Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/v-PzzBbhmT8xlUaSxmAoPNGkGQk.roa
File: v-PzzBbhmT8xlUaSxmAoPNGkGQk.roa (raw, json)
Hash identifier: DTJbIPmpo17Q6FBpcmEir6WUf7q62IHfMhgzAO1PzIg=
Subject key identifier: BF:E3:F3:CC:16:E1:99:3F:31:95:46:92:C6:60:28:3C:D1:A4:19:09
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018E3849810564A691BB52699A875092DBBD
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/v-PzzBbhmT8xlUaSxmAoPNGkGQk.roa
Signing time: Wed 13 Mar 2024 14:48:44 +0000
ROA not before: Wed 13 Mar 2024 14:48:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2588
IP address blocks: 46.19.200.0/21 maxlen: 21
80.81.32.0/19 maxlen: 24
80.81.35.0/24 maxlen: 24
83.223.128.0/19 maxlen: 19
83.223.145.0/24 maxlen: 24
83.223.155.0/24 maxlen: 24
85.254.0.0/17 maxlen: 17
85.254.49.0/24 maxlen: 24
85.254.62.0/24 maxlen: 24
85.254.69.0/24 maxlen: 24
85.254.104.0/22 maxlen: 22
85.254.108.0/22 maxlen: 22
85.254.116.0/22 maxlen: 22
85.254.116.0/24 maxlen: 24
85.254.122.0/24 maxlen: 24
85.254.128.0/18 maxlen: 18
91.190.32.0/19 maxlen: 24
91.190.36.0/24 maxlen: 24
91.190.52.0/24 maxlen: 24
91.190.56.0/23 maxlen: 24
91.190.60.0/24 maxlen: 24
94.101.224.0/20 maxlen: 20
109.205.120.0/21 maxlen: 21
109.205.127.0/24 maxlen: 24
159.148.0.0/16 maxlen: 16
159.148.10.0/24 maxlen: 24
159.148.49.0/24 maxlen: 24
159.148.50.0/24 maxlen: 24
159.148.63.0/24 maxlen: 24
159.148.78.0/24 maxlen: 24
159.148.80.0/24 maxlen: 24
159.148.116.0/24 maxlen: 24
159.148.117.0/24 maxlen: 24
159.148.125.0/24 maxlen: 24
159.148.138.0/24 maxlen: 24
159.148.150.0/24 maxlen: 24
159.148.186.0/24 maxlen: 24
159.148.188.0/24 maxlen: 24
159.148.201.0/24 maxlen: 24
159.148.222.0/24 maxlen: 24
159.148.229.0/24 maxlen: 24
159.148.233.0/24 maxlen: 24
185.27.92.0/22 maxlen: 22
185.176.116.0/22 maxlen: 22
217.69.112.0/20 maxlen: 20
217.69.113.0/24 maxlen: 24
2a02:610::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 14 Mar 2024 09:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:49:81:05:64:a6:91:bb:52:69:9a:87:50:92:db:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Mar 13 14:48:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfe3f3cc16e1993f31954692c660283cd1a41909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fb:04:51:3e:4f:ef:a5:43:98:b4:69:16:64:
cb:db:4e:d2:73:17:32:a6:ed:9e:e2:c1:b0:d7:eb:
fe:bc:10:cd:ee:bc:13:c5:f2:b4:85:f7:b9:a8:36:
bc:a5:17:ec:a8:8a:b8:32:90:13:42:42:5e:c4:40:
bf:a5:53:68:04:6c:bd:87:32:b6:0d:f0:a2:bd:5e:
03:cf:f8:c7:e3:a1:12:a7:ed:3b:35:11:59:42:18:
41:19:2f:8a:b2:6e:82:0d:2f:34:bc:1d:c4:a5:5d:
41:2e:64:51:1a:93:e2:ad:78:23:57:2e:f6:64:19:
62:62:11:4f:31:ad:d7:07:10:ea:ed:f4:6d:36:fb:
50:41:e6:a1:e3:66:8a:dc:88:4b:46:a2:b2:a3:de:
a0:60:22:9f:3f:54:bf:4c:f6:59:ee:d9:15:48:c3:
05:55:63:a2:9a:b2:7c:60:d8:c3:36:78:1e:3b:60:
fb:c9:94:b9:76:43:35:ff:08:c7:16:f9:32:4c:66:
66:5d:51:2c:b4:98:0b:bb:98:f6:1b:a5:c8:ba:cf:
90:2f:7a:97:84:b0:ad:3c:ed:ee:29:ff:af:09:1f:
e3:51:f5:29:bb:ec:71:69:f3:2e:72:e7:74:30:29:
44:91:88:ac:76:38:45:60:18:b0:ae:02:24:69:c8:
6d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:E3:F3:CC:16:E1:99:3F:31:95:46:92:C6:60:28:3C:D1:A4:19:09
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/v-PzzBbhmT8xlUaSxmAoPNGkGQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.200.0/21
80.81.32.0/19
83.223.128.0/19
85.254.0.0-85.254.191.255
91.190.32.0/19
94.101.224.0/20
109.205.120.0/21
159.148.0.0/16
185.27.92.0/22
185.176.116.0/22
217.69.112.0/20
IPv6:
2a02:610::/32
Signature Algorithm: sha256WithRSAEncryption
68:98:14:9c:81:13:30:65:a3:75:34:58:7d:0e:f8:07:b2:03:
cb:b9:4d:a9:35:77:8a:5a:71:62:23:8a:40:f4:74:e0:dc:5f:
c5:36:2d:eb:c1:fc:fe:1f:6b:36:0f:5b:fd:6c:fe:dd:1b:f3:
9f:08:62:65:61:61:7d:59:2e:e7:66:0f:b4:33:26:90:90:15:
5a:df:fd:5a:44:f7:11:03:ab:1b:2a:e9:1d:59:89:98:8e:58:
45:5e:52:95:cb:98:63:5f:ca:0c:d7:db:7e:23:5e:05:d3:68:
67:e4:62:78:6c:9f:df:bc:22:4d:0a:7b:fd:da:0e:66:32:69:
f2:cb:72:4c:d1:ee:4a:72:07:6b:52:0e:97:39:57:88:de:43:
15:04:30:f5:57:e7:a6:5a:67:83:0c:3c:20:6d:d8:69:90:c1:
d3:7d:03:d4:de:b8:e0:e0:9c:e0:73:b3:01:f1:27:60:c8:66:
d5:c6:76:26:b2:fb:c4:84:c6:e4:aa:c9:6b:b1:ab:ca:5f:60:
c8:96:a8:9d:e8:d3:59:3f:e1:83:42:a6:ba:6e:21:18:0f:9a:
1e:c3:1f:73:f4:29:35:52:11:ea:09:4e:79:33:f0:b4:8c:17:
f4:45:e1:e3:6d:4a:45:6e:d7:ca:d4:fd:d0:6b:f1:fd:58:87:
57:c9:c1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 14:48:43 2024 by rpki-client on console-ams.rpki-client.org