Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/hW_nVVS7tXBsPFskOn_u9wLRTQU.roa
File: hW_nVVS7tXBsPFskOn_u9wLRTQU.roa (raw, json)
Hash identifier: 3+/LBt1Ef+v7Spg9tEoZnbCAvf8XB+biDXnij6HHMlY=
Subject key identifier: 85:6F:E7:55:54:BB:B5:70:6C:3C:5B:24:3A:7F:EE:F7:02:D1:4D:05
Certificate issuer: /CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Certificate serial: 01856C5CAB0C69B0A1C0EA5F6DF618405093
Authority key identifier: 17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/hW_nVVS7tXBsPFskOn_u9wLRTQU.roa
Signing time: Sun 01 Jan 2023 08:04:50 +0000
ROA not before: Sun 01 Jan 2023 08:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44444
IP address blocks: 157.167.200.0/24 maxlen: 24
157.167.157.0/24 maxlen: 24
157.167.10.0/24 maxlen: 24
157.167.11.0/24 maxlen: 24
157.167.13.0/24 maxlen: 24
157.167.14.0/24 maxlen: 24
157.167.12.0/24 maxlen: 24
157.167.17.0/24 maxlen: 24
157.167.15.0/24 maxlen: 24
157.167.16.0/24 maxlen: 24
157.167.20.0/24 maxlen: 24
157.167.21.0/24 maxlen: 24
157.167.18.0/24 maxlen: 24
157.167.19.0/24 maxlen: 24
157.167.24.0/24 maxlen: 24
157.167.22.0/24 maxlen: 24
157.167.23.0/24 maxlen: 24
157.167.27.0/24 maxlen: 24
157.167.28.0/24 maxlen: 24
157.167.25.0/24 maxlen: 24
157.167.26.0/24 maxlen: 24
157.167.31.0/24 maxlen: 24
157.167.29.0/24 maxlen: 24
157.167.30.0/24 maxlen: 24
157.167.34.0/24 maxlen: 24
157.167.35.0/24 maxlen: 24
157.167.32.0/24 maxlen: 24
157.167.33.0/24 maxlen: 24
157.167.38.0/24 maxlen: 24
157.167.36.0/24 maxlen: 24
157.167.37.0/24 maxlen: 24
157.167.93.0/24 maxlen: 24
157.167.94.0/24 maxlen: 24
157.167.92.0/24 maxlen: 24
157.167.97.0/24 maxlen: 24
157.167.95.0/24 maxlen: 24
157.167.96.0/24 maxlen: 24
157.167.98.0/24 maxlen: 24
157.167.104.0/24 maxlen: 24
157.167.102.0/24 maxlen: 24
157.167.103.0/24 maxlen: 24
157.167.105.0/24 maxlen: 24
157.167.100.0/24 maxlen: 24
157.167.101.0/24 maxlen: 24
157.167.99.0/24 maxlen: 24
157.167.111.0/24 maxlen: 24
157.167.109.0/24 maxlen: 24
157.167.110.0/24 maxlen: 24
157.167.112.0/24 maxlen: 24
157.167.107.0/24 maxlen: 24
157.167.108.0/24 maxlen: 24
157.167.106.0/24 maxlen: 24
157.167.118.0/24 maxlen: 24
157.167.116.0/24 maxlen: 24
157.167.117.0/24 maxlen: 24
157.167.114.0/24 maxlen: 24
157.167.115.0/24 maxlen: 24
157.167.113.0/24 maxlen: 24
157.167.121.0/24 maxlen: 24
157.167.122.0/24 maxlen: 24
157.167.119.0/24 maxlen: 24
157.167.120.0/24 maxlen: 24
157.167.125.0/24 maxlen: 24
157.167.123.0/24 maxlen: 24
157.167.124.0/24 maxlen: 24
157.167.128.0/24 maxlen: 24
157.167.126.0/24 maxlen: 24
157.167.127.0/24 maxlen: 24
157.167.41.0/24 maxlen: 24
157.167.42.0/24 maxlen: 24
157.167.39.0/24 maxlen: 24
157.167.40.0/24 maxlen: 24
157.167.43.0/24 maxlen: 24
157.167.44.0/24 maxlen: 24
157.167.48.0/24 maxlen: 24
157.167.49.0/24 maxlen: 24
157.167.46.0/24 maxlen: 24
157.167.47.0/24 maxlen: 24
157.167.50.0/24 maxlen: 24
157.167.51.0/24 maxlen: 24
157.167.45.0/24 maxlen: 24
157.167.55.0/24 maxlen: 24
157.167.56.0/24 maxlen: 24
157.167.53.0/24 maxlen: 24
157.167.54.0/24 maxlen: 24
157.167.58.0/24 maxlen: 24
157.167.57.0/24 maxlen: 24
157.167.52.0/24 maxlen: 24
157.167.62.0/24 maxlen: 24
157.167.63.0/24 maxlen: 24
157.167.60.0/24 maxlen: 24
157.167.61.0/24 maxlen: 24
157.167.64.0/24 maxlen: 24
157.167.59.0/24 maxlen: 24
157.167.65.0/24 maxlen: 24
157.167.66.0/24 maxlen: 24
157.167.69.0/24 maxlen: 24
157.167.70.0/24 maxlen: 24
157.167.67.0/24 maxlen: 24
157.167.68.0/24 maxlen: 24
157.167.71.0/24 maxlen: 24
157.167.76.0/24 maxlen: 24
157.167.77.0/24 maxlen: 24
157.167.74.0/24 maxlen: 24
157.167.75.0/24 maxlen: 24
157.167.78.0/24 maxlen: 24
157.167.72.0/24 maxlen: 24
157.167.73.0/24 maxlen: 24
157.167.79.0/24 maxlen: 24
157.167.80.0/24 maxlen: 24
157.167.83.0/24 maxlen: 24
157.167.84.0/24 maxlen: 24
157.167.81.0/24 maxlen: 24
157.167.82.0/24 maxlen: 24
157.167.85.0/24 maxlen: 24
157.167.90.0/24 maxlen: 24
157.167.88.0/24 maxlen: 24
157.167.89.0/24 maxlen: 24
157.167.91.0/24 maxlen: 24
157.167.86.0/24 maxlen: 24
157.167.87.0/24 maxlen: 24
86.111.222.0/24 maxlen: 24
86.111.223.0/24 maxlen: 24
85.115.39.0/24 maxlen: 24
85.115.44.0/24 maxlen: 24
85.115.41.0/24 maxlen: 24
85.115.42.0/24 maxlen: 24
85.115.49.0/24 maxlen: 24
85.115.46.0/24 maxlen: 24
85.115.47.0/24 maxlen: 24
85.115.45.0/24 maxlen: 24
85.115.53.0/24 maxlen: 24
85.115.54.0/24 maxlen: 24
85.115.52.0/24 maxlen: 24
85.115.56.0/24 maxlen: 24
85.115.58.0/24 maxlen: 24
85.115.62.0/24 maxlen: 24
85.115.63.0/24 maxlen: 24
85.115.60.0/24 maxlen: 24
85.115.61.0/24 maxlen: 24
85.115.36.0/24 maxlen: 24
85.115.37.0/24 maxlen: 24
85.115.34.0/24 maxlen: 24
85.115.35.0/24 maxlen: 24
85.115.38.0/24 maxlen: 24
85.115.32.0/24 maxlen: 24
85.115.33.0/24 maxlen: 24
2001:4010::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 10 Mar 2023 12:51:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:ab:0c:69:b0:a1:c0:ea:5f:6d:f6:18:40:50:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Validity
Not Before: Jan 1 08:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=856fe75554bbb5706c3c5b243a7feef702d14d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fd:c1:3b:d0:e2:5c:62:05:55:b4:e9:1a:45:
48:66:7b:9c:c5:2f:20:53:15:de:1c:a3:79:57:1d:
76:35:b9:2b:59:4c:e0:fc:03:bc:e8:b8:a6:d5:43:
06:f7:c5:97:d3:0f:cd:37:52:7f:cc:68:e6:ae:34:
79:f9:16:a4:17:23:13:df:df:50:e4:5a:96:01:01:
34:d0:4e:b3:a1:bf:4e:b5:a9:73:11:58:0b:b9:9d:
e6:10:f0:eb:31:15:55:cc:e7:b3:13:f7:06:f2:9b:
9f:d0:be:0a:2f:80:e6:5d:a4:fc:39:01:08:a1:89:
cd:9d:32:a3:97:b7:07:0f:67:3c:e0:97:8c:0c:55:
24:9b:a6:eb:6e:9d:03:51:ed:0c:5f:1b:fa:d1:ae:
18:c1:6c:b4:ef:85:60:4b:ad:0d:91:72:28:02:08:
ea:9e:97:fd:bd:fb:25:c6:09:96:7d:60:4e:56:56:
4c:7e:c4:43:1e:1b:03:5a:a8:79:d4:79:1c:72:2b:
13:47:51:1b:4b:5d:f3:c6:98:5e:dc:3e:96:e7:a4:
bb:57:60:e5:c0:11:75:a7:dc:2c:c1:62:90:64:d2:
bb:ae:eb:ed:fe:b4:c0:b4:8f:36:eb:38:47:79:98:
d7:33:1e:17:44:c4:cc:39:63:23:cf:97:dd:29:ea:
e8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:6F:E7:55:54:BB:B5:70:6C:3C:5B:24:3A:7F:EE:F7:02:D1:4D:05
X509v3 Authority Key Identifier:
keyid:17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/hW_nVVS7tXBsPFskOn_u9wLRTQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/F92cI69p7Czbb-K5k260lM_RYh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.32.0/21
85.115.41.0-85.115.42.255
85.115.44.0/22
85.115.49.0/24
85.115.52.0-85.115.54.255
85.115.56.0/24
85.115.58.0/24
85.115.60.0/22
86.111.222.0/23
157.167.10.0-157.167.128.255
157.167.157.0/24
157.167.200.0/24
IPv6:
2001:4010::/32
Signature Algorithm: sha256WithRSAEncryption
20:7c:13:4d:95:88:2a:a5:6e:78:27:8c:78:a0:e6:5f:13:2b:
68:5d:ec:7d:3e:ea:8b:75:b4:1b:c3:64:32:81:ad:28:00:0e:
9c:b0:e8:34:bb:c9:7f:b8:43:38:a3:d5:ef:ba:41:ea:e5:35:
b1:2c:38:5d:d2:74:0a:59:a2:20:5c:b0:a9:0d:a5:51:74:d4:
53:dd:6b:75:1d:b2:ce:74:b5:08:4c:a3:f5:a7:fe:35:95:38:
7c:a3:d9:1c:db:8a:38:71:40:cc:b5:25:a0:2c:1f:5f:23:03:
70:be:71:f2:0b:17:c6:7a:c5:50:a5:1e:06:ae:a9:91:0b:26:
0c:29:16:10:a7:38:e6:01:8a:ce:b0:51:e0:45:a9:4a:e9:71:
78:eb:37:f3:93:d1:4e:91:b8:a6:c4:29:83:fb:40:7d:a7:f7:
6d:54:43:91:a2:ee:00:21:4f:d1:62:a1:6e:02:74:97:44:3d:
a2:3e:16:2a:c2:bb:f4:76:fc:20:f7:f1:02:2c:e3:56:f7:36:
22:af:8f:53:88:8a:cb:85:6c:e5:d4:88:da:4e:f0:b8:85:53:
0a:b9:82:fa:94:3f:df:f4:5d:85:53:62:68:3a:46:cd:cc:cd:
3d:28:8b:9a:47:bd:77:6c:32:f0:08:30:0f:e1:4e:a4:ce:7b:
1d:a2:91:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:21 2024 by rpki-client on console-fra.rpki-client.org