Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/mBRFz0-nfwNiZM9PNFOL3XXVmLw.roa
File: mBRFz0-nfwNiZM9PNFOL3XXVmLw.roa (raw, json)
Hash identifier: MPNfpdpl7/9AiqBJHr90SyXPi6NSlyr06D2STX3OeSM=
Subject key identifier: 98:14:45:CF:4F:A7:7F:03:62:64:CF:4F:34:53:8B:DD:75:D5:98:BC
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018B1ABC16C6C304C17E895E323798465935
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/mBRFz0-nfwNiZM9PNFOL3XXVmLw.roa
Signing time: Tue 10 Oct 2023 17:56:56 +0000
ROA not before: Tue 10 Oct 2023 17:56:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34170
IP address blocks: 158.181.36.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.35.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.33.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.32.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
80.69.48.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.58.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.54.0/24 maxlen: 24
80.69.55.0/24 maxlen: 24
80.69.52.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.61.0/24 maxlen: 24
80.69.62.0/24 maxlen: 24
80.69.59.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
80.69.63.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.95.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
92.39.88.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.89.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.245.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.246.0/24 maxlen: 24
91.135.248.0/24 maxlen: 24
91.135.247.0/24 maxlen: 24
91.135.251.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.249.0/24 maxlen: 24
91.135.250.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
91.135.255.0/24 maxlen: 24
91.135.254.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
212.47.136.0/22 maxlen: 22
212.47.140.0/22 maxlen: 22
212.47.144.0/22 maxlen: 22
212.47.152.0/24 maxlen: 24
212.47.148.0/22 maxlen: 22
212.47.154.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
212.47.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 23:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1a:bc:16:c6:c3:04:c1:7e:89:5e:32:37:98:46:59:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Oct 10 17:56:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=981445cf4fa77f036264cf4f34538bdd75d598bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:63:a6:a8:b5:fb:c3:b5:d9:2f:d0:f4:9f:9e:
7c:5f:46:7e:a1:1d:09:44:c2:df:7e:da:ec:da:e4:
c9:b9:6e:2d:6f:13:e4:9b:c0:ee:3d:f0:de:00:12:
17:79:d1:33:62:25:88:c5:3f:53:78:c3:92:7f:90:
88:9e:dd:f3:3b:6a:6a:de:47:bc:99:10:3c:39:75:
d6:b5:ee:98:d6:b3:fa:53:70:68:38:1d:7d:05:a7:
72:6f:b4:7f:bb:ab:fb:54:81:63:1f:60:ee:4a:4e:
d1:f7:44:46:44:83:aa:c5:88:5f:74:0d:7e:12:f2:
37:7f:ef:c2:cb:dc:85:80:cc:42:26:13:f6:35:ba:
26:00:80:d4:8d:cf:62:91:a1:5d:50:82:f1:b2:fb:
75:7a:25:70:12:ec:76:1a:64:04:f0:fc:1c:8d:6a:
83:87:a2:e4:c5:55:56:c3:22:31:a0:3e:69:e6:47:
4d:8f:47:c1:4b:09:37:4e:d1:9b:f3:84:54:94:d3:
01:2f:56:c1:4b:8b:dc:c1:b7:ec:d0:8c:f7:97:16:
bf:26:a1:d1:6a:92:75:b0:88:40:f5:1a:f4:95:fe:
1d:06:15:c5:ac:d2:b7:79:89:83:8b:09:0e:0e:be:
62:e3:04:e6:78:f4:39:42:cd:27:a9:e4:9c:e0:2d:
7b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:14:45:CF:4F:A7:7F:03:62:64:CF:4F:34:53:8B:DD:75:D5:98:BC
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/mBRFz0-nfwNiZM9PNFOL3XXVmLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/20
91.135.240.0/20
92.39.88.0/21
158.181.32.0/21
158.181.44.0/22
185.105.196.0/22
212.47.136.0-212.47.152.255
212.47.154.0/24
212.47.157.0-212.47.159.255
Signature Algorithm: sha256WithRSAEncryption
06:9a:ed:82:d6:72:9f:55:8b:1d:96:f0:9f:da:e2:ff:ba:9b:
41:c4:dd:c5:82:41:ea:9c:16:25:d9:7a:70:17:8a:f3:85:82:
e9:37:00:03:62:73:6c:cb:38:69:7c:01:99:7f:8d:5e:d8:5c:
d1:00:e6:10:55:73:c0:f1:f3:d5:ac:47:47:38:70:ce:8e:f7:
08:ce:30:97:50:b0:bb:33:f9:e9:7a:7e:fc:6e:7b:fe:4a:6e:
b0:d6:c6:04:e7:cd:42:01:a9:51:3c:0c:8d:3f:5d:05:9a:ff:
44:b1:e3:3a:0e:a9:7b:7e:e9:7f:94:b7:2a:82:16:51:bd:a6:
2b:f0:da:28:f1:4b:c8:fa:46:20:10:78:36:dd:79:e7:0d:65:
f6:17:a2:b2:a0:d7:5c:96:a6:c5:3c:17:1c:d7:2b:bf:05:dc:
02:9e:3b:7f:66:1f:5d:03:1a:d3:e9:15:c2:1a:87:f2:51:8b:
54:51:ab:94:ab:f5:3d:dd:d2:0c:3d:30:43:70:45:29:e2:a8:
a8:e4:d0:65:ff:06:a8:7c:d6:2e:dd:b6:f3:f9:8a:d4:22:bc:
58:d6:e7:6f:69:cb:fe:56:de:47:dc:26:69:f6:43:fa:57:28:
30:f7:f1:03:11:46:e1:db:eb:e7:ca:88:2d:07:1e:40:db:70:
f7:44:94:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:52 2024 by rpki-client on console-fra.rpki-client.org