Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/k89v__9uLsU59G1vkm6WNSWVWvI.roa
File: k89v__9uLsU59G1vkm6WNSWVWvI.roa (raw, json)
Hash identifier: KdQYq6IZQYAVBOCX58mRmPWMI1/vKSoR+aGsBLEo1hM=
Subject key identifier: 93:CF:6F:FF:FF:6E:2E:C5:39:F4:6D:6F:92:6E:96:35:25:95:5A:F2
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018E77287A070BCBFBA3D6B751BDFF8595BF
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/k89v__9uLsU59G1vkm6WNSWVWvI.roa
Signing time: Mon 25 Mar 2024 19:48:45 +0000
ROA not before: Mon 25 Mar 2024 19:48:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 80.81.39.0/24 maxlen: 24
80.81.40.0/24 maxlen: 24
80.81.41.0/24 maxlen: 24
80.81.47.0/24 maxlen: 24
80.81.48.0/24 maxlen: 24
80.81.49.0/24 maxlen: 24
80.81.50.0/24 maxlen: 24
80.81.52.0/24 maxlen: 24
80.81.53.0/24 maxlen: 24
80.81.56.0/24 maxlen: 24
80.81.58.0/24 maxlen: 24
83.223.128.0/24 maxlen: 24
83.223.129.0/24 maxlen: 24
83.223.130.0/24 maxlen: 24
83.223.131.0/24 maxlen: 24
83.223.134.0/24 maxlen: 24
83.223.135.0/24 maxlen: 24
83.223.137.0/24 maxlen: 24
83.223.138.0/24 maxlen: 24
83.223.140.0/24 maxlen: 24
83.223.142.0/24 maxlen: 24
83.223.144.0/24 maxlen: 24
83.223.148.0/24 maxlen: 24
83.223.152.0/24 maxlen: 24
83.223.153.0/24 maxlen: 24
83.223.154.0/24 maxlen: 24
83.223.156.0/24 maxlen: 24
83.223.157.0/24 maxlen: 24
83.223.158.0/24 maxlen: 24
85.254.41.0/24 maxlen: 24
85.254.45.0/24 maxlen: 24
85.254.46.0/24 maxlen: 24
85.254.52.0/24 maxlen: 24
85.254.53.0/24 maxlen: 24
85.254.54.0/24 maxlen: 24
85.254.55.0/24 maxlen: 24
85.254.66.0/24 maxlen: 24
85.254.67.0/24 maxlen: 24
85.254.70.0/24 maxlen: 24
85.254.72.0/24 maxlen: 24
85.254.133.0/24 maxlen: 24
85.254.135.0/24 maxlen: 24
85.254.136.0/24 maxlen: 24
85.254.165.0/24 maxlen: 24
85.254.166.0/24 maxlen: 24
85.254.167.0/24 maxlen: 24
85.254.171.0/24 maxlen: 24
85.254.188.0/24 maxlen: 24
85.254.189.0/24 maxlen: 24
85.254.190.0/24 maxlen: 24
85.254.191.0/24 maxlen: 24
91.190.37.0/24 maxlen: 24
91.190.38.0/24 maxlen: 24
91.190.39.0/24 maxlen: 24
91.190.40.0/24 maxlen: 24
91.190.41.0/24 maxlen: 24
91.190.43.0/24 maxlen: 24
91.190.44.0/24 maxlen: 24
91.190.46.0/24 maxlen: 24
91.190.47.0/24 maxlen: 24
91.190.61.0/24 maxlen: 24
91.190.62.0/24 maxlen: 24
94.101.226.0/24 maxlen: 24
94.101.237.0/24 maxlen: 24
159.148.143.0/24 maxlen: 24
159.148.148.0/24 maxlen: 24
159.148.149.0/24 maxlen: 24
159.148.181.0/24 maxlen: 24
159.148.240.0/24 maxlen: 24
159.148.242.0/24 maxlen: 24
159.148.243.0/24 maxlen: 24
185.176.116.0/24 maxlen: 24
185.176.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 08:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:77:28:7a:07:0b:cb:fb:a3:d6:b7:51:bd:ff:85:95:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Mar 25 19:48:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93cf6fffff6e2ec539f46d6f926e963525955af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bf:6c:56:0d:da:6d:34:0b:e3:36:dd:27:97:
25:85:a6:91:c5:15:ba:bd:15:01:ab:7a:21:79:43:
51:a7:82:7d:82:5e:11:30:87:5a:57:72:36:0e:a7:
14:85:dc:34:f4:39:ac:ed:28:9f:16:dc:d4:90:34:
72:c1:3c:82:19:50:d8:36:ed:a3:c5:ec:51:68:3b:
f0:a6:e4:1d:b7:c5:fb:dc:dd:67:92:5d:24:d6:40:
0a:d0:d6:4c:d8:2f:13:49:fd:22:8a:01:7a:7b:97:
58:56:92:6b:7c:dc:ee:45:c9:89:38:1d:bf:bb:a2:
0c:70:2e:fa:f0:13:17:d2:a1:92:12:88:68:87:e5:
3a:f2:02:99:bb:85:19:a7:ff:64:fb:9d:00:cf:39:
7e:cf:f6:19:46:7d:a1:ac:ac:ca:61:01:c3:d0:a4:
5b:37:9b:c4:3a:71:19:f2:a7:84:33:f2:57:1e:5b:
32:ce:34:31:20:00:a7:59:70:51:d5:b4:8f:95:56:
cf:67:ee:30:bb:62:83:7f:c6:23:c4:98:d6:82:b4:
2f:28:74:67:b7:56:9d:80:b9:6a:91:8d:0a:23:f4:
ae:d5:9e:b9:15:0f:eb:f1:e6:4d:d2:8a:11:c8:ea:
0b:fc:06:dc:56:47:d5:18:bd:68:ea:1b:b9:fb:c2:
c8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CF:6F:FF:FF:6E:2E:C5:39:F4:6D:6F:92:6E:96:35:25:95:5A:F2
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/k89v__9uLsU59G1vkm6WNSWVWvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.39.0-80.81.41.255
80.81.47.0-80.81.50.255
80.81.52.0/23
80.81.56.0/24
80.81.58.0/24
83.223.128.0/22
83.223.134.0/23
83.223.137.0-83.223.138.255
83.223.140.0/24
83.223.142.0/24
83.223.144.0/24
83.223.148.0/24
83.223.152.0-83.223.154.255
83.223.156.0-83.223.158.255
85.254.41.0/24
85.254.45.0-85.254.46.255
85.254.52.0/22
85.254.66.0/23
85.254.70.0/24
85.254.72.0/24
85.254.133.0/24
85.254.135.0-85.254.136.255
85.254.165.0-85.254.167.255
85.254.171.0/24
85.254.188.0/22
91.190.37.0-91.190.41.255
91.190.43.0-91.190.44.255
91.190.46.0/23
91.190.61.0-91.190.62.255
94.101.226.0/24
94.101.237.0/24
159.148.143.0/24
159.148.148.0/23
159.148.181.0/24
159.148.240.0/24
159.148.242.0/23
185.176.116.0/24
185.176.119.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:eb:89:6e:67:3f:0d:65:3f:4b:7f:62:36:82:ef:6e:16:c0:
a8:77:5c:66:04:20:4d:1b:5d:1a:e8:a9:c6:18:ff:c7:7e:a0:
47:bf:80:ed:04:77:cb:2c:b4:8c:00:12:c0:ae:4b:42:39:b7:
3a:21:f2:ee:51:37:fb:d7:71:a2:1b:64:d1:0a:9e:fc:c9:68:
29:9c:88:c6:61:6f:18:f3:71:a8:a9:a5:0d:17:fb:ce:c8:48:
96:f8:8e:f9:33:61:f3:b6:e1:72:d1:dd:05:ea:15:25:41:35:
22:38:ec:a2:e3:83:e4:f1:5b:ee:6f:9d:dc:42:44:40:e8:0a:
48:6d:6b:aa:34:57:c1:f8:ae:12:37:5c:28:7f:1c:9f:f8:27:
bc:52:17:66:47:b8:4a:ea:7c:40:fe:a4:54:3e:82:c2:75:d3:
1e:82:7a:63:3e:33:42:23:18:f8:d7:62:fc:70:0d:dd:d5:70:
01:2e:1c:a9:b3:8f:dd:62:1b:37:ef:4d:a4:33:32:ee:68:a8:
e7:c2:b7:20:ce:5a:75:54:aa:e8:9d:9a:ec:1f:dc:16:41:a8:
e2:f7:e6:47:16:eb:d1:23:3f:22:89:9f:0c:ea:9a:c4:c4:ee:
14:73:e6:fd:c2:ad:46:d7:11:1f:f2:5a:0f:96:bf:7a:7e:d1:
b3:c3:e2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 11:06:50 2024 by rpki-client on console-fra.rpki-client.org