Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/2MpJZZmY-IUQv7M9esPGhW85osM.roa
File: 2MpJZZmY-IUQv7M9esPGhW85osM.roa (raw, json)
Hash identifier: r3+qdffGla8eWLLJaKvCliBN0aazJZvW1gL2K/dss7g=
Subject key identifier: D8:CA:49:65:99:98:F8:85:10:BF:B3:3D:7A:C3:C6:85:6F:39:A2:C3
Certificate issuer: /CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Certificate serial: 0188197C31B68D02E937B8F31E476C04AEB7
Authority key identifier: EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/2MpJZZmY-IUQv7M9esPGhW85osM.roa
Signing time: Sun 14 May 2023 08:59:09 +0000
ROA not before: Sun 14 May 2023 08:59:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203217
IP address blocks: 144.86.230.0/23 maxlen: 23
144.86.228.0/23 maxlen: 23
144.86.228.0/22 maxlen: 22
144.86.228.0/24 maxlen: 24
144.86.229.0/24 maxlen: 24
144.86.230.0/24 maxlen: 24
144.86.231.0/24 maxlen: 24
185.254.13.0/24 maxlen: 24
185.254.15.0/24 maxlen: 24
185.138.121.0/24 maxlen: 24
185.138.122.0/24 maxlen: 24
185.138.120.0/23 maxlen: 23
185.138.123.0/24 maxlen: 24
185.138.122.0/23 maxlen: 23
185.138.120.0/24 maxlen: 24
93.180.218.0/24 maxlen: 24
93.180.219.0/24 maxlen: 24
199.74.188.0/24 maxlen: 24
93.180.216.0/24 maxlen: 24
199.74.189.0/24 maxlen: 24
93.180.218.0/23 maxlen: 23
93.180.217.0/24 maxlen: 24
93.180.220.0/24 maxlen: 24
93.180.221.0/24 maxlen: 24
93.180.222.0/24 maxlen: 24
93.180.223.0/24 maxlen: 24
195.133.220.0/24 maxlen: 24
195.133.221.0/24 maxlen: 24
195.133.222.0/24 maxlen: 24
195.133.223.0/24 maxlen: 24
195.133.220.0/23 maxlen: 23
185.20.198.0/23 maxlen: 23
185.20.196.0/24 maxlen: 24
185.20.197.0/24 maxlen: 24
185.20.196.0/23 maxlen: 23
185.20.198.0/24 maxlen: 24
185.20.199.0/24 maxlen: 24
2a0b:1880::/48 maxlen: 48
2a0b:1880:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 May 2023 09:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:19:7c:31:b6:8d:02:e9:37:b8:f3:1e:47:6c:04:ae:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Validity
Not Before: May 14 08:59:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8ca49659998f88510bfb33d7ac3c6856f39a2c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:95:7d:c1:79:b9:0b:5d:97:a8:85:84:b0:30:
5f:26:be:07:96:8c:8c:88:52:4a:09:43:65:5b:ff:
96:e1:0e:06:47:aa:2d:9c:2a:fe:c7:51:f0:bb:dd:
45:27:0a:40:3b:35:19:fa:3c:09:a4:90:4e:26:3a:
d0:41:27:0b:ac:84:4f:95:e4:df:15:d0:f3:b8:8b:
24:26:d6:6f:7d:c9:9b:c0:c5:76:66:80:15:15:33:
29:16:8f:d0:d7:cf:3e:70:68:d5:cb:0d:07:64:e3:
08:20:ab:6c:4b:02:64:dc:2e:3d:c8:8a:f9:79:fe:
71:30:85:df:20:c7:14:0a:be:f1:04:f4:7b:44:ef:
d0:e7:f2:8f:ed:37:f6:79:99:54:5e:f1:9a:d0:a0:
0a:a1:bd:1e:02:41:2c:a0:7b:e1:5e:78:40:15:29:
c8:23:17:f9:4e:6b:8b:d7:17:c3:aa:9c:09:40:e8:
5d:d1:69:c5:18:b4:eb:34:6e:e9:f2:b5:35:51:ef:
d3:22:c4:33:60:16:e8:44:55:c7:a1:e9:9d:59:cb:
39:ef:64:b5:8a:bb:e6:33:85:9e:91:d2:da:55:cc:
d7:a9:41:72:28:3b:35:a8:8e:63:be:aa:24:0d:9f:
7c:59:fa:a2:b0:47:bb:ba:1e:36:bb:ea:0c:c7:5b:
fd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:CA:49:65:99:98:F8:85:10:BF:B3:3D:7A:C3:C6:85:6F:39:A2:C3
X509v3 Authority Key Identifier:
keyid:EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/2MpJZZmY-IUQv7M9esPGhW85osM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.216.0/21
144.86.228.0/22
185.20.196.0/22
185.138.120.0/22
185.254.13.0/24
185.254.15.0/24
195.133.220.0/22
199.74.188.0/23
IPv6:
2a0b:1880::/47
Signature Algorithm: sha256WithRSAEncryption
16:99:06:d0:e5:0f:e8:be:8f:12:fe:07:6d:c1:a7:b9:a2:2c:
2f:44:80:d5:5d:c3:99:8e:0d:66:58:5f:4f:fd:a8:6b:53:6c:
5b:a3:a0:5d:e5:11:ee:7c:68:e6:57:6c:79:62:a7:64:34:48:
cc:4e:87:02:58:79:ff:99:e7:34:3a:2d:8e:87:96:0d:6f:89:
b5:83:c6:2c:93:37:f4:fc:1e:fd:6c:97:62:8c:ef:f2:9e:8c:
61:d3:57:80:5c:1d:fa:fe:b0:06:a6:f0:f2:42:3c:69:0a:bc:
34:9f:f8:9c:02:0b:08:6e:7a:f5:c3:03:98:b6:ec:c7:6a:c9:
91:fc:ce:66:a0:81:4f:c7:46:f7:73:44:08:d3:b3:22:79:04:
b7:75:ed:1f:fd:e0:39:6c:79:9d:04:8d:fd:89:1f:98:b6:81:
54:21:1c:16:85:2e:9c:88:a7:22:fa:f9:36:7e:1c:09:5a:5f:
74:79:32:88:6d:f5:a2:3c:b4:9a:59:e2:95:70:2c:b2:9d:88:
df:4b:59:25:81:9a:37:30:20:de:0e:ce:74:24:10:c1:93:10:
97:d8:3d:0b:5b:56:6b:a9:76:70:63:78:7b:67:32:48:02:89:
7d:81:8f:3e:aa:c4:8e:6f:d3:2e:93:02:5a:87:c5:ea:cc:62:
6d:74:ef:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:27 2024 by rpki-client on console-ams.rpki-client.org