Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/6Tp87lI2vIJFFiyyqXfuU9MKDzY.roa
File: 6Tp87lI2vIJFFiyyqXfuU9MKDzY.roa (raw, json)
Hash identifier: uA3vu7foVtxGdOyCIh7brh69O2gd+sIA5gm0QajXeYg=
Subject key identifier: E9:3A:7C:EE:52:36:BC:82:45:16:2C:B2:A9:77:EE:53:D3:0A:0F:36
Certificate issuer: /CN=85aaadc568f6c928fd764d421d42c71cf5791954
Certificate serial: 018CC4922BA63CF326E5551AA27922267176
Authority key identifier: 85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/6Tp87lI2vIJFFiyyqXfuU9MKDzY.roa
Signing time: Mon 01 Jan 2024 10:29:22 +0000
ROA not before: Mon 01 Jan 2024 10:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44092
IP address blocks: 185.191.105.0/24 maxlen: 24
185.191.104.0/24 maxlen: 24
185.191.106.0/24 maxlen: 24
185.191.107.0/24 maxlen: 24
188.191.56.0/22 maxlen: 24
188.191.56.0/24 maxlen: 24
188.191.57.0/24 maxlen: 24
188.191.58.0/24 maxlen: 24
188.191.59.0/24 maxlen: 24
185.56.156.0/22 maxlen: 24
85.208.200.0/24 maxlen: 24
85.208.201.0/24 maxlen: 24
85.208.203.0/24 maxlen: 24
85.208.202.0/24 maxlen: 24
185.215.144.0/24 maxlen: 24
77.242.130.0/24 maxlen: 24
77.242.128.0/24 maxlen: 24
77.242.129.0/24 maxlen: 24
77.242.128.0/20 maxlen: 24
185.215.145.0/24 maxlen: 24
77.242.131.0/24 maxlen: 24
77.242.132.0/24 maxlen: 24
185.248.227.0/24 maxlen: 24
185.255.29.0/24 maxlen: 24
45.145.201.0/24 maxlen: 24
45.145.202.0/24 maxlen: 24
45.145.200.0/24 maxlen: 24
45.145.203.0/24 maxlen: 24
217.28.64.0/24 maxlen: 24
217.28.66.0/24 maxlen: 24
217.28.67.0/24 maxlen: 24
217.28.65.0/24 maxlen: 24
89.37.71.0/24 maxlen: 24
89.37.70.0/24 maxlen: 24
89.37.70.0/23 maxlen: 24
77.242.134.0/24 maxlen: 24
77.242.133.0/24 maxlen: 24
185.215.147.0/24 maxlen: 24
185.215.146.0/24 maxlen: 24
77.242.137.0/24 maxlen: 24
77.242.135.0/24 maxlen: 24
77.242.136.0/24 maxlen: 24
77.242.138.0/24 maxlen: 24
77.242.139.0/24 maxlen: 24
77.242.140.0/24 maxlen: 24
77.242.141.0/24 maxlen: 24
77.242.143.0/24 maxlen: 24
77.242.142.0/24 maxlen: 24
185.171.232.0/24 maxlen: 24
185.171.233.0/24 maxlen: 24
185.171.235.0/24 maxlen: 24
185.171.234.0/24 maxlen: 24
185.219.117.0/24 maxlen: 24
185.219.118.0/24 maxlen: 24
185.219.116.0/24 maxlen: 24
185.219.119.0/24 maxlen: 24
2a02:53e0::/32 maxlen: 32
2a0b:7b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 16 Jan 2024 14:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:2b:a6:3c:f3:26:e5:55:1a:a2:79:22:26:71:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85aaadc568f6c928fd764d421d42c71cf5791954
Validity
Not Before: Jan 1 10:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e93a7cee5236bc8245162cb2a977ee53d30a0f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ad:db:78:ed:23:91:ef:b1:db:58:0d:51:9b:
b8:a8:1b:aa:6b:1b:6a:85:94:ce:e8:9d:c3:d0:8a:
1a:63:42:62:52:b9:9b:3c:e0:af:b1:ca:b2:ad:a3:
a9:d9:56:4b:47:1a:5e:86:b6:14:5a:6a:20:a7:e9:
8b:11:ad:14:25:5c:07:f8:0f:f6:ed:d2:5e:51:fe:
e3:8c:47:c8:58:9f:c3:46:ab:1f:2b:32:98:5b:f0:
59:52:d4:97:24:c4:22:86:a6:45:f0:d2:b2:49:82:
e8:55:3e:91:66:c6:99:77:a1:2a:02:23:95:5b:f5:
33:87:fd:c4:4f:ed:ca:c7:b7:0b:86:de:9b:c7:73:
d1:b3:6f:b7:a5:fd:fa:f0:14:23:5a:38:e5:0d:a5:
fa:6a:8d:da:7e:48:c3:86:0e:f9:18:0f:94:b5:bd:
ff:a3:75:c1:20:0e:53:8c:09:73:73:4a:cd:9d:d3:
22:40:c1:75:5c:c8:b7:56:f6:23:b3:3d:09:e6:4e:
98:ba:86:a3:32:c9:fc:17:65:23:00:2c:77:38:32:
7e:6f:95:89:c2:87:72:46:2c:5a:ea:ce:ab:fc:1b:
b1:e3:50:ab:a6:e0:af:7f:5b:ef:67:13:e5:48:2d:
a0:6b:4a:9c:a9:7d:56:ae:2d:53:74:8a:4e:96:74:
e5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:3A:7C:EE:52:36:BC:82:45:16:2C:B2:A9:77:EE:53:D3:0A:0F:36
X509v3 Authority Key Identifier:
keyid:85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/6Tp87lI2vIJFFiyyqXfuU9MKDzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/haqtxWj2ySj9dk1CHULHHPV5GVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.200.0/22
77.242.128.0/20
85.208.200.0/22
89.37.70.0/23
185.56.156.0/22
185.171.232.0/22
185.191.104.0/22
185.215.144.0/22
185.219.116.0/22
185.248.227.0/24
185.255.29.0/24
188.191.56.0/22
217.28.64.0/22
IPv6:
2a02:53e0::/32
2a0b:7b80::/29
Signature Algorithm: sha256WithRSAEncryption
39:d8:d4:4a:64:01:c3:6c:4f:23:c9:f5:bf:3b:f2:66:ce:8d:
1e:32:b6:1c:c2:47:52:6f:44:9a:10:46:ef:e6:45:a8:81:bc:
f5:6a:73:07:16:86:88:65:30:e4:b7:c4:7b:cb:c4:01:14:66:
5d:00:ec:09:6b:58:f3:67:d9:b7:5c:29:c8:ed:06:f0:16:af:
51:5a:82:1f:ca:23:0d:e7:c0:30:35:84:0f:6c:fe:7b:6e:94:
d2:bc:93:37:5d:83:76:a4:b1:14:8a:51:df:54:c4:90:ac:68:
08:51:9b:86:bd:23:17:ca:80:2b:2a:e3:e8:17:22:8b:6f:cc:
c7:ed:a3:07:b0:5c:26:4b:3c:0c:2a:96:1b:8e:92:9f:4d:d7:
a8:98:6c:e2:ac:1f:e7:45:5b:9e:2e:bf:d4:e0:01:1e:a8:35:
0a:e6:6a:aa:4c:06:98:26:0f:b9:6e:26:49:ec:a7:08:fb:ac:
8b:3d:50:d6:04:55:ab:72:94:b1:d9:b9:bc:bc:8c:cc:06:89:
d9:2f:13:b6:75:62:0e:82:6f:73:04:82:f8:2b:7d:79:85:52:
8f:43:51:bc:71:d0:30:6d:c0:cc:b4:e6:44:2f:03:43:ac:32:
3b:ed:17:d6:b8:b9:49:7b:6b:02:ae:19:8b:e9:c4:87:a8:e7:
df:ab:16:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:08 2024 by rpki-client on console-fra.rpki-client.org