Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/PvphnizXUasSusBuc9HpxQw2z8c.roa
File: PvphnizXUasSusBuc9HpxQw2z8c.roa (raw, json)
Hash identifier: TT2bp9btU03YkNaBoIySc5VFT3x+QdaXku6XTAtBXQI=
Subject key identifier: 3E:FA:61:9E:2C:D7:51:AB:12:BA:C0:6E:73:D1:E9:C5:0C:36:CF:C7
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018C3E32A2F3C4A6A5EE4C5A68086EE3D45A
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/PvphnizXUasSusBuc9HpxQw2z8c.roa
Signing time: Wed 06 Dec 2023 08:15:55 +0000
ROA not before: Wed 06 Dec 2023 08:15:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34170
IP address blocks: 158.181.36.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.35.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.33.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.32.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
80.69.48.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.58.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.54.0/24 maxlen: 24
80.69.55.0/24 maxlen: 24
80.69.52.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.61.0/24 maxlen: 24
80.69.62.0/24 maxlen: 24
80.69.59.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
80.69.63.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.95.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
92.39.88.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.89.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.245.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.246.0/24 maxlen: 24
91.135.248.0/24 maxlen: 24
91.135.247.0/24 maxlen: 24
91.135.251.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.249.0/24 maxlen: 24
91.135.250.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
91.135.255.0/24 maxlen: 24
91.135.254.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
212.47.136.0/22 maxlen: 22
212.47.152.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
212.47.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Dec 2023 21:58:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:32:a2:f3:c4:a6:a5:ee:4c:5a:68:08:6e:e3:d4:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Dec 6 08:15:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3efa619e2cd751ab12bac06e73d1e9c50c36cfc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bc:39:fb:2b:0f:0f:02:f9:00:e7:79:82:7d:
f7:0f:c2:94:bb:7b:36:28:9c:43:14:52:8e:76:e6:
1c:a2:8e:de:c9:e8:53:fd:b8:fa:07:2c:4a:25:af:
61:08:1a:b8:9e:0e:44:d7:e1:2b:47:49:73:15:95:
52:81:d4:d1:99:a9:30:a2:18:02:7b:7f:54:cf:dd:
b6:bd:0d:04:c1:b3:fe:38:a3:ba:2b:10:25:15:4d:
f3:5b:88:66:64:42:a1:a2:09:06:7d:89:36:a5:93:
c4:25:70:c8:e9:b9:45:b8:9b:54:be:5f:3b:91:1f:
02:d8:c5:0c:62:7d:58:d2:4d:f8:67:ca:ea:10:ca:
5c:4a:17:bd:f6:0b:ad:62:0d:f1:6b:f4:5d:03:65:
39:34:06:4d:e5:9a:cd:91:d5:8b:33:77:fc:bb:18:
04:9f:0e:cf:5a:9d:67:66:d7:6b:c0:01:09:57:5f:
6a:dd:2d:82:7f:d6:4e:af:c5:a8:a5:65:42:42:7a:
8a:77:f9:06:3a:ef:39:41:9b:51:08:0c:04:88:cf:
18:03:4c:3f:00:00:a4:5b:dc:0d:69:95:2a:85:be:
56:77:e7:98:3b:58:9b:73:eb:97:cb:07:5b:bc:80:
6d:7d:c8:86:58:9e:a0:cb:54:bd:37:78:a6:0d:09:
cf:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FA:61:9E:2C:D7:51:AB:12:BA:C0:6E:73:D1:E9:C5:0C:36:CF:C7
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/PvphnizXUasSusBuc9HpxQw2z8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/20
91.135.240.0/20
92.39.88.0/21
158.181.32.0/21
158.181.44.0/22
185.105.196.0/22
212.47.136.0/22
212.47.152.0/24
212.47.154.0/24
212.47.157.0-212.47.159.255
Signature Algorithm: sha256WithRSAEncryption
15:de:ac:90:60:c7:5e:f3:a7:f3:de:17:fa:c7:0e:89:a9:21:
0a:59:ea:46:45:24:d7:09:a7:e5:a0:3e:4e:9d:e8:9d:8f:e7:
fe:f0:88:c3:46:94:9c:e7:8a:7a:01:6e:fe:fd:ae:0d:10:28:
c2:7f:33:ce:19:c1:f1:f0:ad:e8:10:4e:3b:15:c9:6e:3b:8e:
dc:2e:f1:be:a6:c7:15:fc:8e:58:8a:58:39:1a:93:4b:c2:de:
ed:19:d8:07:19:b9:6c:f6:ae:35:e6:16:a8:db:88:92:c8:b7:
b7:57:3f:e9:1a:62:b5:6a:e1:61:65:21:3c:3e:8a:a1:4c:a8:
ec:08:aa:1e:cb:4a:b2:0a:62:22:b9:f5:c7:68:d9:64:11:d1:
1a:a7:2d:90:e2:77:b3:ef:b4:c0:8f:f5:cc:7f:5b:ef:b1:08:
7d:6d:4c:9f:c7:1b:4a:dd:f3:a5:5c:9d:8b:c6:27:d0:6d:03:
c3:08:6e:f2:e7:0b:68:85:3a:32:32:64:a9:ea:45:56:0a:24:
30:e2:de:3e:4b:58:8a:5f:51:14:64:f6:4e:03:85:46:d4:e5:
0a:25:87:20:58:6a:bf:ab:67:3a:b0:be:f2:3f:0b:da:ec:66:
27:28:19:db:dc:4d:76:5f:a6:3e:4c:49:f7:98:a0:d9:9e:80:
6b:aa:66:9c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:51 2024 by rpki-client on console-ams.rpki-client.org