Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/mllhPOc8wZGEaxDfFks118gVui4.roa
File: mllhPOc8wZGEaxDfFks118gVui4.roa (raw, json)
Hash identifier: no/3b+3CzTMolHuuXg/D6pp0688FP8b+NI4yY+Sqdu4=
Subject key identifier: 9A:59:61:3C:E7:3C:C1:91:84:6B:10:DF:16:4B:35:D7:C8:15:BA:2E
Certificate issuer: /CN=7ae62148b30b66bd0a3da3897ecfbfd9af4f431e
Certificate serial: 0188E7CF8360E5BB2998B7333C802496CBB9
Authority key identifier: 7A:E6:21:48:B3:0B:66:BD:0A:3D:A3:89:7E:CF:BF:D9:AF:4F:43:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/euYhSLMLZr0KPaOJfs-_2a9PQx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/mllhPOc8wZGEaxDfFks118gVui4.roa
Signing time: Fri 23 Jun 2023 10:31:56 +0000
ROA not before: Fri 23 Jun 2023 10:31:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24592
IP address blocks: 217.13.112.0/24 maxlen: 24
217.13.116.0/24 maxlen: 24
217.13.115.0/24 maxlen: 24
217.13.114.0/24 maxlen: 24
217.13.112.0/20 maxlen: 20
217.13.113.0/24 maxlen: 24
217.13.118.0/24 maxlen: 24
217.13.117.0/24 maxlen: 24
185.86.35.0/24 maxlen: 24
185.86.34.0/24 maxlen: 24
185.86.33.0/24 maxlen: 24
185.86.32.0/24 maxlen: 24
185.86.32.0/22 maxlen: 22
212.92.38.0/24 maxlen: 24
212.92.32.0/24 maxlen: 24
212.92.37.0/24 maxlen: 24
212.92.36.0/24 maxlen: 24
212.92.35.0/24 maxlen: 24
212.92.34.0/24 maxlen: 24
212.92.32.0/19 maxlen: 19
212.92.32.0/20 maxlen: 20
212.92.33.0/24 maxlen: 24
212.92.44.0/24 maxlen: 24
212.92.43.0/24 maxlen: 24
212.92.42.0/24 maxlen: 24
212.92.41.0/24 maxlen: 24
212.92.40.0/24 maxlen: 24
212.92.39.0/24 maxlen: 24
212.92.46.0/24 maxlen: 24
212.92.45.0/24 maxlen: 24
212.92.51.0/24 maxlen: 24
212.92.50.0/24 maxlen: 24
212.92.49.0/24 maxlen: 24
212.92.48.0/21 maxlen: 21
212.92.48.0/24 maxlen: 24
212.92.47.0/24 maxlen: 24
212.92.52.0/24 maxlen: 24
212.92.58.0/24 maxlen: 24
212.92.57.0/24 maxlen: 24
212.92.56.0/24 maxlen: 24
212.92.56.0/22 maxlen: 22
212.92.55.0/24 maxlen: 24
212.92.54.0/24 maxlen: 24
212.92.53.0/24 maxlen: 24
212.92.59.0/24 maxlen: 24
212.92.63.0/24 maxlen: 24
212.92.62.0/24 maxlen: 24
212.92.61.0/24 maxlen: 24
212.92.60.0/22 maxlen: 22
212.92.60.0/24 maxlen: 24
89.45.38.0/24 maxlen: 24
89.45.37.0/24 maxlen: 24
89.45.36.0/22 maxlen: 22
89.45.36.0/24 maxlen: 24
89.45.39.0/24 maxlen: 24
217.13.125.0/24 maxlen: 24
217.13.124.0/24 maxlen: 24
217.13.123.0/24 maxlen: 24
217.13.122.0/24 maxlen: 24
217.13.121.0/24 maxlen: 24
217.13.120.0/24 maxlen: 24
217.13.119.0/24 maxlen: 24
217.13.127.0/24 maxlen: 24
217.13.126.0/24 maxlen: 24
2a02:23c8:ff00::/40 maxlen: 40
2a02:23c8::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e7:cf:83:60:e5:bb:29:98:b7:33:3c:80:24:96:cb:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ae62148b30b66bd0a3da3897ecfbfd9af4f431e
Validity
Not Before: Jun 23 10:31:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a59613ce73cc191846b10df164b35d7c815ba2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:27:3b:89:05:8a:6c:5f:a7:b8:bc:13:17:b2:
d0:f8:70:c7:04:b4:ca:16:58:b2:a4:5c:12:4b:c3:
5f:a8:94:a1:b9:94:aa:e2:0b:13:16:d8:30:2b:76:
cf:09:1b:a0:d3:7f:02:dd:58:c6:88:2b:c6:56:c1:
f0:9c:a4:ef:44:88:e2:06:3f:29:15:5c:59:4a:0a:
cc:10:9e:35:94:77:ca:0c:aa:67:63:f8:48:f5:f6:
8b:84:35:d1:0b:fe:ac:a7:58:d3:35:fa:5c:34:60:
a0:77:ef:8b:24:0a:97:79:96:34:a5:20:66:e9:55:
a4:1f:e6:c7:bc:6c:22:91:99:e1:29:5a:c6:d5:bc:
f8:fa:07:b6:b5:1b:ab:5c:c1:cb:1e:ff:9c:eb:16:
b6:4e:d3:8a:73:6b:c1:e3:45:78:51:be:3f:3b:6b:
5b:e1:50:65:a0:01:c2:2e:9b:35:b5:23:85:75:cb:
6e:08:95:10:1e:65:f3:c7:bf:05:13:99:ab:24:11:
2e:77:ee:da:07:69:71:7a:32:41:43:1f:59:1b:de:
97:57:63:41:30:7e:81:ed:3b:a0:06:9d:cd:fd:c3:
da:2e:36:7e:38:98:bc:85:95:a6:c3:a3:87:3f:91:
f8:2f:77:20:91:5d:cb:c2:87:4b:63:75:c4:86:b0:
d8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:59:61:3C:E7:3C:C1:91:84:6B:10:DF:16:4B:35:D7:C8:15:BA:2E
X509v3 Authority Key Identifier:
keyid:7A:E6:21:48:B3:0B:66:BD:0A:3D:A3:89:7E:CF:BF:D9:AF:4F:43:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/euYhSLMLZr0KPaOJfs-_2a9PQx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/mllhPOc8wZGEaxDfFks118gVui4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/euYhSLMLZr0KPaOJfs-_2a9PQx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.36.0/22
185.86.32.0/22
212.92.32.0/19
217.13.112.0/20
IPv6:
2a02:23c8::/40
2a02:23c8:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
44:35:82:36:b1:84:86:50:fc:58:a4:a3:98:94:0e:b3:b9:b8:
da:ec:be:00:d5:42:d5:8f:49:fa:b0:a0:f4:6a:c7:51:b8:ff:
29:38:20:70:d7:a2:03:57:de:91:dc:dc:2a:18:c1:cc:92:36:
1a:23:3d:7b:ff:fa:5d:af:93:75:b0:90:a2:18:c0:3a:1b:cf:
21:97:5d:26:aa:0c:61:f3:41:30:33:a1:36:39:71:f2:a4:11:
91:80:ee:5f:53:01:83:62:f8:c7:4a:71:ee:ec:75:34:2f:f1:
e0:6d:e7:03:0f:00:e4:72:0d:ed:58:ed:d4:3e:43:de:05:6a:
55:ec:40:31:7d:f3:cc:d8:27:73:87:dc:d3:bc:db:69:20:7e:
f6:6a:82:85:63:4f:ae:88:d9:4d:b3:78:67:47:4f:9b:8d:c7:
e6:2d:0f:86:71:20:81:54:cc:3f:51:5d:a1:1c:ff:05:dc:90:
4f:05:40:16:cd:1e:eb:68:18:11:61:8a:7c:91:ef:ce:72:3b:
4e:85:02:a2:e5:50:64:10:62:2a:c1:37:9a:d9:4c:fb:3a:f8:
eb:ee:47:1b:8e:66:bc:4d:c6:19:c2:76:01:18:19:c2:f9:f4:
dc:51:58:f3:a8:85:94:7f:70:a0:d0:9b:0f:a2:91:55:b3:d4:
33:3c:11:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:40 2024 by rpki-client on console-fra.rpki-client.org