Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/UHLwv2lEq6tqm8RT63gJDYiGQd8.roa
File: UHLwv2lEq6tqm8RT63gJDYiGQd8.roa (raw, json)
Hash identifier: ORTY2+tpeNS3IZwFXsiUj+aYZZUw6B8eL4y4HITTas0=
Subject key identifier: 50:72:F0:BF:69:44:AB:AB:6A:9B:C4:53:EB:78:09:0D:88:86:41:DF
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 0187A242D3E6EB162F807CC4F15BA37E281F
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/UHLwv2lEq6tqm8RT63gJDYiGQd8.roa
Signing time: Fri 21 Apr 2023 05:21:41 +0000
ROA not before: Fri 21 Apr 2023 05:21:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50926
IP address blocks: 185.70.92.0/22 maxlen: 22
188.164.192.0/21 maxlen: 21
188.164.192.0/24 maxlen: 24
185.23.68.0/22 maxlen: 22
188.164.197.0/24 maxlen: 24
188.164.199.0/24 maxlen: 24
94.127.186.0/24 maxlen: 24
188.164.198.0/24 maxlen: 24
94.127.185.0/24 maxlen: 24
94.127.184.0/24 maxlen: 24
188.164.196.0/24 maxlen: 24
188.164.195.0/24 maxlen: 24
188.164.194.0/24 maxlen: 24
188.164.193.0/24 maxlen: 24
94.127.191.0/24 maxlen: 24
94.127.190.0/24 maxlen: 24
94.127.188.0/24 maxlen: 24
94.127.187.0/24 maxlen: 24
185.129.248.0/22 maxlen: 22
149.62.172.0/22 maxlen: 22
149.62.168.0/21 maxlen: 21
149.62.168.0/22 maxlen: 22
195.5.116.0/23 maxlen: 23
91.200.140.0/22 maxlen: 22
188.95.112.0/21 maxlen: 21
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
84.246.213.0/24 maxlen: 24
84.246.212.0/24 maxlen: 24
84.246.211.0/24 maxlen: 24
84.246.210.0/24 maxlen: 24
84.246.209.0/24 maxlen: 24
84.246.208.0/21 maxlen: 21
84.246.208.0/24 maxlen: 24
109.68.84.0/24 maxlen: 24
109.68.82.0/24 maxlen: 24
84.246.215.0/24 maxlen: 24
109.68.80.0/24 maxlen: 24
109.68.80.0/21 maxlen: 21
84.246.214.0/24 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 21
31.24.152.0/24 maxlen: 24
31.24.159.0/24 maxlen: 24
31.24.158.0/24 maxlen: 24
31.24.157.0/24 maxlen: 24
31.24.156.0/24 maxlen: 24
31.24.155.0/24 maxlen: 24
31.24.154.0/24 maxlen: 24
91.142.208.0/20 maxlen: 20
185.222.156.0/22 maxlen: 22
5.175.42.0/24 maxlen: 24
5.175.41.0/24 maxlen: 24
5.175.40.0/24 maxlen: 24
5.175.40.0/21 maxlen: 21
5.175.44.0/24 maxlen: 24
5.175.43.0/24 maxlen: 24
5.175.47.0/24 maxlen: 24
5.175.46.0/24 maxlen: 24
185.101.226.0/24 maxlen: 24
185.101.225.0/24 maxlen: 24
31.24.43.0/24 maxlen: 24
31.24.40.0/24 maxlen: 24
31.24.40.0/21 maxlen: 21
31.24.46.0/24 maxlen: 24
31.24.45.0/24 maxlen: 24
2a00:5ac0:100::/40 maxlen: 40
2a00:5ac0::/44 maxlen: 44
2a01:4b80::/32 maxlen: 32
2a0a:680::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 May 2023 15:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a2:42:d3:e6:eb:16:2f:80:7c:c4:f1:5b:a3:7e:28:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Apr 21 05:21:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5072f0bf6944abab6a9bc453eb78090d888641df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1b:31:7b:c1:ce:5a:ea:df:4b:fd:d8:e7:7e:
89:de:76:ac:62:60:8d:ec:fe:5e:22:fe:60:f3:65:
b2:38:94:3b:ec:b7:3e:60:6c:a3:5a:0f:57:d2:35:
85:f7:af:1d:5a:5d:fc:9a:76:55:4c:f3:c0:a4:91:
1a:8d:18:dc:42:df:68:78:38:11:27:2a:8d:9f:cd:
a7:94:10:89:6c:4c:79:86:ea:61:38:14:6d:d2:49:
07:0c:f4:4c:70:a5:53:7d:77:c9:80:19:60:3b:d3:
9c:fd:b9:0f:8d:56:18:0b:16:5d:58:72:44:19:8f:
d4:b7:04:fa:18:9d:c0:b0:6a:32:ec:8d:b2:72:2f:
4f:9c:70:7e:79:44:61:2f:6f:b8:ec:8b:eb:0a:5b:
a3:22:fe:09:f8:22:13:42:a6:4c:37:07:c9:f4:73:
05:0c:28:b7:81:ee:e0:3f:96:5e:28:b1:89:f1:4b:
e0:bc:e5:28:0e:fc:e6:19:7e:20:e1:b3:2c:5b:a6:
5f:f4:7b:8c:74:34:0f:32:4e:14:54:6d:79:df:72:
a2:b5:27:1c:81:12:b2:fb:50:51:d1:1e:58:be:88:
4e:e1:5e:56:2c:e4:21:1d:7b:4d:26:df:28:97:fa:
fb:05:25:20:f7:2a:66:47:5e:fa:af:4a:b9:1c:d0:
15:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:72:F0:BF:69:44:AB:AB:6A:9B:C4:53:EB:78:09:0D:88:86:41:DF
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/UHLwv2lEq6tqm8RT63gJDYiGQd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0-94.127.188.255
94.127.190.0/23
109.68.80.0/21
149.62.168.0/21
185.23.68.0/22
185.70.92.0/22
185.101.225.0-185.101.226.255
185.129.248.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
IPv6:
2a00:5ac0::/44
2a00:5ac0:100::/40
2a01:4b80::/32
2a0a:680::/29
Signature Algorithm: sha256WithRSAEncryption
85:7f:2a:2c:57:bd:dc:65:42:9f:c2:48:d1:36:13:62:76:e1:
74:73:db:80:30:b5:95:8d:b2:b4:b0:3d:58:3c:24:b6:29:2a:
5c:44:46:96:ad:e6:79:90:c6:be:1f:c8:37:e0:b3:a3:35:8a:
5b:e3:fa:99:e4:05:a9:ef:f7:50:2e:cb:08:fa:cf:a6:cc:2f:
08:20:6f:32:64:b0:ed:f9:24:36:60:95:f8:a3:33:40:e6:40:
0b:c1:25:0b:db:eb:88:a5:03:02:81:12:94:c1:b5:31:35:81:
4a:61:91:17:b0:a6:5f:0c:6a:2f:d0:4b:51:44:2b:b4:59:10:
93:9e:72:56:ff:95:6e:5c:9f:42:08:2b:73:0c:f8:17:89:7f:
eb:cd:d9:35:a5:c5:9e:1a:a5:45:c0:2d:e1:00:13:eb:99:db:
c6:2b:bf:ec:1b:4e:98:ef:da:09:f0:56:e3:a8:6b:cc:e7:5b:
8c:24:16:2f:ec:0f:6b:09:d5:9b:65:c4:4e:37:0d:06:0d:6f:
42:5a:7c:da:c8:ed:12:7f:a3:9c:1d:4c:bf:d5:50:db:63:9d:
f9:89:ef:97:00:1f:d9:c7:d1:c2:17:a2:a0:cf:57:76:16:1e:
c0:85:68:b3:3d:0b:a1:c5:4b:9a:7b:ce:36:99:20:7c:23:1f:
15:d0:36:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:45 2024 by rpki-client on console-ams.rpki-client.org