Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/75cfaa-59dc-4821-86b5-415cb5f0ba7e/1/0b0wRTWzg5hJYk1b5lk0YY6yAwY.roa
File: 0b0wRTWzg5hJYk1b5lk0YY6yAwY.roa (raw, json)
Hash identifier: /IUtpKwWxiE98Ar6HUcBW7a57R6qp4OFQldTO/so0T4=
Subject key identifier: D1:BD:30:45:35:B3:83:98:49:62:4D:5B:E6:59:34:61:8E:B2:03:06
Certificate issuer: /CN=8d2ec5b40c7172754255d626bf6c9213a3dafe6f
Certificate serial: 018572311CE167B742AE0C5B041E46BE3AB3
Authority key identifier: 8D:2E:C5:B4:0C:71:72:75:42:55:D6:26:BF:6C:92:13:A3:DA:FE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jS7FtAxxcnVCVdYmv2ySE6Pa_m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/75cfaa-59dc-4821-86b5-415cb5f0ba7e/1/0b0wRTWzg5hJYk1b5lk0YY6yAwY.roa
Signing time: Mon 02 Jan 2023 11:14:59 +0000
ROA not before: Mon 02 Jan 2023 11:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13138
IP address blocks: 213.148.64.0/23 maxlen: 23
213.148.64.0/24 maxlen: 24
213.148.64.0/20 maxlen: 20
213.148.64.0/19 maxlen: 19
213.148.64.0/22 maxlen: 22
213.148.64.0/21 maxlen: 21
213.148.65.0/24 maxlen: 24
213.148.68.0/22 maxlen: 22
213.148.66.0/24 maxlen: 24
213.148.66.0/23 maxlen: 23
213.148.67.0/24 maxlen: 24
213.148.68.0/24 maxlen: 24
213.148.68.0/23 maxlen: 23
213.148.69.0/24 maxlen: 24
213.148.70.0/24 maxlen: 24
213.148.70.0/23 maxlen: 23
213.148.71.0/24 maxlen: 24
213.148.77.0/24 maxlen: 24
213.148.72.0/22 maxlen: 22
213.148.73.0/24 maxlen: 24
213.148.72.0/21 maxlen: 21
213.148.72.0/23 maxlen: 23
213.148.74.0/23 maxlen: 23
213.148.74.0/24 maxlen: 24
213.148.75.0/24 maxlen: 24
213.148.72.0/24 maxlen: 24
213.148.76.0/24 maxlen: 24
213.148.76.0/23 maxlen: 23
213.148.76.0/22 maxlen: 22
213.148.78.0/24 maxlen: 24
213.148.78.0/23 maxlen: 23
213.148.80.0/23 maxlen: 23
213.148.80.0/21 maxlen: 21
213.148.84.0/22 maxlen: 22
213.148.84.0/24 maxlen: 24
213.148.84.0/23 maxlen: 23
213.148.85.0/24 maxlen: 24
213.148.80.0/20 maxlen: 20
213.148.80.0/22 maxlen: 22
213.148.80.0/24 maxlen: 24
213.148.81.0/24 maxlen: 24
213.148.79.0/24 maxlen: 24
213.148.82.0/24 maxlen: 24
213.148.83.0/24 maxlen: 24
213.148.82.0/23 maxlen: 23
213.148.86.0/23 maxlen: 23
213.148.87.0/24 maxlen: 24
213.148.88.0/24 maxlen: 24
213.148.88.0/23 maxlen: 23
213.148.88.0/22 maxlen: 22
213.148.89.0/24 maxlen: 24
213.148.90.0/23 maxlen: 23
213.148.90.0/24 maxlen: 24
213.148.91.0/24 maxlen: 24
213.148.88.0/21 maxlen: 21
213.148.86.0/24 maxlen: 24
213.148.92.0/24 maxlen: 24
213.148.92.0/23 maxlen: 23
213.148.92.0/22 maxlen: 22
213.148.93.0/24 maxlen: 24
213.148.94.0/23 maxlen: 23
213.148.94.0/24 maxlen: 24
213.148.95.0/24 maxlen: 24
2a0d:5580::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:1c:e1:67:b7:42:ae:0c:5b:04:1e:46:be:3a:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d2ec5b40c7172754255d626bf6c9213a3dafe6f
Validity
Not Before: Jan 2 11:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1bd304535b3839849624d5be65934618eb20306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e4:85:1e:18:4a:0e:cb:fd:ab:1d:2f:aa:90:
1e:4d:4e:e5:ce:0b:fd:e5:bd:7d:fc:b3:78:ed:ec:
1b:12:24:3b:eb:4a:08:23:7a:15:12:6a:0b:25:90:
d0:f4:90:1d:1d:e3:64:be:5f:ba:e2:47:e7:5e:d5:
ac:5e:af:b3:ea:3e:38:fc:88:6d:2f:6b:f4:c4:1d:
35:54:78:2a:59:53:16:1a:cd:21:60:5c:68:58:09:
29:ce:77:68:95:69:7e:bd:8d:10:ec:b5:a5:af:25:
12:61:b2:b1:fe:6f:96:4e:b1:a4:d7:e9:ad:d7:d1:
c6:9d:28:95:55:6f:b0:72:ba:25:8a:e3:5b:df:dd:
0f:7f:e2:8d:82:d6:78:34:f6:a6:61:25:09:53:c3:
63:21:7a:9e:29:3f:9f:03:cd:cf:c9:0c:a0:16:d5:
23:01:d1:54:23:41:5a:d6:8b:89:26:8f:64:c2:55:
ea:c4:a1:c8:94:0a:bd:38:0c:25:b5:f0:ba:eb:6e:
de:ea:db:47:3e:84:8a:7c:e7:73:3a:2a:43:9b:a5:
cf:56:8c:ab:c4:49:bb:95:d7:7c:f5:75:18:01:98:
74:2f:ae:35:a6:ba:27:0e:3d:f7:2b:d6:4a:8d:61:
da:1f:6d:11:f6:4d:29:89:b1:c1:0c:fb:4e:d3:c6:
88:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BD:30:45:35:B3:83:98:49:62:4D:5B:E6:59:34:61:8E:B2:03:06
X509v3 Authority Key Identifier:
keyid:8D:2E:C5:B4:0C:71:72:75:42:55:D6:26:BF:6C:92:13:A3:DA:FE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jS7FtAxxcnVCVdYmv2ySE6Pa_m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/75cfaa-59dc-4821-86b5-415cb5f0ba7e/1/0b0wRTWzg5hJYk1b5lk0YY6yAwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/75cfaa-59dc-4821-86b5-415cb5f0ba7e/1/jS7FtAxxcnVCVdYmv2ySE6Pa_m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.148.64.0/19
IPv6:
2a0d:5580::/29
Signature Algorithm: sha256WithRSAEncryption
90:b0:5a:20:b3:0c:40:4b:b0:86:bc:59:76:9c:a5:e5:af:16:
a9:7d:d1:ca:53:21:b4:bd:9a:5f:3f:e4:19:58:25:5c:16:40:
e6:28:91:6c:d2:e0:57:21:fa:4a:f6:25:bb:1d:22:6a:8d:7a:
f4:5b:8a:f9:8f:3e:99:c0:05:65:4a:13:98:7e:c7:48:cf:06:
4a:72:b8:d9:75:f3:2e:61:c5:ab:f9:7f:46:72:a8:c8:c0:a8:
fb:95:6a:d8:a6:6e:42:73:c3:87:ee:d4:bf:b5:ff:a4:89:0e:
c9:1a:97:45:8a:56:75:95:6c:72:ea:56:d5:1e:a1:b5:0b:8d:
15:70:14:15:a0:77:de:61:c3:59:33:9c:79:98:0f:bc:23:1b:
56:8b:c5:c9:90:01:a8:b7:c6:d7:6c:be:b5:6e:52:c5:f4:84:
51:a9:ce:31:96:1f:ee:f4:ba:cf:96:63:a2:36:27:c3:41:9e:
20:bd:67:b5:0b:75:e4:35:14:54:6c:d4:8a:38:65:0c:66:32:
9c:3f:52:45:fe:bd:5e:ea:a0:0e:bd:e4:b3:2c:ff:22:7d:e7:
1f:c6:33:f1:54:c4:f0:54:13:43:38:c8:a1:82:62:10:8f:42:
7b:fb:86:49:7f:ac:0e:81:0d:ad:1e:a1:b5:9c:e6:0f:62:94:
96:0c:fc:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:00 2024 by rpki-client on console-fra.rpki-client.org