
8f:dc:97:a9:d2:e8:7d:9d:73:7e:8f:39:cc:2d:50:08:7f:fa:
09:e7:85:ef:38:3f:fe:e9:fd:67:37:ad:bf:b2:91:f5:c9:6f:
87:fd:88:43:a4:1f:60:e2:a1:85:da:35:3d:66:d2:5e:17:66:
0e:66:d8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org