Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/gDn2046dCIrbJe-ubbI_NnA3Cdo.roa
File: gDn2046dCIrbJe-ubbI_NnA3Cdo.roa (raw, json)
Hash identifier: CAkQTYxCD6/NDcRUCxbIJlQlTm7i0n0vF7VBtitaL1s=
Subject key identifier: 80:39:F6:D3:8E:9D:08:8A:DB:25:EF:AE:6D:B2:3F:36:70:37:09:DA
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 0190030C4657A557DCDD82F17F839D5C196B
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/gDn2046dCIrbJe-ubbI_NnA3Cdo.roa
Signing time: Mon 10 Jun 2024 16:47:34 +0000
ROA not before: Mon 10 Jun 2024 16:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136787
IP address blocks: 82.140.135.0/24 maxlen: 24
82.140.136.0/24 maxlen: 24
82.140.137.0/24 maxlen: 24
82.140.142.0/24 maxlen: 24
82.140.144.0/24 maxlen: 24
82.140.145.0/24 maxlen: 24
82.140.147.0/24 maxlen: 24
82.140.149.0/24 maxlen: 24
82.140.151.0/24 maxlen: 24
82.140.154.0/24 maxlen: 24
82.140.155.0/24 maxlen: 24
82.140.157.0/24 maxlen: 24
82.140.162.0/24 maxlen: 24
82.140.163.0/24 maxlen: 24
82.140.164.0/24 maxlen: 24
82.140.167.0/24 maxlen: 24
82.140.168.0/24 maxlen: 24
82.140.172.0/24 maxlen: 24
82.140.173.0/24 maxlen: 24
82.140.174.0/24 maxlen: 24
82.140.175.0/24 maxlen: 24
82.140.181.0/24 maxlen: 24
82.140.186.0/24 maxlen: 24
82.140.190.0/24 maxlen: 24
84.46.165.0/24 maxlen: 24
84.46.166.0/24 maxlen: 24
84.46.174.0/24 maxlen: 24
86.38.2.0/24 maxlen: 24
86.38.44.0/24 maxlen: 24
86.38.46.0/24 maxlen: 24
86.38.91.0/24 maxlen: 24
86.38.157.0/24 maxlen: 24
86.38.206.0/24 maxlen: 24
86.38.207.0/24 maxlen: 24
86.38.224.0/24 maxlen: 24
86.38.231.0/24 maxlen: 24
89.116.0.0/24 maxlen: 24
89.116.18.0/24 maxlen: 24
89.116.40.0/24 maxlen: 24
89.116.55.0/24 maxlen: 24
89.116.57.0/24 maxlen: 24
89.116.79.0/24 maxlen: 24
89.116.94.0/24 maxlen: 24
89.116.95.0/24 maxlen: 24
89.116.98.0/24 maxlen: 24
89.116.142.0/24 maxlen: 24
89.116.145.0/24 maxlen: 24
89.116.194.0/24 maxlen: 24
89.116.195.0/24 maxlen: 24
89.116.196.0/24 maxlen: 24
89.116.197.0/24 maxlen: 24
89.116.199.0/24 maxlen: 24
89.116.201.0/24 maxlen: 24
89.116.204.0/24 maxlen: 24
89.116.205.0/24 maxlen: 24
89.116.206.0/24 maxlen: 24
89.116.207.0/24 maxlen: 24
89.116.216.0/24 maxlen: 24
89.116.217.0/24 maxlen: 24
89.116.219.0/24 maxlen: 24
89.116.222.0/24 maxlen: 24
89.116.251.0/24 maxlen: 24
89.116.254.0/24 maxlen: 24
89.117.4.0/24 maxlen: 24
89.117.34.0/24 maxlen: 24
89.117.131.0/24 maxlen: 24
89.117.189.0/24 maxlen: 24
89.117.191.0/24 maxlen: 24
89.117.230.0/24 maxlen: 24
89.117.231.0/24 maxlen: 24
89.117.244.0/24 maxlen: 24
217.9.251.0/24 maxlen: 24
217.9.252.0/24 maxlen: 24
217.9.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jun 2024 22:22:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:03:0c:46:57:a5:57:dc:dd:82:f1:7f:83:9d:5c:19:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jun 10 16:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8039f6d38e9d088adb25efae6db23f36703709da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3e:b3:ae:c4:e4:cc:b8:f8:c2:00:97:be:9e:
1e:18:7a:87:f7:96:73:5a:b5:1d:23:57:48:50:58:
ff:65:ca:67:4a:88:ff:a0:9a:8e:be:bf:82:d4:8a:
1e:56:c8:76:be:bb:be:45:de:b0:bd:ce:57:cc:87:
ba:c7:15:5d:04:45:16:4c:3e:78:7e:71:06:2d:09:
e8:dc:87:ce:be:58:54:83:56:e7:a0:da:cc:32:e4:
98:15:8e:46:e1:47:60:84:4d:f7:40:44:b6:9e:6c:
64:31:8a:a7:07:fb:6e:98:61:52:af:26:a9:2e:70:
80:a6:30:ed:1c:53:f1:cd:b3:a4:eb:92:1f:8a:27:
0d:15:43:80:d2:98:d7:50:25:b4:d4:4e:7e:b1:02:
ae:1a:d8:50:52:b5:56:bc:81:12:fe:41:30:2f:ae:
53:8d:4b:76:8c:22:f1:89:12:4b:50:00:56:9d:e8:
6a:86:49:5b:7f:a8:ec:51:8b:3b:d5:78:7b:9c:41:
7a:f9:01:2a:62:fe:fd:77:9f:01:79:4e:19:55:28:
4d:4f:b5:c3:20:50:19:fb:f5:7a:18:55:1a:2d:ae:
b3:d7:42:06:f3:1d:a6:7c:c8:d4:a8:ff:53:41:3d:
36:7e:95:48:1d:80:f4:8b:a2:f3:1b:f9:db:e7:5a:
04:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:39:F6:D3:8E:9D:08:8A:DB:25:EF:AE:6D:B2:3F:36:70:37:09:DA
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/gDn2046dCIrbJe-ubbI_NnA3Cdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.135.0-82.140.137.255
82.140.142.0/24
82.140.144.0/23
82.140.147.0/24
82.140.149.0/24
82.140.151.0/24
82.140.154.0/23
82.140.157.0/24
82.140.162.0-82.140.164.255
82.140.167.0-82.140.168.255
82.140.172.0/22
82.140.181.0/24
82.140.186.0/24
82.140.190.0/24
84.46.165.0-84.46.166.255
84.46.174.0/24
86.38.2.0/24
86.38.44.0/24
86.38.46.0/24
86.38.91.0/24
86.38.157.0/24
86.38.206.0/23
86.38.224.0/24
86.38.231.0/24
89.116.0.0/24
89.116.18.0/24
89.116.40.0/24
89.116.55.0/24
89.116.57.0/24
89.116.79.0/24
89.116.94.0/23
89.116.98.0/24
89.116.142.0/24
89.116.145.0/24
89.116.194.0-89.116.197.255
89.116.199.0/24
89.116.201.0/24
89.116.204.0/22
89.116.216.0/23
89.116.219.0/24
89.116.222.0/24
89.116.251.0/24
89.116.254.0/24
89.117.4.0/24
89.117.34.0/24
89.117.131.0/24
89.117.189.0/24
89.117.191.0/24
89.117.230.0/23
89.117.244.0/24
217.9.251.0-217.9.253.255
Signature Algorithm: sha256WithRSAEncryption
33:96:ee:25:85:d9:61:c6:3d:7a:10:49:09:30:8f:51:ad:b6:
1d:ae:b0:a3:3e:ab:e8:55:34:a4:a6:b9:da:a9:5e:11:02:3b:
13:28:0a:a8:6b:38:48:e4:29:e9:2e:78:24:bc:17:81:c1:05:
a1:2a:92:04:b6:4b:b3:ca:d6:d0:ae:f7:4a:db:a0:47:52:3a:
ab:f0:45:c0:19:e2:ee:26:2c:b5:f9:cf:59:ea:2f:40:b7:98:
7f:22:38:fe:87:e8:9e:a4:68:c3:a4:99:61:72:23:a4:05:29:
8b:b0:7e:18:5f:fe:23:8b:e8:c7:78:e8:33:25:8a:79:9a:59:
e4:d9:51:26:8b:8a:a5:8e:97:37:fe:88:04:03:b5:9f:7a:2a:
b8:56:56:b6:fe:bc:fc:a0:80:0c:83:bc:2f:ad:08:69:e3:12:
70:72:27:7f:29:82:55:b6:ac:94:75:2d:55:61:71:1d:1c:b3:
87:21:b2:25:a7:f8:49:00:60:33:c3:3a:c8:3d:2b:d1:fd:e2:
73:2a:63:0b:22:16:87:f9:d9:b0:f0:9a:13:86:4e:b3:a0:b0:
33:ad:54:4e:63:43:8d:c2:6e:41:1c:40:32:4c:de:cd:30:87:
8a:00:d1:cc:ab:64:2c:76:c1:9b:85:b1:a0:16:82:2a:6a:07:
8a:f0:1e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 23:31:09 2024 by rpki-client on console-ams.rpki-client.org