Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/bosr6rEB4qiZmJmFtiYz3v1qT8U.roa
File: bosr6rEB4qiZmJmFtiYz3v1qT8U.roa (raw, json)
Hash identifier: et+S8qJWXhakOSV74ihhZB6lwxmcNOYVV2t7yaxEetk=
Subject key identifier: 6E:8B:2B:EA:B1:01:E2:A8:99:98:99:85:B6:26:33:DE:FD:6A:4F:C5
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 0191673E9F93C2FD3904095C1E046B53BFE0
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/bosr6rEB4qiZmJmFtiYz3v1qT8U.roa
Signing time: Sun 18 Aug 2024 20:47:22 +0000
ROA not before: Sun 18 Aug 2024 20:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57169
IP address blocks: 5.180.114.0/24 maxlen: 24
37.235.48.0/20 maxlen: 20
37.235.50.0/23 maxlen: 23
37.235.50.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
83.243.122.0/24 maxlen: 24
83.243.123.0/24 maxlen: 24
84.247.61.0/24 maxlen: 24
86.106.119.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
92.243.66.0/24 maxlen: 24
95.156.205.0/24 maxlen: 24
103.57.250.0/24 maxlen: 24
134.255.210.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.14.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.28.0/24 maxlen: 24
151.236.30.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
185.26.238.0/24 maxlen: 24
213.183.54.0/24 maxlen: 24
213.183.55.0/24 maxlen: 24
213.183.56.0/24 maxlen: 24
213.183.57.0/24 maxlen: 24
2a03:f80::/29 maxlen: 29
2a03:f80:7::/48 maxlen: 48
2a03:f80:31::/48 maxlen: 48
2a03:f80:56::/48 maxlen: 48
2a03:f80:57::/48 maxlen: 48
2a03:f80:70::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:357::/48 maxlen: 48
2a03:f80:359::/48 maxlen: 48
2a03:f80:370::/48 maxlen: 48
2a03:f80:371::/48 maxlen: 48
2a03:f80:3991::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f87:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 05 Sep 2024 10:21:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:67:3e:9f:93:c2:fd:39:04:09:5c:1e:04:6b:53:bf:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Aug 18 20:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e8b2beab101e2a899989985b62633defd6a4fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:57:2f:66:e6:b7:89:07:1a:d7:64:2a:ba:59:
0a:81:a8:8b:35:9f:2f:d0:51:80:4f:3a:d3:9f:af:
09:90:cd:5a:92:a6:b7:25:77:5c:37:a6:28:98:40:
c3:ae:6e:7b:32:2c:21:f1:52:1b:9b:73:39:9b:67:
d3:be:3b:2a:7f:60:8f:4c:38:b0:90:83:60:33:03:
e0:c7:84:c6:0e:c9:14:c2:61:f1:d6:b3:ec:b8:13:
39:a0:38:2b:fe:d2:8f:3f:36:70:72:33:9a:d2:bb:
42:9b:e3:6e:fb:24:3c:66:ad:95:e7:84:a1:62:42:
2c:65:c3:ac:c5:d7:f7:77:a0:0e:30:9b:a4:dd:26:
b8:b7:2f:db:fa:32:90:4a:b2:64:45:24:62:9f:f7:
7e:59:0c:06:f0:32:a7:83:82:9d:83:25:14:89:dc:
2c:9c:9e:82:6b:b8:e8:da:38:21:40:70:3a:01:cb:
f9:13:64:c5:ef:49:35:a8:fb:19:45:4c:ef:c9:ca:
a3:ad:37:61:24:e4:06:00:dd:ee:29:2f:8e:1d:ab:
af:ac:f3:45:09:b9:b4:c0:a9:a0:8b:6a:e8:85:a8:
70:46:0d:93:c8:f4:72:fc:6b:c2:81:29:4a:b4:5f:
02:19:c6:12:9c:72:14:2e:99:26:1a:48:5b:1e:f3:
c7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8B:2B:EA:B1:01:E2:A8:99:98:99:85:B6:26:33:DE:FD:6A:4F:C5
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/bosr6rEB4qiZmJmFtiYz3v1qT8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.114.0/24
37.235.48.0/20
83.243.120.0/24
83.243.122.0/23
84.247.61.0/24
86.106.119.0/24
89.31.123.0/24
91.132.94.0/24
91.227.204.0/23
92.243.66.0/24
95.156.205.0/24
103.57.250.0/24
134.255.210.0/24
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0-185.26.238.255
213.183.54.0-213.183.57.255
IPv6:
2a03:f80::/29
Signature Algorithm: sha256WithRSAEncryption
28:ce:81:da:34:0f:a8:b0:b9:82:e5:4b:50:2d:63:fa:d2:75:
42:ce:7b:d5:0f:88:3a:7b:8a:d4:32:cd:48:15:55:45:c3:84:
1c:19:fb:93:0f:e3:3b:21:2a:57:75:aa:1d:68:4c:d7:d0:8c:
87:25:a9:ad:1a:75:1d:a6:f2:5b:75:07:03:df:f0:7e:c2:9c:
56:87:1e:09:26:2c:8c:12:20:81:b3:be:c5:bc:07:ba:21:f7:
de:2b:6d:f3:d8:d2:8e:91:b0:9c:09:3e:03:91:f1:12:5a:f6:
79:b6:c5:e1:26:d7:ee:f5:2d:61:87:9b:75:49:84:d0:84:db:
9f:6b:c1:ef:94:cd:3f:67:48:aa:61:af:a0:3d:1b:f3:1e:41:
88:98:2c:1b:61:0e:da:2f:52:88:95:87:d9:f6:9a:f4:6b:f9:
48:82:cc:33:94:4e:39:75:ba:20:a0:b8:a4:53:d9:7d:3d:91:
77:45:11:d9:0f:a0:b9:00:5a:b2:6c:fd:03:f3:f5:cd:e3:39:
2c:a8:bf:25:03:44:32:5c:27:fd:59:85:59:86:b4:47:71:44:
f4:b0:d4:7a:18:34:d8:9f:c3:cc:62:6f:e2:0e:bd:8f:d8:d7:
44:1e:7c:37:b9:67:66:44:49:64:03:74:bb:4f:9e:99:25:71:
af:50:a5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 12:31:35 2024 by rpki-client on console-ams.rpki-client.org