Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/YbCqI8QNvxNUbeiXleuKGsPDLHs.roa
File: YbCqI8QNvxNUbeiXleuKGsPDLHs.roa (raw, json)
Hash identifier: SnmZ8rC9OmYPmhEgIjhAjEvhVNrgAgL1e9pTbQyhgv4=
Subject key identifier: 61:B0:AA:23:C4:0D:BF:13:54:6D:E8:97:95:EB:8A:1A:C3:C3:2C:7B
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 018A079D037E979B8170D4055A511A1108E9
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/YbCqI8QNvxNUbeiXleuKGsPDLHs.roa
Signing time: Fri 18 Aug 2023 07:47:25 +0000
ROA not before: Fri 18 Aug 2023 07:47:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199081
IP address blocks: 45.66.187.0/24 maxlen: 24
185.70.78.0/24 maxlen: 24
185.70.78.0/23 maxlen: 23
185.70.77.0/24 maxlen: 24
185.70.76.0/24 maxlen: 24
185.70.76.0/22 maxlen: 22
45.66.185.0/24 maxlen: 24
45.66.186.0/24 maxlen: 24
185.205.96.0/24 maxlen: 24
185.205.96.0/22 maxlen: 22
185.205.97.0/24 maxlen: 24
185.205.98.0/24 maxlen: 24
185.205.99.0/24 maxlen: 24
185.70.79.0/24 maxlen: 24
185.168.38.0/24 maxlen: 24
185.168.36.0/22 maxlen: 22
185.168.38.0/23 maxlen: 23
185.168.39.0/24 maxlen: 24
109.68.144.0/21 maxlen: 21
109.68.144.0/24 maxlen: 24
109.68.145.0/24 maxlen: 24
109.68.147.0/24 maxlen: 24
109.68.151.0/24 maxlen: 24
109.68.149.0/24 maxlen: 24
109.68.150.0/24 maxlen: 24
109.68.148.0/24 maxlen: 24
91.193.62.0/24 maxlen: 24
91.193.63.0/24 maxlen: 24
91.193.60.0/22 maxlen: 22
91.193.60.0/24 maxlen: 24
91.193.61.0/24 maxlen: 24
5.172.192.0/20 maxlen: 20
5.172.192.0/24 maxlen: 24
5.172.192.0/22 maxlen: 22
5.172.198.0/24 maxlen: 24
5.172.199.0/24 maxlen: 24
5.172.196.0/22 maxlen: 22
5.172.196.0/24 maxlen: 24
5.172.197.0/24 maxlen: 24
5.172.195.0/24 maxlen: 24
5.172.193.0/24 maxlen: 24
5.172.194.0/24 maxlen: 24
5.172.204.0/24 maxlen: 24
5.172.205.0/24 maxlen: 24
5.172.204.0/22 maxlen: 22
5.172.206.0/24 maxlen: 24
5.172.203.0/24 maxlen: 24
5.172.202.0/24 maxlen: 24
5.172.200.0/22 maxlen: 22
5.172.200.0/24 maxlen: 24
5.172.201.0/24 maxlen: 24
178.21.175.0/24 maxlen: 24
178.21.173.0/24 maxlen: 24
178.21.174.0/24 maxlen: 24
178.21.172.0/24 maxlen: 24
178.21.172.0/22 maxlen: 22
178.21.170.0/24 maxlen: 24
178.21.171.0/24 maxlen: 24
178.21.168.0/24 maxlen: 24
178.21.169.0/24 maxlen: 24
178.21.168.0/22 maxlen: 22
178.21.168.0/21 maxlen: 21
185.118.125.0/24 maxlen: 24
2a02:4fc0:4000::/48 maxlen: 48
2a02:4fc0:4001::/48 maxlen: 48
2a02:4fc0:4100::/40 maxlen: 40
2a02:4fc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 31 Aug 2023 10:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:9d:03:7e:97:9b:81:70:d4:05:5a:51:1a:11:08:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Aug 18 07:47:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61b0aa23c40dbf13546de89795eb8a1ac3c32c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7d:1e:2b:d1:6c:28:fa:ba:a8:1e:4d:97:87:
84:f0:74:0a:30:7b:ed:df:b1:6c:c1:87:47:1d:0b:
79:4b:8d:f6:c8:a2:c2:7d:73:76:ed:83:42:59:2e:
09:0b:fb:1d:4a:f3:4b:f6:7c:2c:58:11:0b:e5:76:
7d:f3:4d:bd:ce:1e:a4:00:2d:ce:8d:fe:8e:26:69:
59:3a:7a:eb:ab:0b:b4:e8:e9:cf:d1:87:b6:4a:83:
a5:6c:f2:88:4a:94:04:15:70:58:6a:72:19:66:30:
c7:3d:04:68:ba:eb:40:90:32:e8:3a:df:16:87:23:
16:32:16:62:34:05:a6:21:3f:05:2b:19:f9:f4:dd:
f7:83:79:20:6d:51:b4:22:fa:a6:1d:d1:7c:64:63:
db:33:4c:0b:9c:b4:89:91:51:63:62:53:38:f0:cf:
a7:b2:f7:e9:16:3c:fc:b4:0f:b9:23:b4:fe:77:64:
aa:c8:56:cc:09:8c:5c:a7:9f:6c:a0:28:43:14:35:
8b:3a:32:39:92:4b:33:0e:39:01:10:0c:f2:6e:de:
46:24:ce:6e:53:81:e1:d5:54:d7:46:7f:08:bf:65:
21:29:26:e8:80:00:87:d0:f6:c9:4d:10:e2:77:c4:
61:61:34:d6:1d:96:4a:67:ed:ad:95:87:bd:f0:c9:
11:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B0:AA:23:C4:0D:BF:13:54:6D:E8:97:95:EB:8A:1A:C3:C3:2C:7B
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/YbCqI8QNvxNUbeiXleuKGsPDLHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.192.0/20
45.66.185.0-45.66.187.255
91.193.60.0/22
109.68.144.0/21
178.21.168.0/21
185.70.76.0/22
185.118.125.0/24
185.168.36.0/22
185.205.96.0/22
IPv6:
2a02:4fc0::/32
Signature Algorithm: sha256WithRSAEncryption
74:6b:76:24:a9:10:f3:e6:42:66:83:f3:42:34:9f:bb:79:e6:
17:be:89:bd:95:b2:f9:eb:e1:75:ee:0a:ba:f2:b2:f8:ba:3f:
b4:d5:61:cf:33:f2:d1:48:12:65:ac:26:6c:4e:51:bc:98:c0:
d8:f2:31:e1:9f:33:f8:c5:9f:0a:4c:4d:53:61:6e:17:91:df:
b6:82:f4:b6:96:78:26:e3:ab:2b:50:df:8a:ee:30:60:82:41:
37:1b:52:0a:86:5d:70:c5:ad:e6:54:e5:6f:f3:c7:ea:ed:b6:
3d:8f:26:f9:81:ec:5e:8a:90:41:d5:e9:d2:cd:6e:3e:33:b3:
e6:32:70:36:14:d2:06:88:a0:7b:41:9a:63:98:1b:14:08:84:
aa:35:ee:11:18:ab:93:41:f8:82:65:9b:5b:92:fe:49:b7:97:
0b:f2:62:35:0c:2a:2c:88:aa:37:0f:ee:9a:60:9a:b6:b8:7b:
be:96:2a:fd:ce:b0:d4:1c:dd:e2:d4:08:89:cf:45:07:38:69:
38:70:97:77:9c:df:d5:74:3c:8e:5b:55:e1:13:a7:03:bc:fe:
99:4f:55:ae:15:b5:91:d5:b8:f8:27:6c:c6:e4:04:b0:2a:f1:
65:c5:c5:1d:83:57:be:90:5e:b7:21:a1:34:37:2e:ec:b1:fa:
7b:d8:67:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:49 2024 by rpki-client on console-ams.rpki-client.org