Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/gI-ouBNNUKtJntPdm6E_aaVxgAU.roa
File: gI-ouBNNUKtJntPdm6E_aaVxgAU.roa (raw, json)
Hash identifier: yiXgRtQwL2SGIqcDFDPShYTbjMwZITCr7wqo2E42GUc=
Subject key identifier: 80:8F:A8:B8:13:4D:50:AB:49:9E:D3:DD:9B:A1:3F:69:A5:71:80:05
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018B2591372EB906C76A88FFE4B1A2643995
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/gI-ouBNNUKtJntPdm6E_aaVxgAU.roa
Signing time: Thu 12 Oct 2023 20:25:55 +0000
ROA not before: Thu 12 Oct 2023 20:25:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 37.153.132.0/24 maxlen: 24
188.240.83.0/24 maxlen: 24
84.247.20.0/24 maxlen: 24
89.37.106.0/24 maxlen: 24
91.250.244.0/24 maxlen: 24
62.112.30.0/24 maxlen: 24
89.34.171.0/24 maxlen: 24
89.44.210.0/24 maxlen: 24
89.42.215.0/24 maxlen: 24
46.102.174.0/24 maxlen: 24
89.37.128.0/24 maxlen: 24
176.223.181.0/24 maxlen: 24
89.40.43.0/24 maxlen: 24
176.223.190.0/24 maxlen: 24
94.177.113.0/24 maxlen: 24
94.177.118.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:25:91:37:2e:b9:06:c7:6a:88:ff:e4:b1:a2:64:39:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Oct 12 20:25:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=808fa8b8134d50ab499ed3dd9ba13f69a5718005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cd:67:dd:83:f4:de:be:b5:04:93:63:b5:e2:
09:13:68:51:4a:74:6e:0a:6f:fe:88:48:b5:ef:39:
97:b6:3f:03:05:a8:58:15:70:e2:53:e3:29:b9:34:
34:ab:a4:0b:06:b8:09:6c:95:b0:41:4a:9c:29:88:
62:79:2c:ea:11:1e:0a:cd:ef:40:24:7e:0d:1c:10:
5e:87:3b:f8:52:91:5a:19:bc:94:f7:66:cf:65:d6:
cc:c2:1d:65:37:fb:9b:1e:96:6c:b1:9e:bf:a6:a3:
2d:99:8b:2e:72:0a:d4:32:9c:d3:6d:ab:ca:27:30:
03:72:98:d7:8d:df:d9:de:fa:34:9f:e1:12:41:61:
fd:6e:45:60:0b:31:07:ed:60:f6:cc:b0:87:2f:52:
be:b0:93:61:c8:4b:83:ed:f0:28:d5:62:0a:e8:25:
71:17:8f:24:e6:72:22:fa:5b:e7:fa:cd:37:8c:f5:
99:e4:2f:fd:14:b8:33:05:4d:db:21:f1:d7:0a:20:
b5:8a:da:ed:6a:8b:8b:5d:0e:bc:61:80:8a:26:44:
88:a5:71:e4:3a:2d:42:2c:55:ae:33:92:8a:a5:31:
b3:5e:95:2c:18:e0:04:06:b7:bc:8f:8b:ef:21:8a:
ca:49:ad:d0:f9:f4:7d:cd:70:6b:eb:3f:91:11:b9:
d1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8F:A8:B8:13:4D:50:AB:49:9E:D3:DD:9B:A1:3F:69:A5:71:80:05
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/gI-ouBNNUKtJntPdm6E_aaVxgAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.132.0/24
46.102.174.0/24
62.112.30.0/24
84.247.20.0/24
89.34.171.0/24
89.37.106.0/24
89.37.128.0/24
89.40.43.0/24
89.42.215.0/24
89.44.210.0/24
91.250.244.0/24
94.177.113.0/24
94.177.118.0/24
176.223.181.0/24
176.223.190.0/24
188.240.83.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e5:06:76:26:76:94:1a:62:0e:a6:39:b5:c8:2a:44:e9:98:
25:fe:4a:91:d0:f8:07:6b:b7:f1:eb:03:24:82:b3:61:ac:69:
f7:82:60:30:e0:6c:a9:4e:ee:1b:b3:f4:9e:5a:e4:d5:c9:ef:
e4:23:3a:56:3c:04:9a:cc:5c:16:f2:79:88:c0:16:42:c1:00:
44:c3:e3:ca:8c:03:93:5b:42:a5:4b:57:39:68:f9:ef:2d:08:
49:5c:38:ec:c3:48:ca:ae:0f:02:9c:02:03:a8:f9:60:67:87:
99:82:0c:6b:4e:35:80:b0:9f:57:36:6f:e5:57:8f:c3:fd:7b:
2c:b5:66:c7:f1:9f:97:ff:9b:1a:6e:17:6c:0c:23:42:47:57:
45:e7:35:87:13:f3:bf:5d:1e:e2:44:75:f1:01:fa:ac:12:c7:
a8:74:87:4a:9b:f7:e8:8d:f9:ae:f8:6d:76:72:bc:31:46:a8:
ed:2e:58:13:27:7d:90:dc:94:43:6d:dd:71:bc:48:cb:8f:d9:
7f:2b:54:81:5c:ef:e1:aa:88:c7:42:10:81:83:d7:46:5a:9b:
83:5d:c7:5e:7c:13:10:39:a9:7a:cd:e9:ab:70:87:c4:1f:6a:
2c:9a:66:91:59:0d:95:d0:24:2f:19:45:8c:ac:84:de:a5:aa:
36:94:f6:d5
-----BEGIN CERTIFICATE-----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Generated at Fri Oct 20 06:55:02 2023 by rpki-client on console-fra.rpki-client.org