Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/TVEvbcvtoWPYSyhzkwM3RwvRBeM.roa
File: TVEvbcvtoWPYSyhzkwM3RwvRBeM.roa (raw, json)
Hash identifier: 1CymHyuVhr7gjUCC2ojI7aOyXkLKDb4crrKNBck2ft4=
Subject key identifier: 4D:51:2F:6D:CB:ED:A1:63:D8:4B:28:73:93:03:37:47:0B:D1:05:E3
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 018C639C23148E8DF22D23E9D0AD063DDBAA
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/TVEvbcvtoWPYSyhzkwM3RwvRBeM.roa
Signing time: Wed 13 Dec 2023 14:37:06 +0000
ROA not before: Wed 13 Dec 2023 14:37:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8648
IP address blocks: 193.22.255.0/24 maxlen: 24
185.80.92.0/22 maxlen: 24
82.141.0.0/18 maxlen: 24
185.137.168.0/22 maxlen: 24
212.110.96.0/19 maxlen: 24
128.127.64.0/21 maxlen: 24
195.225.133.0/24 maxlen: 24
45.87.136.0/22 maxlen: 24
95.130.248.0/21 maxlen: 24
94.154.148.0/22 maxlen: 24
93.90.176.0/20 maxlen: 24
195.42.120.0/23 maxlen: 24
91.203.212.0/22 maxlen: 24
109.237.128.0/20 maxlen: 24
195.62.96.0/19 maxlen: 24
195.82.152.0/23 maxlen: 24
84.254.120.0/24 maxlen: 24
193.25.114.0/23 maxlen: 24
195.110.42.0/23 maxlen: 24
185.211.60.0/22 maxlen: 24
185.207.228.0/22 maxlen: 24
195.5.120.0/23 maxlen: 24
185.32.116.0/22 maxlen: 24
185.143.164.0/22 maxlen: 24
89.22.96.0/19 maxlen: 24
194.116.186.0/23 maxlen: 24
5.11.48.0/21 maxlen: 24
91.206.142.0/23 maxlen: 24
91.220.49.0/24 maxlen: 24
194.145.226.0/24 maxlen: 24
213.146.96.0/19 maxlen: 24
193.38.156.0/22 maxlen: 24
109.75.176.0/20 maxlen: 24
93.190.64.0/21 maxlen: 24
91.203.108.0/22 maxlen: 24
185.65.88.0/22 maxlen: 24
178.250.168.0/21 maxlen: 24
37.218.248.0/21 maxlen: 24
185.117.248.0/22 maxlen: 24
141.101.32.0/21 maxlen: 24
185.84.80.0/22 maxlen: 24
185.84.80.0/23 maxlen: 24
185.84.82.0/24 maxlen: 24
178.20.96.0/21 maxlen: 24
195.34.82.0/23 maxlen: 24
192.162.84.0/22 maxlen: 24
91.226.88.0/22 maxlen: 24
31.47.240.0/20 maxlen: 24
46.243.88.0/21 maxlen: 24
81.88.16.0/20 maxlen: 24
185.51.8.0/22 maxlen: 24
81.88.27.0/24 maxlen: 24
185.3.232.0/22 maxlen: 24
81.88.32.0/20 maxlen: 24
5.44.96.0/20 maxlen: 24
2a02:248::/32 maxlen: 48
2001:880::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 14 Dec 2023 08:39:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:63:9c:23:14:8e:8d:f2:2d:23:e9:d0:ad:06:3d:db:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Dec 13 14:37:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d512f6dcbeda163d84b2873930337470bd105e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:10:a6:4b:06:53:6b:06:83:ee:23:d2:7f:d1:
a8:e5:5f:04:2b:35:51:d1:9a:13:95:74:cd:1d:e5:
6b:c5:2a:81:54:41:4b:0c:16:d0:56:2c:8b:08:f0:
df:7a:88:77:95:d2:7b:a2:d9:4c:bc:7b:37:f2:63:
c6:d6:f3:3c:53:a2:40:7f:bd:98:4d:1d:ec:ed:e0:
f1:e4:41:97:5a:d0:a1:a1:3c:90:af:cc:70:da:dc:
71:07:30:53:85:55:dc:4d:4b:f6:86:9b:ba:58:aa:
76:28:ea:41:18:42:76:f6:78:fb:da:1b:02:a3:84:
a8:0f:aa:61:13:d1:95:ca:5a:86:fc:05:48:65:01:
64:8e:db:30:75:f1:51:37:94:ab:a9:b3:8a:11:e0:
5b:88:22:b9:4e:5e:73:01:31:4b:f2:54:99:f4:d0:
eb:e4:e6:c1:60:3f:1f:f0:4c:ab:87:ae:a6:57:71:
3f:7b:b2:c1:1e:51:6a:ed:ef:51:67:28:2e:06:38:
52:7c:76:4e:b7:2b:e7:cb:96:e5:5d:f6:fc:65:b8:
cd:d2:49:22:5a:b7:84:a9:ca:51:39:76:d9:51:9a:
f4:1b:61:8e:e8:ae:a7:66:31:b1:47:e6:fe:be:80:
35:e3:6f:eb:ad:63:8c:8a:dc:5c:28:ee:82:9e:95:
e8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:51:2F:6D:CB:ED:A1:63:D8:4B:28:73:93:03:37:47:0B:D1:05:E3
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/TVEvbcvtoWPYSyhzkwM3RwvRBeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.48.0/21
5.44.96.0/20
31.47.240.0/20
37.218.248.0/21
45.87.136.0/22
46.243.88.0/21
81.88.16.0-81.88.47.255
82.141.0.0/18
84.254.120.0/24
89.22.96.0/19
91.203.108.0/22
91.203.212.0/22
91.206.142.0/23
91.220.49.0/24
91.226.88.0/22
93.90.176.0/20
93.190.64.0/21
94.154.148.0/22
95.130.248.0/21
109.75.176.0/20
109.237.128.0/20
128.127.64.0/21
141.101.32.0/21
178.20.96.0/21
178.250.168.0/21
185.3.232.0/22
185.32.116.0/22
185.51.8.0/22
185.65.88.0/22
185.80.92.0/22
185.84.80.0/22
185.117.248.0/22
185.137.168.0/22
185.143.164.0/22
185.207.228.0/22
185.211.60.0/22
192.162.84.0/22
193.22.255.0/24
193.25.114.0/23
193.38.156.0/22
194.116.186.0/23
194.145.226.0/24
195.5.120.0/23
195.34.82.0/23
195.42.120.0/23
195.62.96.0/19
195.82.152.0/23
195.110.42.0/23
195.225.133.0/24
212.110.96.0/19
213.146.96.0/19
IPv6:
2001:880::/32
2a02:248::/32
Signature Algorithm: sha256WithRSAEncryption
10:ca:93:9f:3e:fe:ee:5d:aa:5f:32:8e:eb:a3:15:13:b7:62:
62:fc:6d:53:d4:69:1f:97:0e:71:44:30:5f:f6:df:7b:d9:c5:
6d:51:a2:57:b3:ad:40:d1:4d:cc:e8:36:0e:8b:c0:87:da:95:
a9:95:2f:21:85:a9:33:4d:ea:68:21:39:70:fd:54:0b:3f:58:
db:99:00:4d:11:28:db:0e:d0:f0:ac:1d:db:fe:af:9d:c0:36:
2f:d6:04:6c:e8:c0:3f:cf:5c:9c:b8:11:82:a1:dd:47:fe:ac:
d6:e2:70:da:14:d1:ae:46:d8:d1:21:12:ce:7c:9b:b2:ba:9b:
6b:4d:36:de:cc:18:c6:42:2d:a7:2c:16:7d:f2:a8:bc:5c:63:
19:4a:e2:10:92:b8:bf:8f:ee:53:19:91:6a:1a:aa:51:61:54:
04:be:ae:af:84:d1:f6:11:4c:15:49:a8:34:3e:43:21:ad:ac:
8e:b7:7c:34:6b:87:f4:b8:3a:2e:8b:c2:35:f9:76:14:dc:65:
a4:97:79:df:c9:e8:5c:95:17:3c:bd:e5:37:95:07:86:b6:b3:
69:c1:b9:fe:df:2d:c6:9f:5b:51:e5:11:97:05:36:38:e3:66:
f3:96:0d:af:c6:f2:19:0c:54:64:a4:5e:e5:18:e2:4d:b7:66:
94:df:4d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org