Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/bfRbpYLhNIU4jRT-E5fFZLFylfo.roa
File: bfRbpYLhNIU4jRT-E5fFZLFylfo.roa (raw, json)
Hash identifier: jTWmVQiulI6tMdYk1dYBxej7z1KZ8K5FL8/3OOz6ptc=
Subject key identifier: 6D:F4:5B:A5:82:E1:34:85:38:8D:14:FE:13:97:C5:64:B1:72:95:FA
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0188B49A2F771861F206B14C621DB7049432
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/bfRbpYLhNIU4jRT-E5fFZLFylfo.roa
Signing time: Tue 13 Jun 2023 11:53:03 +0000
ROA not before: Tue 13 Jun 2023 11:53:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12741
IP address blocks: 77.252.0.0/14 maxlen: 14
159.205.0.0/16 maxlen: 16
193.19.104.0/23 maxlen: 23
89.171.0.0/16 maxlen: 16
62.87.128.0/17 maxlen: 17
178.16.116.0/24 maxlen: 24
178.16.121.0/24 maxlen: 24
178.16.125.0/24 maxlen: 24
62.181.160.0/19 maxlen: 19
213.134.128.0/19 maxlen: 19
87.204.0.0/15 maxlen: 15
62.244.128.0/19 maxlen: 19
82.143.128.0/18 maxlen: 18
62.89.64.0/18 maxlen: 18
77.65.188.0/24 maxlen: 24
77.65.193.0/24 maxlen: 24
77.65.209.0/24 maxlen: 24
213.241.0.0/17 maxlen: 17
178.36.0.0/15 maxlen: 15
213.238.64.0/18 maxlen: 18
213.241.89.0/24 maxlen: 24
83.238.0.0/16 maxlen: 16
62.233.128.0/17 maxlen: 17
213.17.244.0/24 maxlen: 24
81.210.0.0/17 maxlen: 17
5.226.135.0/24 maxlen: 24
213.186.64.0/19 maxlen: 19
77.65.134.0/24 maxlen: 24
212.106.0.0/19 maxlen: 19
77.65.155.0/24 maxlen: 24
77.65.171.0/24 maxlen: 24
213.146.32.0/19 maxlen: 19
78.8.0.0/14 maxlen: 14
185.58.160.0/22 maxlen: 23
62.111.128.0/17 maxlen: 17
85.128.0.0/17 maxlen: 17
37.128.0.0/17 maxlen: 17
62.148.64.0/19 maxlen: 19
84.40.128.0/17 maxlen: 17
81.168.128.0/17 maxlen: 17
81.219.0.0/16 maxlen: 16
193.91.16.0/20 maxlen: 20
195.114.160.0/19 maxlen: 19
85.202.54.0/24 maxlen: 24
85.202.59.0/24 maxlen: 24
213.195.128.0/18 maxlen: 18
217.30.128.0/19 maxlen: 19
213.17.128.0/17 maxlen: 17
5.226.92.0/24 maxlen: 24
213.216.64.0/18 maxlen: 18
193.192.173.0/24 maxlen: 24
93.159.0.0/18 maxlen: 18
193.192.181.0/24 maxlen: 24
193.192.190.0/24 maxlen: 24
193.192.188.0/24 maxlen: 24
62.111.250.0/24 maxlen: 24
5.226.64.0/18 maxlen: 18
87.105.0.0/16 maxlen: 16
2001:41b0::/32 maxlen: 48
2001:41b0:22b:100::/56 maxlen: 56
2001:16b0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 13 Jun 2023 12:27:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:9a:2f:77:18:61:f2:06:b1:4c:62:1d:b7:04:94:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jun 13 11:53:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6df45ba582e13485388d14fe1397c564b17295fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6a:ba:e3:bf:fe:25:6b:46:07:6f:52:ea:87:
ed:89:43:95:03:90:5a:24:e4:4b:2a:7c:f2:17:9e:
77:86:e3:27:a4:d7:eb:11:d9:a0:5c:1d:e5:4b:bd:
ef:13:8b:a6:f9:dd:2b:30:66:ea:9a:ce:ed:7c:37:
e7:5e:0e:42:76:d0:be:00:7a:d2:e9:98:0f:25:35:
65:71:94:5e:ab:b6:5f:7f:67:df:ab:02:0b:88:34:
8e:e1:f9:4a:f6:f3:ab:76:03:42:e2:ce:e5:8b:04:
9e:7a:3f:aa:1d:fb:3b:25:62:1a:b2:d2:3f:73:23:
81:e6:33:23:8f:e7:7e:80:5c:b4:87:1f:68:31:c2:
b9:9e:1d:a2:a1:6d:5c:bc:b9:cb:44:f1:5f:b7:23:
87:28:cc:ef:ee:b1:84:dd:0e:d0:31:7f:97:7b:d8:
9d:1d:3c:c9:4f:2d:53:d0:4c:b7:15:ea:36:79:79:
bc:4c:36:96:6b:c6:ad:09:af:5a:a9:05:80:04:da:
31:80:3c:97:3b:36:a6:38:72:b8:2e:01:1c:04:56:
a2:4a:41:98:4c:da:b0:ed:53:68:11:6a:06:67:c0:
88:4e:15:56:a7:4c:66:f4:09:86:b6:02:97:d3:3f:
48:4b:55:2b:be:8d:53:d3:07:bf:5d:36:57:77:71:
ff:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F4:5B:A5:82:E1:34:85:38:8D:14:FE:13:97:C5:64:B1:72:95:FA
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/bfRbpYLhNIU4jRT-E5fFZLFylfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.64.0/18
5.226.135.0/24
37.128.0.0/17
62.87.128.0/17
62.89.64.0/18
62.111.128.0/17
62.148.64.0/19
62.181.160.0/19
62.233.128.0/17
62.244.128.0/19
77.65.134.0/24
77.65.155.0/24
77.65.171.0/24
77.65.188.0/24
77.65.193.0/24
77.65.209.0/24
77.252.0.0/14
78.8.0.0/14
81.168.128.0/17
81.210.0.0/17
81.219.0.0/16
82.143.128.0/18
83.238.0.0/16
84.40.128.0/17
85.128.0.0/17
85.202.54.0/24
85.202.59.0/24
87.105.0.0/16
87.204.0.0/15
89.171.0.0/16
93.159.0.0/18
159.205.0.0/16
178.16.116.0/24
178.16.121.0/24
178.16.125.0/24
178.36.0.0/15
185.58.160.0/22
193.19.104.0/23
193.91.16.0/20
193.192.173.0/24
193.192.181.0/24
193.192.188.0/24
193.192.190.0/24
195.114.160.0/19
212.106.0.0/19
213.17.128.0/17
213.134.128.0/19
213.146.32.0/19
213.186.64.0/19
213.195.128.0/18
213.216.64.0/18
213.238.64.0/18
213.241.0.0/17
217.30.128.0/19
IPv6:
2001:16b0::/32
2001:41b0::/32
Signature Algorithm: sha256WithRSAEncryption
5e:6c:fb:6b:ff:b0:5f:c7:96:ae:e4:05:95:91:76:31:30:e3:
6c:a7:e9:d5:0b:e8:6b:09:15:c7:10:8d:a1:cd:51:85:d7:2c:
4f:8f:6d:8e:81:c0:b7:d6:cb:48:5a:41:14:9d:98:e3:9e:ed:
be:23:27:22:f6:90:ab:c6:16:17:a5:47:d2:8f:85:4b:4b:9a:
e3:f8:e1:1d:e1:d5:a7:a8:09:e5:6b:3a:40:d9:5d:17:b3:2c:
60:1c:1a:c1:a7:19:7b:fd:e7:1e:73:fb:b3:a8:30:35:e0:66:
5a:71:6c:d9:bd:bf:63:09:80:02:e6:bf:d2:e6:a5:16:89:cc:
11:3b:e9:dd:e0:61:9e:56:4d:8c:60:c3:3a:9b:5e:46:d6:f0:
2b:74:73:be:87:4b:2b:89:c9:70:55:4b:0a:9c:ac:68:b4:6d:
33:56:2e:b5:47:da:f8:87:cd:4c:53:1f:0f:18:06:10:10:d7:
29:bb:07:24:4c:bf:cc:a5:61:26:6f:2c:d3:4d:e7:71:39:b8:
5d:94:7b:23:e7:08:66:47:c0:8b:f5:34:bd:42:53:4e:65:f5:
da:0a:81:ca:7b:ab:9c:85:3a:d3:4f:79:26:3d:40:fa:98:37:
04:57:d8:4a:e6:95:f0:d2:fe:7c:ae:d6:36:d9:b7:a5:fc:7f:
5c:d1:a2:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org