Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/e8TktEciF2dI1steITlLnlo7tKg.roa
File: e8TktEciF2dI1steITlLnlo7tKg.roa (raw, json)
Hash identifier: fHn6kKGQTFGSjEOqZtdahJM7kU26eG9b/c15TLG8IZ4=
Subject key identifier: 7B:C4:E4:B4:47:22:17:67:48:D6:CB:5E:21:39:4B:9E:5A:3B:B4:A8
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 0191FA35B2AA0C4FFC0FEDBE97E2CE869A2B
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/e8TktEciF2dI1steITlLnlo7tKg.roa
Signing time: Mon 16 Sep 2024 09:41:48 +0000
ROA not before: Mon 16 Sep 2024 09:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57169
IP address blocks: 5.180.114.0/24 maxlen: 24
37.235.48.0/20 maxlen: 20
37.235.50.0/23 maxlen: 23
37.235.50.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
45.153.125.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
83.243.122.0/24 maxlen: 24
83.243.123.0/24 maxlen: 24
84.247.61.0/24 maxlen: 24
86.106.119.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
89.46.238.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
92.243.66.0/24 maxlen: 24
95.156.205.0/24 maxlen: 24
103.57.250.0/24 maxlen: 24
134.255.210.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.14.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.28.0/24 maxlen: 24
151.236.30.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
185.26.238.0/24 maxlen: 24
188.214.33.0/24 maxlen: 24
188.214.34.0/24 maxlen: 24
188.214.38.0/24 maxlen: 24
188.214.39.0/24 maxlen: 24
213.183.54.0/24 maxlen: 24
213.183.55.0/24 maxlen: 24
213.183.56.0/24 maxlen: 24
213.183.57.0/24 maxlen: 24
2a03:f80::/29 maxlen: 29
2a03:f80:7::/48 maxlen: 48
2a03:f80:31::/48 maxlen: 48
2a03:f80:56::/48 maxlen: 48
2a03:f80:57::/48 maxlen: 48
2a03:f80:70::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:357::/48 maxlen: 48
2a03:f80:359::/48 maxlen: 48
2a03:f80:370::/48 maxlen: 48
2a03:f80:371::/48 maxlen: 48
2a03:f80:3991::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f87:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 18 Sep 2024 11:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:35:b2:aa:0c:4f:fc:0f:ed:be:97:e2:ce:86:9a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Sep 16 09:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bc4e4b44722176748d6cb5e21394b9e5a3bb4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2d:77:1d:47:fd:0f:86:1a:e4:a5:b5:08:18:
ea:31:e7:20:18:a1:74:1f:d7:65:a0:75:0f:5c:e3:
ad:3d:72:eb:5c:f3:76:2b:63:11:31:38:1c:93:81:
8b:58:39:d5:74:18:1e:38:42:ea:7b:6b:0c:50:6d:
d5:17:c2:23:bd:dc:7a:63:b3:41:43:c6:82:35:fe:
f6:2f:62:85:07:e6:ca:0b:6e:03:c8:f9:be:7c:ab:
47:ca:a9:f6:e4:c1:a0:72:27:dc:33:05:6e:96:4a:
9e:83:a3:e9:0c:5c:ce:d8:14:d9:42:b6:a1:f9:9b:
d0:34:15:41:ae:bd:fb:d8:c1:69:d2:dd:c9:a3:9d:
23:a5:6b:61:23:ed:b4:95:fc:91:86:eb:bb:d5:90:
1f:25:42:a5:c7:8d:37:12:69:22:4f:dd:84:50:b7:
04:bb:83:2e:8b:cf:47:4f:cc:8d:82:05:d5:02:39:
e0:fa:e2:11:88:bf:15:5e:55:65:d5:03:71:57:3c:
d3:ce:7e:13:73:c5:ea:c6:5a:46:71:15:8c:9e:2c:
c3:bf:b9:e8:e2:3b:11:ff:09:87:81:42:20:ff:57:
96:21:4e:45:c9:e3:f7:d9:85:35:ae:b1:3d:77:33:
c1:35:9e:0b:ca:b6:2a:9b:72:93:70:1d:11:44:c4:
e4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C4:E4:B4:47:22:17:67:48:D6:CB:5E:21:39:4B:9E:5A:3B:B4:A8
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/e8TktEciF2dI1steITlLnlo7tKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.114.0/24
37.235.48.0/20
45.153.125.0/24
83.243.120.0/24
83.243.122.0/23
84.247.61.0/24
86.106.119.0/24
89.31.123.0/24
89.46.238.0/24
91.132.94.0/24
91.227.204.0/23
92.243.66.0/24
95.156.205.0/24
103.57.250.0/24
134.255.210.0/24
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0-185.26.238.255
188.214.33.0-188.214.34.255
188.214.38.0/23
213.183.54.0-213.183.57.255
IPv6:
2a03:f80::/29
Signature Algorithm: sha256WithRSAEncryption
33:d4:c1:3d:2d:60:5f:a8:48:03:80:0f:b3:6b:ce:87:70:e4:
50:5b:bc:4d:4e:07:bc:1f:52:28:f7:d2:bd:6c:f2:43:d5:33:
13:05:65:82:72:7b:bb:cb:dd:a5:97:5e:78:23:3c:dc:2c:87:
9d:c9:43:d3:44:b6:3f:1f:1c:4a:94:ae:08:02:2e:94:54:78:
99:43:82:1d:e3:ba:3c:92:5b:95:4c:d7:5b:7e:03:fd:80:68:
50:f2:76:22:3b:9e:bc:0f:a9:8a:5d:ec:7c:4a:c2:f8:dd:54:
03:72:2a:9c:be:8a:67:fc:33:a8:a1:1f:1a:19:f3:f1:87:d5:
60:e2:bf:e7:51:d6:ed:44:44:f6:7d:d9:e1:89:ca:d4:d6:84:
78:e8:95:e8:73:44:0d:9d:f7:64:3b:55:02:62:e0:6c:78:32:
28:29:16:37:4b:4e:8e:57:70:d0:33:ab:ed:0e:82:8a:30:3f:
24:34:b6:0c:86:73:af:b8:c3:a4:85:04:ff:bf:a0:6d:be:d4:
66:b1:70:c8:e0:23:de:12:d6:d8:08:62:34:9b:35:a1:ca:94:
85:fc:81:64:ef:de:66:56:28:57:1f:1b:16:d1:c7:b4:5f:f3:
ed:8e:1a:21:59:ae:88:eb:36:c3:d7:ef:3c:fb:98:b6:7d:7d:
1e:ed:e3:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 15:59:07 2024 by rpki-client on console-fra.rpki-client.org