Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/0f-TdF5YFWC9C0pMkSb6FyAikzY.roa
File: 0f-TdF5YFWC9C0pMkSb6FyAikzY.roa (raw, json)
Hash identifier: SqGyRjNmHtGpZFFy7FScGiNgGmgL9Nu/dprhZ8yoH/4=
Subject key identifier: D1:FF:93:74:5E:58:15:60:BD:0B:4A:4C:91:26:FA:17:20:22:93:36
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 018B47DE358FDB0297095917F4086EF7A172
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/0f-TdF5YFWC9C0pMkSb6FyAikzY.roa
Signing time: Thu 19 Oct 2023 12:17:06 +0000
ROA not before: Thu 19 Oct 2023 12:17:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48854
IP address blocks: 185.134.28.0/22 maxlen: 22
185.235.52.0/24 maxlen: 24
185.235.52.0/22 maxlen: 22
195.178.14.0/23 maxlen: 23
91.197.248.0/22 maxlen: 22
80.70.0.0/23 maxlen: 23
80.70.6.0/23 maxlen: 23
80.70.7.0/24 maxlen: 24
212.97.132.0/22 maxlen: 22
212.97.143.0/24 maxlen: 24
212.97.140.0/24 maxlen: 24
212.97.140.0/22 maxlen: 22
212.97.142.0/24 maxlen: 24
212.97.141.0/24 maxlen: 24
185.154.240.0/22 maxlen: 22
93.191.152.0/21 maxlen: 21
93.191.152.0/22 maxlen: 22
93.191.156.0/24 maxlen: 24
93.191.158.0/24 maxlen: 24
93.191.157.0/24 maxlen: 24
89.188.72.0/21 maxlen: 21
46.36.204.0/22 maxlen: 22
46.36.208.0/21 maxlen: 21
185.25.140.0/24 maxlen: 24
185.25.142.0/24 maxlen: 24
185.25.141.0/24 maxlen: 24
185.25.143.0/24 maxlen: 24
178.251.0.0/21 maxlen: 21
178.251.1.0/24 maxlen: 24
94.231.96.0/20 maxlen: 20
94.231.103.0/24 maxlen: 24
195.69.128.0/22 maxlen: 22
185.221.36.0/22 maxlen: 22
212.237.248.0/23 maxlen: 23
91.217.201.0/24 maxlen: 24
194.150.112.0/22 maxlen: 22
185.21.40.0/22 maxlen: 22
77.243.128.0/20 maxlen: 20
94.143.8.0/21 maxlen: 21
81.95.240.0/20 maxlen: 20
81.95.249.0/24 maxlen: 24
217.61.236.0/22 maxlen: 22
193.239.96.0/22 maxlen: 22
185.223.24.0/22 maxlen: 22
109.71.56.0/21 maxlen: 21
185.20.204.0/22 maxlen: 22
185.20.205.0/24 maxlen: 24
185.20.206.0/23 maxlen: 23
2a06:eac0::/29 maxlen: 48
2a02:2338::/32 maxlen: 48
2a03:2740::/47 maxlen: 48
2a02:2339:4000::/34 maxlen: 48
2a02:2339::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:de:35:8f:db:02:97:09:59:17:f4:08:6e:f7:a1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Oct 19 12:17:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1ff93745e581560bd0b4a4c9126fa1720229336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bc:ce:af:6b:a0:cd:a1:de:75:f5:fb:c3:7a:
05:15:e9:3a:61:9d:7a:4e:2d:ef:3a:72:85:03:ea:
cc:90:7f:81:fc:4f:b4:a2:46:9e:69:9e:25:33:a2:
2d:68:b0:de:30:5e:2c:29:6d:1d:ee:5d:50:cb:78:
c2:4d:70:fb:c2:b8:c7:da:24:60:63:0b:b3:e8:d9:
09:40:89:67:7f:a0:45:71:97:26:31:43:cd:79:60:
00:f8:e3:ca:f3:4d:1f:08:9b:c9:00:c7:29:23:47:
1a:fa:7b:7b:ed:e7:48:eb:00:e1:fb:40:35:8a:4f:
3f:a3:26:2a:a5:ac:2a:f3:6f:be:f5:31:dd:10:cc:
dd:04:04:e9:85:a9:2c:86:bc:e0:e5:dd:ad:b3:4d:
54:d3:6b:04:e6:8a:12:75:a7:40:12:3f:20:38:ee:
f7:55:db:0f:46:1d:1f:97:3b:9f:dc:99:f5:be:4f:
34:63:6e:67:2c:8f:34:4c:34:e6:3c:74:02:23:04:
22:03:85:5b:47:cb:e8:25:b7:ac:18:6e:69:5f:73:
96:a4:7d:cb:f0:e6:3e:4c:c9:9d:39:04:f9:97:aa:
74:87:f5:04:51:7a:7f:ab:5b:5a:04:de:59:b0:8b:
22:6b:4e:42:58:58:3d:6d:3f:3d:e5:17:49:7f:36:
25:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FF:93:74:5E:58:15:60:BD:0B:4A:4C:91:26:FA:17:20:22:93:36
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/0f-TdF5YFWC9C0pMkSb6FyAikzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.204.0-46.36.215.255
77.243.128.0/20
80.70.0.0/23
80.70.6.0/23
81.95.240.0/20
89.188.72.0/21
91.197.248.0/22
91.217.201.0/24
93.191.152.0/21
94.143.8.0/21
94.231.96.0/20
109.71.56.0/21
178.251.0.0/21
185.20.204.0/22
185.21.40.0/22
185.25.140.0/22
185.134.28.0/22
185.154.240.0/22
185.221.36.0/22
185.223.24.0/22
185.235.52.0/22
193.239.96.0/22
194.150.112.0/22
195.69.128.0/22
195.178.14.0/23
212.97.132.0/22
212.97.140.0/22
212.237.248.0/23
217.61.236.0/22
IPv6:
2a02:2338::-2a02:2339:fff:ffff:ffff:ffff:ffff:ffff
2a02:2339:4000::/34
2a03:2740::/47
2a06:eac0::/29
Signature Algorithm: sha256WithRSAEncryption
52:79:22:31:a2:6e:2b:e7:e9:0e:56:37:34:a3:3b:3b:18:2f:
53:63:6d:3c:ee:a0:6c:d1:f1:5d:e6:24:35:8e:80:02:eb:bd:
9a:fa:40:64:5f:d0:bc:08:6b:93:ab:ac:ac:df:12:07:a7:c6:
2c:72:44:04:9b:ec:47:84:07:27:5f:50:f4:0b:86:64:75:31:
72:8b:e3:fd:da:ac:37:17:00:38:1f:13:c5:2a:55:be:bb:e3:
1a:f0:eb:b8:51:ac:5c:fc:1e:e7:65:79:ab:6b:a1:2a:5c:3e:
2e:6b:19:4b:53:02:79:26:f2:9f:ed:4d:dc:9f:87:47:f2:ea:
02:1e:54:0a:90:e7:cb:bb:34:9c:d8:72:99:a9:a7:58:06:14:
f7:dd:3c:3c:32:8b:48:ce:3d:43:29:43:9b:52:bf:b2:5e:4b:
4f:89:73:54:1d:2c:ff:12:bb:a7:d2:51:9e:a6:4a:0b:82:1e:
30:64:37:7f:f4:99:8f:0a:75:97:5d:8b:a0:fb:0d:ef:8d:79:
7c:3c:d5:07:28:58:40:a1:fe:cf:02:97:75:c4:70:a2:df:9d:
30:22:97:00:23:5a:b0:cd:73:81:36:a8:cd:e1:27:f9:e2:64:
f5:2f:30:4e:7c:29:90:17:3e:3e:ad:3c:1b:9f:c2:f8:b5:a2:
83:65:c5:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:51 2024 by rpki-client on console-ams.rpki-client.org