Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/kyy57z6EWwRep6k6FKi3rSNHM2g.roa
File: kyy57z6EWwRep6k6FKi3rSNHM2g.roa (raw, json)
Hash identifier: SBwHs5szU/TJ+UbQxkUZ9yAWLBBVpZgenilhRNsl+Ls=
Subject key identifier: 93:2C:B9:EF:3E:84:5B:04:5E:A7:A9:3A:14:A8:B7:AD:23:47:33:68
Certificate issuer: /CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Certificate serial: 0186CB95249F94E1164890012E7D283629DE
Authority key identifier: 17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/kyy57z6EWwRep6k6FKi3rSNHM2g.roa
Signing time: Fri 10 Mar 2023 12:53:14 +0000
ROA not before: Fri 10 Mar 2023 12:53:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44444
IP address blocks: 157.167.200.0/24 maxlen: 24
157.167.157.0/24 maxlen: 24
157.167.10.0/24 maxlen: 24
157.167.11.0/24 maxlen: 24
157.167.13.0/24 maxlen: 24
157.167.14.0/24 maxlen: 24
157.167.12.0/24 maxlen: 24
157.167.17.0/24 maxlen: 24
157.167.15.0/24 maxlen: 24
157.167.16.0/24 maxlen: 24
157.167.20.0/24 maxlen: 24
157.167.21.0/24 maxlen: 24
157.167.18.0/24 maxlen: 24
157.167.19.0/24 maxlen: 24
157.167.24.0/24 maxlen: 24
157.167.22.0/24 maxlen: 24
157.167.23.0/24 maxlen: 24
157.167.27.0/24 maxlen: 24
157.167.28.0/24 maxlen: 24
157.167.25.0/24 maxlen: 24
157.167.26.0/24 maxlen: 24
157.167.31.0/24 maxlen: 24
157.167.29.0/24 maxlen: 24
157.167.30.0/24 maxlen: 24
157.167.34.0/24 maxlen: 24
157.167.35.0/24 maxlen: 24
157.167.32.0/24 maxlen: 24
157.167.33.0/24 maxlen: 24
157.167.38.0/24 maxlen: 24
157.167.36.0/24 maxlen: 24
157.167.37.0/24 maxlen: 24
157.167.93.0/24 maxlen: 24
157.167.94.0/24 maxlen: 24
157.167.92.0/24 maxlen: 24
157.167.97.0/24 maxlen: 24
157.167.95.0/24 maxlen: 24
157.167.96.0/24 maxlen: 24
157.167.98.0/24 maxlen: 24
157.167.104.0/24 maxlen: 24
157.167.102.0/24 maxlen: 24
157.167.103.0/24 maxlen: 24
157.167.105.0/24 maxlen: 24
157.167.100.0/24 maxlen: 24
157.167.101.0/24 maxlen: 24
157.167.99.0/24 maxlen: 24
157.167.111.0/24 maxlen: 24
157.167.109.0/24 maxlen: 24
157.167.110.0/24 maxlen: 24
157.167.112.0/24 maxlen: 24
157.167.107.0/24 maxlen: 24
157.167.108.0/24 maxlen: 24
157.167.106.0/24 maxlen: 24
157.167.118.0/24 maxlen: 24
157.167.116.0/24 maxlen: 24
157.167.117.0/24 maxlen: 24
157.167.114.0/24 maxlen: 24
157.167.115.0/24 maxlen: 24
157.167.113.0/24 maxlen: 24
157.167.121.0/24 maxlen: 24
157.167.122.0/24 maxlen: 24
157.167.119.0/24 maxlen: 24
157.167.120.0/24 maxlen: 24
157.167.125.0/24 maxlen: 24
157.167.123.0/24 maxlen: 24
157.167.124.0/24 maxlen: 24
157.167.128.0/24 maxlen: 24
157.167.126.0/24 maxlen: 24
157.167.127.0/24 maxlen: 24
157.167.41.0/24 maxlen: 24
157.167.42.0/24 maxlen: 24
157.167.39.0/24 maxlen: 24
157.167.40.0/24 maxlen: 24
157.167.43.0/24 maxlen: 24
157.167.44.0/24 maxlen: 24
157.167.48.0/24 maxlen: 24
157.167.49.0/24 maxlen: 24
157.167.46.0/24 maxlen: 24
157.167.47.0/24 maxlen: 24
157.167.50.0/24 maxlen: 24
157.167.51.0/24 maxlen: 24
157.167.45.0/24 maxlen: 24
157.167.55.0/24 maxlen: 24
157.167.56.0/24 maxlen: 24
157.167.53.0/24 maxlen: 24
157.167.54.0/24 maxlen: 24
157.167.58.0/24 maxlen: 24
157.167.57.0/24 maxlen: 24
157.167.52.0/24 maxlen: 24
157.167.62.0/24 maxlen: 24
157.167.63.0/24 maxlen: 24
157.167.60.0/24 maxlen: 24
157.167.61.0/24 maxlen: 24
157.167.64.0/24 maxlen: 24
157.167.59.0/24 maxlen: 24
157.167.65.0/24 maxlen: 24
157.167.66.0/24 maxlen: 24
157.167.69.0/24 maxlen: 24
157.167.70.0/24 maxlen: 24
157.167.67.0/24 maxlen: 24
157.167.68.0/24 maxlen: 24
157.167.71.0/24 maxlen: 24
157.167.76.0/24 maxlen: 24
157.167.77.0/24 maxlen: 24
157.167.74.0/24 maxlen: 24
157.167.75.0/24 maxlen: 24
157.167.78.0/24 maxlen: 24
157.167.72.0/24 maxlen: 24
157.167.73.0/24 maxlen: 24
157.167.79.0/24 maxlen: 24
157.167.80.0/24 maxlen: 24
157.167.83.0/24 maxlen: 24
157.167.84.0/24 maxlen: 24
157.167.81.0/24 maxlen: 24
157.167.82.0/24 maxlen: 24
157.167.85.0/24 maxlen: 24
157.167.90.0/24 maxlen: 24
157.167.88.0/24 maxlen: 24
157.167.89.0/24 maxlen: 24
157.167.91.0/24 maxlen: 24
157.167.86.0/24 maxlen: 24
157.167.87.0/24 maxlen: 24
86.111.222.0/24 maxlen: 24
86.111.223.0/24 maxlen: 24
85.115.39.0/24 maxlen: 24
85.115.40.0/24 maxlen: 24
85.115.43.0/24 maxlen: 24
85.115.44.0/24 maxlen: 24
85.115.41.0/24 maxlen: 24
85.115.42.0/24 maxlen: 24
85.115.48.0/24 maxlen: 24
85.115.49.0/24 maxlen: 24
85.115.46.0/24 maxlen: 24
85.115.47.0/24 maxlen: 24
85.115.45.0/24 maxlen: 24
85.115.53.0/24 maxlen: 24
85.115.54.0/24 maxlen: 24
85.115.52.0/24 maxlen: 24
85.115.56.0/24 maxlen: 24
85.115.58.0/24 maxlen: 24
85.115.62.0/24 maxlen: 24
85.115.63.0/24 maxlen: 24
85.115.60.0/24 maxlen: 24
85.115.61.0/24 maxlen: 24
85.115.36.0/24 maxlen: 24
85.115.37.0/24 maxlen: 24
85.115.34.0/24 maxlen: 24
85.115.35.0/24 maxlen: 24
85.115.38.0/24 maxlen: 24
85.115.32.0/24 maxlen: 24
85.115.33.0/24 maxlen: 24
2001:4010::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 10 Mar 2023 18:18:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:95:24:9f:94:e1:16:48:90:01:2e:7d:28:36:29:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Validity
Not Before: Mar 10 12:53:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=932cb9ef3e845b045ea7a93a14a8b7ad23473368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e3:60:68:db:c1:67:c2:56:17:e1:46:90:92:
67:1a:db:e6:e8:03:42:8c:e0:49:ff:f6:89:5b:bf:
3e:e0:2a:37:fa:14:be:75:7a:76:fa:71:9d:7c:66:
72:f1:ca:42:20:44:d0:1a:bd:ba:38:50:10:85:39:
3b:fd:e8:9a:5c:b6:1f:6d:fd:35:98:7b:39:cd:b4:
79:02:c9:2b:35:8c:d3:7f:8e:36:7c:9e:4b:8f:9b:
76:99:dc:19:36:a2:f0:ed:00:25:4c:ee:dc:90:da:
2a:35:8d:4a:81:01:f2:e1:b6:6d:2e:72:c2:f5:57:
14:e2:d4:3e:b4:d2:1a:03:2e:11:af:4d:43:d5:3a:
71:f6:0a:50:f2:f5:5c:3a:84:e4:cc:7f:3b:39:e5:
4d:bb:14:b3:0b:72:9b:d5:6c:c5:dd:72:6a:b4:97:
3b:3e:1d:d5:03:80:46:fa:92:45:95:09:ff:05:9e:
03:07:06:0b:dd:e0:fb:b4:a1:69:f0:c8:b7:34:e1:
9e:0d:33:73:10:f1:cd:c7:79:15:fc:78:59:2f:46:
46:55:86:a3:2b:6d:70:37:ab:c9:19:35:f7:22:95:
2b:21:8d:cb:72:7b:34:49:fb:5d:67:d1:54:15:f4:
4e:59:63:e1:34:5e:30:2f:7c:0d:0f:27:c3:63:cf:
63:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2C:B9:EF:3E:84:5B:04:5E:A7:A9:3A:14:A8:B7:AD:23:47:33:68
X509v3 Authority Key Identifier:
keyid:17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/kyy57z6EWwRep6k6FKi3rSNHM2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/F92cI69p7Czbb-K5k260lM_RYh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.32.0-85.115.49.255
85.115.52.0-85.115.54.255
85.115.56.0/24
85.115.58.0/24
85.115.60.0/22
86.111.222.0/23
157.167.10.0-157.167.128.255
157.167.157.0/24
157.167.200.0/24
IPv6:
2001:4010::/32
Signature Algorithm: sha256WithRSAEncryption
7d:c4:12:25:2d:0d:a0:b3:a0:39:45:67:de:85:ba:88:a2:58:
98:d6:12:79:f6:2c:03:07:88:98:90:7f:f7:a1:9d:ed:5c:ed:
6a:59:8e:71:61:0c:09:c3:c9:fc:4d:bb:99:72:51:b0:56:0e:
4f:60:97:bd:75:bd:87:17:81:ec:c7:31:4b:15:93:14:6f:27:
06:62:24:f1:6a:12:4f:9c:55:02:bf:ff:9a:30:92:41:3a:f4:
d9:4e:e3:33:6f:8b:fa:7b:8e:39:7d:c3:d3:2b:96:4c:d2:06:
e2:ec:e4:8b:ea:14:7a:7c:fa:4f:dc:45:b8:e5:88:0a:94:ce:
20:ec:10:73:5f:21:a1:aa:37:b3:e7:4a:a4:23:ef:7b:d6:60:
68:eb:f8:e4:7b:e1:cb:76:8a:14:be:1f:61:60:ce:06:9d:e3:
07:85:06:20:fd:1c:aa:3e:3d:e1:33:ff:63:fe:17:d0:49:14:
c6:c6:a1:24:9c:25:b7:c3:b0:84:04:b6:d8:a8:8f:bc:59:08:
46:eb:81:f9:6b:6a:37:88:d2:a7:b3:70:19:d3:98:eb:fe:61:
1d:34:54:6b:88:5e:b7:ba:b8:08:4a:f1:f8:58:ec:03:fd:0a:
d2:1a:7d:c2:60:71:f6:e6:e0:e8:df:9c:a9:45:d7:63:85:69:
16:39:e0:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:21 2024 by rpki-client on console-fra.rpki-client.org