Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/fXjppO21heKVOrgMj-lTLXsh_mM.roa
File: fXjppO21heKVOrgMj-lTLXsh_mM.roa (raw, json)
Hash identifier: E9GPPGsqoUPy4JV4uA2tCERn2/LGW++WqTZcDI/VaOU=
Subject key identifier: 7D:78:E9:A4:ED:B5:85:E2:95:3A:B8:0C:8F:E9:53:2D:7B:21:FE:63
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01896441F581CB2F90F2CDD133CF0B2CE9E3
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/fXjppO21heKVOrgMj-lTLXsh_mM.roa
Signing time: Mon 17 Jul 2023 14:29:51 +0000
ROA not before: Mon 17 Jul 2023 14:29:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 217.19.192.0/20 maxlen: 24
88.141.0.0/16 maxlen: 24
79.80.0.0/12 maxlen: 24
185.147.204.0/22 maxlen: 24
79.174.192.0/18 maxlen: 18
85.168.0.0/14 maxlen: 24
79.174.232.0/21 maxlen: 21
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 24
88.140.0.0/16 maxlen: 24
62.39.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
62.106.128.0/17 maxlen: 24
217.112.224.0/20 maxlen: 24
212.39.128.0/19 maxlen: 19
86.66.127.0/24 maxlen: 24
62.241.64.0/18 maxlen: 24
81.220.0.0/16 maxlen: 24
81.65.0.0/16 maxlen: 16
78.112.0.0/12 maxlen: 24
37.64.0.0/13 maxlen: 24
81.185.160.0/20 maxlen: 20
81.185.160.0/21 maxlen: 21
80.125.0.0/16 maxlen: 24
81.185.168.0/21 maxlen: 21
84.205.128.0/19 maxlen: 24
212.30.96.0/19 maxlen: 24
84.205.144.0/20 maxlen: 20
80.118.4.0/24 maxlen: 24
81.64.0.0/14 maxlen: 24
80.118.0.0/15 maxlen: 24
195.132.0.0/16 maxlen: 24
195.98.96.0/19 maxlen: 24
84.4.0.0/14 maxlen: 24
77.192.0.0/12 maxlen: 24
86.64.0.0/12 maxlen: 24
80.70.32.0/20 maxlen: 20
80.124.0.0/16 maxlen: 24
212.198.0.0/16 maxlen: 24
91.151.112.0/20 maxlen: 20
213.144.192.0/19 maxlen: 19
217.70.80.0/20 maxlen: 24
77.144.0.0/12 maxlen: 24
195.3.0.0/18 maxlen: 24
77.137.196.0/22 maxlen: 24
77.137.200.0/21 maxlen: 24
77.137.208.0/20 maxlen: 24
81.185.0.0/16 maxlen: 24
84.96.0.0/13 maxlen: 24
77.136.172.0/24 maxlen: 24
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 24
89.2.0.0/15 maxlen: 24
194.183.192.0/19 maxlen: 19
62.62.128.0/17 maxlen: 24
141.170.216.0/21 maxlen: 21
213.245.0.0/16 maxlen: 24
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 24
213.169.160.0/19 maxlen: 24
109.0.0.0/11 maxlen: 24
93.0.0.0/11 maxlen: 24
81.1.0.0/18 maxlen: 24
84.55.128.0/18 maxlen: 18
62.129.160.0/19 maxlen: 24
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 24
46.35.0.0/19 maxlen: 19
88.136.0.0/14 maxlen: 24
80.236.0.0/17 maxlen: 24
77.128.0.0/13 maxlen: 24
212.94.160.0/19 maxlen: 24
83.141.128.0/17 maxlen: 24
77.134.204.0/24 maxlen: 24
213.128.32.0/19 maxlen: 24
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 24
195.7.96.0/19 maxlen: 19
91.68.0.0/22 maxlen: 22
85.68.0.0/15 maxlen: 24
213.223.0.0/16 maxlen: 24
91.68.0.0/14 maxlen: 24
82.216.0.0/16 maxlen: 24
195.115.0.0/16 maxlen: 24
88.142.0.0/16 maxlen: 24
78.155.128.0/19 maxlen: 19
2a02:8400::/48 maxlen: 48
2a02:8400:14::/48 maxlen: 48
2a02:8440:5000::/36 maxlen: 36
2a02:8400:11::/48 maxlen: 48
2a00:ec80::/32 maxlen: 32
2a02:8400:13::/48 maxlen: 48
2a00:6200::/29 maxlen: 48
2a00:7180::/32 maxlen: 32
2a02:8400::/25 maxlen: 48
2a02:8400:12::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 17 Jul 2023 17:10:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:41:f5:81:cb:2f:90:f2:cd:d1:33:cf:0b:2c:e9:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 17 14:29:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d78e9a4edb585e2953ab80c8fe9532d7b21fe63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a8:f2:3a:3e:59:ab:0b:f2:75:59:16:6c:73:
a0:fa:8d:48:88:f1:96:65:ce:b8:1e:26:28:f2:11:
cc:88:d5:de:69:23:1c:ed:87:ed:f3:2f:d6:58:fa:
bd:99:ba:cd:bf:4d:4d:d3:ce:c0:c8:b6:c8:1b:5f:
19:da:00:73:8b:87:9f:a3:01:87:ab:a4:16:94:cb:
4e:40:2c:dc:b6:28:e6:4d:89:47:d9:21:97:2e:f6:
83:b3:68:e3:cd:68:6c:db:55:b9:93:fa:d9:63:07:
59:00:c0:65:8d:13:04:fa:ed:bd:42:b5:cc:22:74:
6e:fa:62:56:4c:ba:e9:0e:75:72:f5:15:5c:c4:01:
5c:c0:69:07:18:7d:d6:b3:5a:b4:6f:ba:bd:82:46:
27:74:de:5a:d1:c6:23:11:d4:89:55:32:db:48:fb:
e6:ae:10:c4:07:76:68:10:30:6b:55:ef:61:e8:48:
5f:8b:5b:c7:ec:3a:d9:7b:12:73:99:fd:a7:10:a1:
21:26:99:ea:6e:27:04:01:09:d6:13:4a:a1:de:0e:
16:23:52:07:f5:08:0a:2c:27:dc:f9:29:1a:75:90:
c8:18:68:0e:85:a6:d2:91:68:57:8e:24:c6:eb:80:
e2:e7:23:5b:6d:4f:1f:75:b4:d5:74:46:c1:80:cf:
5d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:78:E9:A4:ED:B5:85:E2:95:3A:B8:0C:8F:E9:53:2D:7B:21:FE:63
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/fXjppO21heKVOrgMj-lTLXsh_mM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.203.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a00:ec80::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
6d:6e:80:82:1a:ce:f4:66:f1:65:a7:d7:41:e1:5a:3c:74:de:
ec:a6:4a:ff:93:fd:23:8d:dc:d9:cf:38:3e:00:07:b0:2e:62:
01:22:92:ae:c1:09:4e:e1:7f:5d:42:42:47:96:f8:95:42:10:
fd:ee:0c:6a:1c:01:57:c4:1f:f2:be:f9:d0:25:0f:be:b2:2a:
a3:8a:6a:5a:2a:ab:64:61:67:8c:30:25:4b:75:78:f1:6b:e5:
f3:2d:2e:27:a4:79:23:a8:ed:42:d9:50:cd:ee:98:29:69:7a:
d3:ef:18:bd:9e:43:2c:c7:ee:67:fc:81:52:40:ce:44:9c:f0:
c3:26:09:1e:aa:15:eb:ab:0f:d7:06:c5:c4:c9:02:e4:62:5d:
f5:ae:a0:c8:d7:e8:7d:66:15:bc:e6:11:a0:8e:a6:6c:e6:25:
47:54:b6:79:f0:10:43:25:08:05:e9:d1:62:16:e0:de:cb:b2:
a2:c4:b4:ed:85:91:31:3a:b7:32:28:10:70:a7:51:b8:c7:b0:
75:3b:72:b7:26:74:5f:36:c6:0e:8b:f6:5a:88:97:60:31:dd:
d6:2d:1f:df:5a:ff:d5:da:52:d7:95:16:6d:89:bc:1e:e3:15:
1a:56:91:36:1c:2f:3e:ad:46:1b:00:7d:99:45:1d:57:37:35:
56:96:e7:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org