Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/fA-vugn8e-l4wRnrxRCDf2_0hRY.roa
File: fA-vugn8e-l4wRnrxRCDf2_0hRY.roa (raw, json)
Hash identifier: josXMr7kYp6cP4TrEQH+9bsJnZ6XSBoVFW8pmDCfWVk=
Subject key identifier: 7C:0F:AF:BA:09:FC:7B:E9:78:C1:19:EB:C5:10:83:7F:6F:F4:85:16
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 0186358EACC15C271313CC7641543588FC2C
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/fA-vugn8e-l4wRnrxRCDf2_0hRY.roa
Signing time: Thu 09 Feb 2023 09:43:07 +0000
ROA not before: Thu 09 Feb 2023 09:43:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
80.70.32.0/20 maxlen: 20
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
91.151.112.0/20 maxlen: 20
213.144.192.0/19 maxlen: 19
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
79.174.192.0/18 maxlen: 18
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
79.174.232.0/21 maxlen: 21
81.185.0.0/16 maxlen: 16
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 16
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
62.62.128.0/17 maxlen: 17
141.170.216.0/21 maxlen: 21
212.39.128.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
86.66.127.0/24 maxlen: 24
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
213.203.64.0/18 maxlen: 18
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
93.0.0.0/11 maxlen: 11
109.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
84.55.128.0/18 maxlen: 18
62.129.160.0/19 maxlen: 19
78.112.0.0/12 maxlen: 12
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
46.35.0.0/19 maxlen: 19
88.136.0.0/14 maxlen: 14
37.64.0.0/13 maxlen: 13
77.128.0.0/13 maxlen: 13
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/21 maxlen: 21
81.185.160.0/20 maxlen: 20
80.125.0.0/16 maxlen: 16
81.185.168.0/21 maxlen: 21
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
212.30.96.0/19 maxlen: 19
84.205.144.0/20 maxlen: 20
80.118.4.0/24 maxlen: 24
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
195.7.96.0/19 maxlen: 19
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
78.155.128.0/19 maxlen: 19
88.142.0.0/16 maxlen: 16
2a02:8400::/48 maxlen: 48
2a02:8400:14::/48 maxlen: 48
2a00:7180::/32 maxlen: 32
2a02:8440:5000::/36 maxlen: 36
2a02:8400:11::/48 maxlen: 48
2a02:8400::/25 maxlen: 25
2a02:8400:12::/48 maxlen: 48
2a02:8400:13::/48 maxlen: 48
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 31 Mar 2023 06:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:8e:ac:c1:5c:27:13:13:cc:76:41:54:35:88:fc:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Feb 9 09:43:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c0fafba09fc7be978c119ebc510837f6ff48516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4d:0d:14:21:d1:79:54:24:93:08:99:2f:a6:
4a:ab:14:e3:37:a6:eb:37:76:fd:e8:c1:40:86:0a:
6b:1a:3f:23:ce:9c:34:48:13:16:7a:eb:2a:71:2e:
ef:ec:a0:82:c7:da:f6:99:e2:2c:fb:d6:a8:49:c3:
0b:f1:da:50:18:52:0d:34:1b:5f:4a:68:97:df:aa:
15:af:17:8c:9b:7a:52:ed:08:1f:c2:fd:42:74:e3:
87:4b:2f:39:4c:ef:c2:a4:fd:aa:b5:26:76:f2:1f:
ce:77:38:03:be:1a:5d:e6:a8:de:13:67:99:dd:82:
77:0d:ce:f3:2d:02:55:47:b2:ad:a2:2b:71:44:63:
82:84:2a:ca:16:bc:7f:d9:18:fa:04:ed:fc:55:27:
24:9f:ce:47:74:2e:89:cc:48:f3:7e:e5:ea:e2:55:
e1:8f:a2:12:9c:a1:6c:86:b2:fa:94:46:c7:f4:1a:
c3:8d:58:b6:1d:8a:6c:e3:ce:db:09:ca:79:cb:c9:
b1:17:4b:a2:36:c2:5d:a5:66:b9:6c:d3:4c:be:6d:
47:69:03:c7:95:62:dc:4e:aa:82:ec:be:76:fd:bb:
fd:a6:47:c3:c1:cc:32:cd:3b:ca:22:f3:5a:67:09:
05:91:4c:62:6b:57:a0:fe:4d:c7:00:df:43:52:c9:
d6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:0F:AF:BA:09:FC:7B:E9:78:C1:19:EB:C5:10:83:7F:6F:F4:85:16
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/fA-vugn8e-l4wRnrxRCDf2_0hRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.203.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
17:1f:cb:16:2c:79:a7:39:31:39:73:b0:63:82:71:0b:5d:eb:
55:86:39:59:46:42:5b:22:ba:5e:0b:09:19:e2:1b:0b:ee:14:
dc:b9:59:62:7a:7a:01:fe:85:46:5f:57:8d:56:58:54:0e:fa:
44:50:82:e1:ba:a4:89:2c:c6:38:f7:34:be:58:0e:25:08:f1:
80:f7:4e:5a:1c:14:4e:4c:23:b8:13:92:b5:e6:62:29:ae:27:
cf:7b:67:57:35:a8:e4:2a:af:16:82:17:a9:9c:00:e7:92:1e:
5d:3f:c8:4b:05:68:8f:4d:7b:1e:db:cc:05:79:d8:53:40:ad:
b0:10:c2:bb:c6:63:ca:ce:3c:99:23:bb:64:c4:3d:fa:ee:02:
72:0f:bd:4f:2b:f3:60:09:0a:91:30:45:e0:fe:fd:68:2f:d2:
df:34:c2:b8:cb:de:93:4f:c4:ad:73:db:b0:83:13:0f:52:c1:
8e:07:b8:fc:ca:4e:87:b8:36:86:95:8b:81:f5:2a:95:4e:8e:
2a:7f:d9:2b:62:1f:bd:39:9f:e8:ef:74:40:4c:28:5c:38:85:
2c:22:32:94:f0:72:9e:7e:88:a8:3f:1b:40:b2:c5:01:f1:9c:
9c:23:77:5b:af:8c:58:0e:78:b6:f0:70:19:10:fa:06:ff:18:
19:5b:0a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org