Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/5ttDOrAwoQkHX7f4Hj23j3F7yKo.roa
File: 5ttDOrAwoQkHX7f4Hj23j3F7yKo.roa (raw, json)
Hash identifier: 1xZFqqsVxnAhVmUSDyYuZR0ZgB4UMMIfoMuC37IEpZ8=
Subject key identifier: E6:DB:43:3A:B0:30:A1:09:07:5F:B7:F8:1E:3D:B7:8F:71:7B:C8:AA
Certificate issuer: /CN=505127723ea0cfd0724713b291734caa353e20ea
Certificate serial: 018BCA338A16154D2496DAD927401A1282A7
Authority key identifier: 50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/5ttDOrAwoQkHX7f4Hj23j3F7yKo.roa
Signing time: Mon 13 Nov 2023 19:40:57 +0000
ROA not before: Mon 13 Nov 2023 19:40:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46261
IP address blocks: 185.214.242.0/23 maxlen: 24
185.225.12.0/23 maxlen: 24
185.225.14.0/23 maxlen: 24
185.147.156.0/22 maxlen: 24
195.245.74.0/23 maxlen: 24
185.147.158.0/24 maxlen: 24
79.110.176.0/21 maxlen: 24
79.110.181.0/24 maxlen: 24
160.238.96.0/22 maxlen: 24
185.238.115.0/24 maxlen: 24
121.46.124.0/22 maxlen: 24
185.214.240.0/23 maxlen: 24
185.214.240.0/24 maxlen: 24
103.205.84.0/22 maxlen: 24
185.157.232.0/22 maxlen: 24
185.235.120.0/22 maxlen: 24
185.235.123.0/24 maxlen: 24
185.235.122.0/24 maxlen: 24
85.8.148.0/22 maxlen: 24
185.227.254.0/24 maxlen: 24
185.227.254.0/23 maxlen: 24
185.214.140.0/22 maxlen: 24
185.214.142.0/23 maxlen: 24
193.187.180.0/22 maxlen: 24
185.228.44.0/22 maxlen: 24
103.207.160.0/22 maxlen: 24
103.207.163.0/24 maxlen: 24
185.227.252.0/23 maxlen: 24
185.227.252.0/24 maxlen: 24
103.203.40.0/22 maxlen: 24
193.31.112.0/22 maxlen: 24
193.31.114.0/24 maxlen: 24
185.176.88.0/22 maxlen: 24
185.176.90.0/24 maxlen: 24
185.213.16.0/23 maxlen: 24
185.213.18.0/23 maxlen: 24
59.152.124.0/22 maxlen: 24
91.132.84.0/24 maxlen: 24
91.132.85.0/24 maxlen: 24
91.132.86.0/24 maxlen: 24
91.132.87.0/24 maxlen: 24
195.216.148.0/22 maxlen: 24
185.190.56.0/22 maxlen: 24
193.176.116.0/22 maxlen: 24
217.18.56.0/22 maxlen: 24
61.14.224.0/22 maxlen: 24
193.163.35.0/24 maxlen: 24
185.158.136.0/22 maxlen: 24
194.50.192.0/22 maxlen: 24
185.145.44.0/22 maxlen: 24
185.202.44.0/23 maxlen: 24
185.202.46.0/23 maxlen: 24
185.219.20.0/22 maxlen: 24
185.219.23.0/24 maxlen: 24
185.242.185.0/24 maxlen: 24
185.118.135.0/24 maxlen: 24
185.209.128.0/24 maxlen: 24
185.209.128.0/23 maxlen: 24
185.209.130.0/23 maxlen: 24
185.196.24.0/23 maxlen: 24
185.196.26.0/23 maxlen: 24
85.202.172.0/22 maxlen: 24
85.202.173.0/24 maxlen: 24
185.206.22.0/23 maxlen: 24
185.118.132.0/22 maxlen: 24
185.105.10.0/24 maxlen: 24
185.206.20.0/24 maxlen: 24
185.206.20.0/23 maxlen: 24
2a07:a900::/29 maxlen: 128
2a07:4580::/29 maxlen: 29
2a07:4580:b0d::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ca:33:8a:16:15:4d:24:96:da:d9:27:40:1a:12:82:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505127723ea0cfd0724713b291734caa353e20ea
Validity
Not Before: Nov 13 19:40:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6db433ab030a109075fb7f81e3db78f717bc8aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:94:32:65:32:a2:23:ac:9d:66:d4:94:0f:88:
cd:09:84:8f:4b:b8:4f:ad:d9:05:c9:12:9f:24:c0:
6a:4d:b3:ca:2f:82:12:72:ba:53:42:00:ae:af:ff:
e0:40:c0:64:09:05:80:c5:3f:f2:b3:8c:3e:19:d5:
b7:a9:c7:03:70:8f:d8:ff:43:f3:61:14:92:51:81:
b7:22:9d:38:7e:a1:ba:dd:ae:6e:40:88:b4:be:39:
fd:14:40:cd:41:c0:9a:37:da:61:4a:f5:35:2c:9c:
c2:36:de:22:98:48:cc:2c:75:2a:1b:bd:24:29:c7:
54:73:53:dd:b9:21:03:3c:cb:f5:a2:30:1b:60:72:
24:49:d6:0c:db:f0:4c:2a:4a:72:04:fd:8d:ff:20:
49:12:13:9a:d0:59:46:64:32:0d:8a:8d:fe:fb:c8:
f0:ad:fd:1c:dc:e6:28:d3:74:f8:0a:6c:81:39:fe:
d7:a5:78:d9:ac:b1:f6:c8:9f:0b:4c:78:33:7f:17:
1a:47:f7:48:b3:a1:9d:e4:51:42:33:96:46:ee:61:
da:35:4b:d6:32:65:3c:da:2d:de:d8:6f:1d:46:40:
41:36:72:73:7a:ca:3b:c3:38:49:69:f1:ab:5d:cb:
8e:d3:ef:65:32:ac:f7:3d:2a:27:5d:c9:90:39:1f:
fb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DB:43:3A:B0:30:A1:09:07:5F:B7:F8:1E:3D:B7:8F:71:7B:C8:AA
X509v3 Authority Key Identifier:
keyid:50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/5ttDOrAwoQkHX7f4Hj23j3F7yKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
59.152.124.0/22
61.14.224.0/22
79.110.176.0/21
85.8.148.0/22
85.202.172.0/22
91.132.84.0/22
103.203.40.0/22
103.205.84.0/22
103.207.160.0/22
121.46.124.0/22
160.238.96.0/22
185.105.10.0/24
185.118.132.0/22
185.145.44.0/22
185.147.156.0/22
185.157.232.0/22
185.158.136.0/22
185.176.88.0/22
185.190.56.0/22
185.196.24.0/22
185.202.44.0/22
185.206.20.0/22
185.209.128.0/22
185.213.16.0/22
185.214.140.0/22
185.214.240.0/22
185.219.20.0/22
185.225.12.0/22
185.227.252.0/22
185.228.44.0/22
185.235.120.0/22
185.238.115.0/24
185.242.185.0/24
193.31.112.0/22
193.163.35.0/24
193.176.116.0/22
193.187.180.0/22
194.50.192.0/22
195.216.148.0/22
195.245.74.0/23
217.18.56.0/22
IPv6:
2a07:4580::/29
2a07:a900::/29
Signature Algorithm: sha256WithRSAEncryption
06:a3:42:58:dc:e1:2f:fc:e7:14:0f:88:d8:a4:5d:62:41:d8:
7f:32:e9:4d:92:85:f6:41:42:e7:e5:a0:0c:66:3d:47:48:98:
58:10:c2:2d:d3:20:2f:83:ea:14:65:5c:a2:a2:45:94:57:57:
15:4b:4d:dc:65:22:ec:ae:20:32:e2:f8:a7:04:cd:f9:63:8c:
b3:96:09:75:38:56:df:bb:9e:6f:3c:6e:ff:b9:29:0c:b9:04:
14:19:0c:44:9b:25:7f:f9:91:e0:ea:b1:71:a4:61:b1:76:d9:
78:f5:5c:a5:22:d5:f7:63:75:03:20:bb:e5:73:97:b6:04:c4:
3f:b5:84:a5:ec:ae:55:8d:12:33:8b:98:7a:a2:19:41:4d:66:
b8:d3:94:7b:2d:5e:7d:aa:76:5e:2c:17:f8:ae:5c:7f:a2:f6:
53:fa:51:3c:2e:9c:45:fc:c3:aa:00:87:bf:33:a8:88:8f:c3:
e6:bb:7b:8e:e5:c0:61:39:03:96:6f:94:e3:0b:3f:6e:c3:28:
31:cb:62:ff:0b:f0:53:8d:4b:ed:dd:2e:4a:e1:46:40:c8:c5:
af:37:e0:bc:2e:ef:28:69:0f:4d:b8:04:62:38:61:18:76:bb:
b0:95:c4:8a:27:cf:02:f5:7d:1e:e2:a0:40:67:09:e8:68:4a:
37:a3:8d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:41 2024 by rpki-client on console-fra.rpki-client.org