Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/MRqhjT4ujznhMGEKKNdWIPiIb7g.roa
File: MRqhjT4ujznhMGEKKNdWIPiIb7g.roa (raw, json)
Hash identifier: Wvv5fQ1kV/T1mMD/TPhMuEQOyOBy0Z9kESrMnekzpMU=
Subject key identifier: 31:1A:A1:8D:3E:2E:8F:39:E1:30:61:0A:28:D7:56:20:F8:88:6F:B8
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 018B61F608AAB590008D7A4D4C781E994AE7
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/MRqhjT4ujznhMGEKKNdWIPiIb7g.roa
Signing time: Tue 24 Oct 2023 13:53:15 +0000
ROA not before: Tue 24 Oct 2023 13:53:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 152.228.128.0/17 maxlen: 17
94.23.0.0/16 maxlen: 16
51.178.0.0/16 maxlen: 16
51.77.0.0/16 maxlen: 16
151.80.0.0/16 maxlen: 16
193.70.0.0/17 maxlen: 17
91.134.0.0/16 maxlen: 16
162.19.128.0/17 maxlen: 17
145.239.0.0/16 maxlen: 16
149.202.0.0/16 maxlen: 16
137.74.0.0/16 maxlen: 16
54.37.0.0/16 maxlen: 16
188.165.0.0/16 maxlen: 16
51.195.0.0/16 maxlen: 16
92.222.0.0/16 maxlen: 16
141.94.0.0/16 maxlen: 16
91.121.0.0/16 maxlen: 16
5.39.0.0/17 maxlen: 17
198.244.128.0/17 maxlen: 17
213.32.0.0/17 maxlen: 17
146.59.0.0/17 maxlen: 17
178.32.0.0/15 maxlen: 15
37.187.0.0/16 maxlen: 16
37.59.0.0/16 maxlen: 16
146.59.0.0/16 maxlen: 16
141.227.128.0/20 maxlen: 24
54.36.0.0/16 maxlen: 16
162.19.0.0/17 maxlen: 17
51.83.0.0/16 maxlen: 16
213.251.128.0/18 maxlen: 18
79.137.0.0/17 maxlen: 17
141.95.128.0/17 maxlen: 17
51.210.0.0/16 maxlen: 16
135.125.128.0/17 maxlen: 17
213.186.32.0/19 maxlen: 19
51.75.0.0/16 maxlen: 16
51.38.0.0/16 maxlen: 16
54.38.0.0/16 maxlen: 16
46.105.198.0/24 maxlen: 24
46.105.199.0/24 maxlen: 24
46.105.200.0/24 maxlen: 24
46.105.201.0/24 maxlen: 24
46.105.202.0/24 maxlen: 24
46.105.203.0/24 maxlen: 24
46.105.204.0/24 maxlen: 24
46.105.206.0/24 maxlen: 24
46.105.207.0/24 maxlen: 24
51.254.0.0/15 maxlen: 15
51.89.0.0/16 maxlen: 16
5.135.0.0/16 maxlen: 16
135.125.0.0/17 maxlen: 17
57.128.0.0/17 maxlen: 17
51.91.0.0/16 maxlen: 16
217.182.0.0/16 maxlen: 16
164.132.0.0/16 maxlen: 16
5.196.0.0/16 maxlen: 16
51.68.0.0/16 maxlen: 16
141.95.0.0/17 maxlen: 17
176.31.0.0/16 maxlen: 16
147.135.128.0/17 maxlen: 17
87.98.128.0/17 maxlen: 17
57.128.128.0/18 maxlen: 18
46.105.0.0/16 maxlen: 16
2001:41d0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 31 Oct 2023 13:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:61:f6:08:aa:b5:90:00:8d:7a:4d:4c:78:1e:99:4a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Oct 24 13:53:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=311aa18d3e2e8f39e130610a28d75620f8886fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:75:c7:6b:cb:c2:45:13:8b:fe:0b:02:f9:c4:
86:c4:54:c5:2d:0f:90:d8:64:f1:56:69:b7:b4:ac:
de:3c:35:6f:6b:4b:99:67:21:02:1b:d3:77:97:40:
da:6a:03:00:9e:6b:9f:27:25:7c:3a:ec:d6:24:1c:
65:f9:3c:24:2a:7c:07:f1:29:99:e1:61:fe:fc:85:
e4:47:a0:95:04:50:1e:e4:ad:95:90:16:00:25:6d:
0a:02:c1:5e:74:d1:13:11:8b:9b:ae:3f:bb:4f:15:
39:22:9f:74:da:94:ce:e0:8c:d1:65:9d:c3:01:47:
c8:8e:4a:d5:f2:fa:e4:4d:09:3d:76:ab:bb:01:50:
8a:49:f5:62:f9:1e:18:66:8a:82:37:95:f1:cc:63:
05:66:63:fd:b2:09:b2:38:52:ae:b4:1e:6c:02:f5:
20:e1:b2:94:d0:a3:60:91:09:9c:7b:ab:7b:7e:95:
06:77:e9:e7:9c:9d:5c:e8:4b:af:99:5d:70:56:fe:
ad:62:b4:64:28:b7:3d:61:70:22:e6:8f:af:c3:0a:
19:1c:4f:9d:09:06:69:25:26:87:44:67:16:f1:f9:
c1:eb:ce:6c:9f:85:60:5e:54:0d:c4:d5:54:ce:f3:
5d:cc:1c:db:b7:ca:18:80:65:7b:6d:ed:9b:cf:df:
75:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:1A:A1:8D:3E:2E:8F:39:E1:30:61:0A:28:D7:56:20:F8:88:6F:B8
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/MRqhjT4ujznhMGEKKNdWIPiIb7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.0.0/17
5.135.0.0/16
5.196.0.0/16
37.59.0.0/16
37.187.0.0/16
46.105.0.0/16
51.38.0.0/16
51.68.0.0/16
51.75.0.0/16
51.77.0.0/16
51.83.0.0/16
51.89.0.0/16
51.91.0.0/16
51.178.0.0/16
51.195.0.0/16
51.210.0.0/16
51.254.0.0/15
54.36.0.0-54.38.255.255
57.128.0.0-57.128.191.255
79.137.0.0/17
87.98.128.0/17
91.121.0.0/16
91.134.0.0/16
92.222.0.0/16
94.23.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
141.227.128.0/20
145.239.0.0/16
146.59.0.0/16
147.135.128.0/17
149.202.0.0/16
151.80.0.0/16
152.228.128.0/17
162.19.0.0/16
164.132.0.0/16
176.31.0.0/16
178.32.0.0/15
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
IPv6:
2001:41d0::/32
Signature Algorithm: sha256WithRSAEncryption
8c:34:ae:e0:6c:32:34:98:8e:c8:6a:b0:5e:6d:e0:16:77:c1:
90:e0:3e:fc:ea:ae:44:dd:a5:5f:0a:00:9e:7a:67:d8:42:f3:
52:f8:31:92:d5:47:d6:a2:25:41:41:44:bc:94:14:85:a6:95:
8b:d0:c4:46:65:1a:9c:4a:32:21:d3:13:5a:12:60:73:9b:ec:
8f:c9:d5:eb:5e:65:de:eb:6f:7f:cf:11:18:8e:3d:77:8d:0c:
1d:a7:26:0f:0c:31:b8:cd:1a:d4:a1:5a:92:ed:c6:b7:18:59:
9f:41:07:2f:a8:2e:ca:eb:f5:ae:da:dd:ba:f4:75:c9:ed:a8:
0e:ec:de:ca:20:aa:43:7f:31:7e:a2:7b:2e:e7:93:23:79:9b:
4a:97:9c:8b:18:a0:73:5c:3c:26:9a:84:c7:1c:fc:87:0d:47:
f5:28:51:cf:cc:61:d7:12:34:73:6c:41:a4:de:40:06:49:2b:
51:c7:2e:cd:c4:ba:13:87:de:ec:4e:8c:75:79:af:c7:22:91:
44:4a:fa:93:5e:6c:fe:59:3e:fd:f8:77:25:5b:e9:1a:b8:e9:
08:07:21:ef:32:66:e9:b2:d0:f3:c4:ce:81:43:0e:c2:6b:a7:
94:8c:54:18:5a:1b:b7:54:b9:66:6b:ec:59:64:c4:94:2c:7a:
09:e2:eb:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:19 2024 by rpki-client on console-ams.rpki-client.org