Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/zNNLU6NIALQP6_EPiMkmxMbENuI.roa
File: zNNLU6NIALQP6_EPiMkmxMbENuI.roa (raw, json)
Hash identifier: ndjqBdpEpboSd7pz2UqrheXwzGH1zjDWgQTkdS0PhFQ=
Subject key identifier: CC:D3:4B:53:A3:48:00:B4:0F:EB:F1:0F:88:C9:26:C4:C6:C4:36:E2
Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Certificate serial: 0186E08794A50095076864CDC5585522105E
Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/zNNLU6NIALQP6_EPiMkmxMbENuI.roa
Signing time: Tue 14 Mar 2023 14:30:27 +0000
ROA not before: Tue 14 Mar 2023 14:30:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43350
IP address blocks: 185.107.44.0/22 maxlen: 22
109.201.128.0/19 maxlen: 19
185.107.45.0/24 maxlen: 24
185.107.56.0/22 maxlen: 22
185.107.68.0/22 maxlen: 22
185.107.80.0/22 maxlen: 22
185.107.37.0/24 maxlen: 24
185.107.36.0/24 maxlen: 24
185.107.38.0/24 maxlen: 24
212.92.112.0/21 maxlen: 21
212.92.120.0/22 maxlen: 22
212.92.124.0/23 maxlen: 23
92.114.100.0/24 maxlen: 24
92.114.100.0/22 maxlen: 22
89.38.160.0/22 maxlen: 22
85.159.232.0/21 maxlen: 24
46.166.176.0/20 maxlen: 24
37.143.32.0/21 maxlen: 24
185.107.92.0/22 maxlen: 22
185.107.100.0/22 maxlen: 24
185.107.116.0/22 maxlen: 24
46.166.128.0/19 maxlen: 24
212.92.104.0/21 maxlen: 21
185.11.144.0/24 maxlen: 24
37.156.228.0/24 maxlen: 24
188.209.57.0/24 maxlen: 24
188.209.56.0/24 maxlen: 24
37.153.168.0/22 maxlen: 22
77.247.176.0/24 maxlen: 24
77.247.176.0/21 maxlen: 21
5.104.136.0/21 maxlen: 24
185.7.76.0/22 maxlen: 24
176.126.232.0/24 maxlen: 24
176.126.233.0/24 maxlen: 24
2a00:1768::/32 maxlen: 36
Validation: Failed, certificate revoked on Wed 21 Jun 2023 14:11:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e0:87:94:a5:00:95:07:68:64:cd:c5:58:55:22:10:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Validity
Not Before: Mar 14 14:30:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccd34b53a34800b40febf10f88c926c4c6c436e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3e:2d:03:4a:e0:47:2c:1d:61:cd:da:96:e6:
89:f9:70:5f:74:7b:73:e5:f1:8d:95:1f:3d:da:86:
61:f0:79:42:87:ca:9e:58:23:5d:49:99:e3:09:8b:
72:ab:09:a6:25:88:f3:f1:a7:3d:da:96:6f:5e:f4:
7d:57:5c:e0:12:c6:f2:91:6f:07:99:6e:3b:f1:ce:
74:e2:e6:e7:2f:7c:af:be:81:58:41:e0:d1:d0:2b:
c7:3c:f7:35:10:bd:ad:98:b2:43:9d:68:3e:44:91:
53:05:5a:02:6d:fd:6c:ca:d1:16:92:6a:05:cb:69:
c1:9a:35:fd:5c:12:5f:46:dc:3f:a4:ca:55:76:19:
3d:3a:3e:09:c6:cf:68:5e:6b:e7:08:ae:28:b7:fd:
99:0f:3c:84:3c:04:16:0e:c7:b7:da:07:3e:53:90:
5e:56:7d:f2:63:e0:f0:73:89:23:f9:22:6a:a3:a4:
b7:f7:8a:c5:9b:42:d2:83:da:4f:7b:a2:5b:fd:c4:
ac:79:b0:c4:7c:eb:79:ce:aa:7f:9c:fc:f4:9e:08:
b1:08:fb:18:4e:d4:18:82:bc:e7:8a:7b:75:0a:76:
88:7a:76:c9:5b:a2:79:e4:11:98:74:9f:01:c6:67:
1e:1a:78:2c:86:c7:f1:09:66:47:77:85:4d:7c:10:
4f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D3:4B:53:A3:48:00:B4:0F:EB:F1:0F:88:C9:26:C4:C6:C4:36:E2
X509v3 Authority Key Identifier:
keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/zNNLU6NIALQP6_EPiMkmxMbENuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.136.0/21
37.143.32.0/21
37.153.168.0/22
37.156.228.0/24
46.166.128.0/19
46.166.176.0/20
77.247.176.0/21
85.159.232.0/21
89.38.160.0/22
92.114.100.0/22
109.201.128.0/19
176.126.232.0/23
185.7.76.0/22
185.11.144.0/24
185.107.36.0-185.107.38.255
185.107.44.0/22
185.107.56.0/22
185.107.68.0/22
185.107.80.0/22
185.107.92.0/22
185.107.100.0/22
185.107.116.0/22
188.209.56.0/23
212.92.104.0-212.92.125.255
IPv6:
2a00:1768::/32
Signature Algorithm: sha256WithRSAEncryption
10:a9:c1:52:bf:e4:51:c3:ad:a3:24:fb:19:78:f2:f1:3c:20:
4c:1e:59:86:97:df:a0:c0:af:0a:94:9f:e1:a3:e4:f3:a4:5c:
2e:19:5f:57:4b:16:a8:03:93:13:74:bb:f6:6f:cc:ad:da:b7:
81:d4:5f:00:33:c4:8d:64:89:66:05:05:05:12:0c:0d:66:12:
7f:ff:61:4b:87:dd:e5:9b:17:bc:7d:3e:6d:e5:1d:54:c4:b5:
bc:db:f6:73:35:3e:18:59:2b:02:22:79:bd:ef:e0:e5:60:25:
e4:55:90:56:7b:88:e6:f6:b5:9e:e0:d8:f2:27:6b:b7:73:97:
26:73:4f:96:69:6c:cd:f9:32:ed:c2:86:b5:c8:1f:8b:45:f0:
02:8e:fd:bc:6e:e7:43:9f:a5:17:62:b0:8e:3b:ad:4f:72:80:
1f:00:0d:89:77:bf:2f:84:e0:fb:5d:a7:67:5d:a4:82:08:b6:
13:a4:eb:1c:56:fe:34:03:48:7a:d0:d4:bc:f8:3d:35:92:98:
11:3a:47:28:dd:87:e1:92:cb:97:95:12:6e:cd:c4:1c:ee:05:
d2:19:f5:17:da:31:bb:0f:aa:61:d8:75:74:43:02:bd:d9:b5:
52:90:03:16:7d:cf:e4:86:d1:53:52:e1:ad:e5:a5:7d:48:18:
9c:c5:ac:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:12 2024 by rpki-client on console-ams.rpki-client.org