Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/VV2Bqt2ob_1X7msLJ5dl0GcUbvs.roa
File: VV2Bqt2ob_1X7msLJ5dl0GcUbvs.roa (raw, json)
Hash identifier: QSblBvLs+6VYqY2OkofemWhWphdbAAc1IKYZ0ABRlR4=
Subject key identifier: 55:5D:81:AA:DD:A8:6F:FD:57:EE:6B:0B:27:97:65:D0:67:14:6E:FB
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018CF6ED116F058019A9461BD029EC5E5BEA
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/VV2Bqt2ob_1X7msLJ5dl0GcUbvs.roa
Signing time: Thu 11 Jan 2024 05:09:40 +0000
ROA not before: Thu 11 Jan 2024 05:09:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.151.0/24 maxlen: 32
5.231.233.0/24 maxlen: 32
95.215.32.0/22 maxlen: 32
89.144.0.0/18 maxlen: 32
5.175.255.0/24 maxlen: 32
94.103.160.0/20 maxlen: 32
5.230.11.0/24 maxlen: 32
5.83.128.0/20 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.102.0/24 maxlen: 32
94.249.128.0/17 maxlen: 32
87.239.128.0/21 maxlen: 32
5.175.128.0/17 maxlen: 32
193.28.251.0/24 maxlen: 32
85.93.0.0/19 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
5.230.224.0/24 maxlen: 32
89.106.64.0/19 maxlen: 32
77.90.0.0/18 maxlen: 32
77.90.11.0/24 maxlen: 24
77.90.9.0/24 maxlen: 24
77.90.10.0/24 maxlen: 24
77.90.14.0/24 maxlen: 24
77.90.15.0/24 maxlen: 24
77.90.13.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
77.90.12.0/24 maxlen: 24
85.93.20.0/24 maxlen: 32
217.69.160.0/20 maxlen: 32
195.110.14.0/23 maxlen: 32
2a02:7a0::/29 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a00:12d8::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Tue 16 Jan 2024 05:12:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f6:ed:11:6f:05:80:19:a9:46:1b:d0:29:ec:5e:5b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 11 05:09:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=555d81aadda86ffd57ee6b0b279765d067146efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a5:82:9f:a2:85:c2:c8:74:ff:3a:cd:67:e9:
63:3c:36:4a:0b:3a:1d:f3:08:ad:cf:d1:f8:7d:74:
81:7f:14:38:34:62:44:29:cc:0b:88:66:fd:f0:4b:
26:c7:c6:30:ca:37:16:a2:af:50:4e:cf:e7:e8:99:
fe:5a:49:da:45:fd:68:37:18:60:67:44:1e:ea:c7:
33:a3:2b:76:9b:e1:d1:f3:43:d6:20:d7:4a:9d:d2:
fa:17:19:8d:fb:6b:1a:db:b6:76:3a:73:20:42:8e:
19:a3:ea:78:3c:38:62:82:6c:35:83:ff:f4:6a:67:
7e:d8:ca:8d:d8:81:d1:14:77:09:1e:3a:30:e8:df:
4e:1c:b3:1f:8f:be:b7:94:4b:05:5a:40:b1:56:73:
d8:c5:f4:b5:21:7d:a7:99:16:86:c4:90:ff:c1:36:
ae:0c:52:c2:9b:e4:ff:c3:86:89:32:39:0b:d2:e2:
d3:f3:75:4f:93:24:c4:c8:db:4e:ef:35:43:1d:28:
58:2c:d1:84:67:80:23:c1:7e:8e:84:58:06:a7:a4:
3b:81:70:af:ed:2e:a4:ab:e0:3c:e0:c9:7f:93:e1:
f5:c9:b7:57:3d:41:f3:50:4f:81:b7:a4:5c:12:08:
f7:97:bf:50:1d:98:90:be:6b:5b:47:7a:a1:ab:04:
5e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5D:81:AA:DD:A8:6F:FD:57:EE:6B:0B:27:97:65:D0:67:14:6E:FB
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/VV2Bqt2ob_1X7msLJ5dl0GcUbvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/20
5.83.151.0/24
5.175.128.0/17
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
4a:86:7e:57:f5:37:25:f3:ad:86:eb:95:a4:42:13:2c:5e:df:
d6:77:7c:d3:0c:87:35:4f:ae:46:5b:43:e1:45:ff:d2:ee:5e:
62:08:b2:5b:a6:96:7c:b4:b8:af:c6:a0:52:21:91:9c:08:8b:
b3:b0:68:3e:2e:82:4a:4e:90:17:3d:96:04:f8:57:11:bc:9d:
f6:d0:09:95:e2:5b:00:ff:f8:1c:f0:44:7d:ea:a8:ad:f5:75:
f9:55:23:bb:96:fc:19:fc:61:48:ab:18:9e:35:1f:92:5e:a7:
7c:cb:8d:5e:9e:38:a7:0b:7a:1c:b0:de:e8:a3:f8:0d:d0:37:
16:12:89:60:dd:d1:23:59:30:81:60:d7:3a:24:b7:01:a9:4b:
4f:29:dd:b9:bc:a6:0e:0c:5c:45:77:1d:b8:f4:a2:8d:d6:8a:
5b:62:3f:bf:b4:97:f3:8d:a4:ec:38:73:eb:20:09:f7:59:51:
7e:7d:da:29:e8:a0:13:cb:c9:33:6e:da:a2:28:e0:da:e8:5e:
35:3f:d1:f4:9e:85:35:3d:9b:dc:47:cd:70:c4:fe:47:7f:c6:
6d:85:a0:1e:6e:2d:c4:f5:13:07:08:43:2c:45:78:e4:de:b0:
11:ae:df:10:d0:92:de:b0:36:12:0c:82:97:6a:28:89:93:8e:
e6:d6:e7:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org