Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/fABogcLUmCUvrUebZWsuT3Wt1M8.roa
File: fABogcLUmCUvrUebZWsuT3Wt1M8.roa (raw, json)
Hash identifier: 9V26nHy7psMrwS9EQbWqVyHxBOSqHtxbjvp6s1T3Xno=
Subject key identifier: 7C:00:68:81:C2:D4:98:25:2F:AD:47:9B:65:6B:2E:4F:75:AD:D4:CF
Certificate issuer: /CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Certificate serial: 018CC94E0DDA4CD9083B2CC1A052F891AAF7
Authority key identifier: F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/fABogcLUmCUvrUebZWsuT3Wt1M8.roa
Signing time: Tue 02 Jan 2024 08:33:04 +0000
ROA not before: Tue 02 Jan 2024 08:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202448
IP address blocks: 45.137.151.0/24 maxlen: 24
45.137.150.0/24 maxlen: 24
45.137.148.0/24 maxlen: 32
45.137.149.0/24 maxlen: 24
2.56.213.0/24 maxlen: 24
2.56.212.0/24 maxlen: 24
89.43.33.0/24 maxlen: 24
194.26.213.0/24 maxlen: 24
86.107.197.0/24 maxlen: 24
93.114.128.0/24 maxlen: 24
2.56.215.0/24 maxlen: 24
2.56.214.0/24 maxlen: 24
62.3.32.0/24 maxlen: 24
194.32.78.0/24 maxlen: 24
194.32.77.0/24 maxlen: 24
194.32.76.0/24 maxlen: 24
194.32.79.0/24 maxlen: 24
91.250.248.0/24 maxlen: 32
91.250.249.0/24 maxlen: 32
185.234.52.0/24 maxlen: 32
193.201.15.0/24 maxlen: 24
185.96.163.0/24 maxlen: 24
178.157.82.0/24 maxlen: 24
185.170.213.0/24 maxlen: 24
178.157.91.0/24 maxlen: 24
185.170.212.0/24 maxlen: 24
178.157.90.0/24 maxlen: 24
185.170.215.0/24 maxlen: 24
185.170.214.0/24 maxlen: 24
45.153.184.0/24 maxlen: 24
45.153.186.0/24 maxlen: 24
45.153.185.0/24 maxlen: 24
45.153.187.0/24 maxlen: 24
86.106.181.0/24 maxlen: 24
89.38.135.0/24 maxlen: 32
91.227.41.0/24 maxlen: 24
91.227.40.0/24 maxlen: 24
86.105.252.0/24 maxlen: 24
94.176.182.0/24 maxlen: 24
185.243.214.0/24 maxlen: 32
185.243.215.0/24 maxlen: 24
194.99.23.0/24 maxlen: 24
194.99.22.0/24 maxlen: 24
194.99.21.0/24 maxlen: 24
194.99.20.0/24 maxlen: 24
89.38.131.0/24 maxlen: 24
31.14.238.0/24 maxlen: 24
89.38.130.0/24 maxlen: 24
89.38.129.0/24 maxlen: 24
89.38.128.0/24 maxlen: 24
188.212.125.0/24 maxlen: 24
188.212.124.0/24 maxlen: 24
93.114.133.0/24 maxlen: 24
93.115.16.0/24 maxlen: 24
93.115.17.0/24 maxlen: 24
93.115.23.0/24 maxlen: 24
93.115.22.0/24 maxlen: 24
93.115.21.0/24 maxlen: 24
93.115.20.0/24 maxlen: 24
93.115.19.0/24 maxlen: 24
93.115.18.0/24 maxlen: 24
31.222.229.0/24 maxlen: 24
2a05:8280::/32 maxlen: 32
2a09:cd42::/32 maxlen: 32
2a09:cd45::/32 maxlen: 32
2a09:cd43::/32 maxlen: 32
2a0c:b9c1::/32 maxlen: 32
2a09:cd41::/32 maxlen: 32
2a09:cd40::/32 maxlen: 32
2a0c:b9c0::/32 maxlen: 32
2a09:cd46::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 04 Jan 2024 09:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:0d:da:4c:d9:08:3b:2c:c1:a0:52:f8:91:aa:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Validity
Not Before: Jan 2 08:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c006881c2d498252fad479b656b2e4f75add4cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d5:ac:6e:13:2b:8c:75:ae:8a:d5:02:89:8d:
76:f1:aa:29:dc:a9:5b:da:19:7d:eb:26:83:c4:a5:
27:51:a0:b7:e8:50:44:f9:3b:9f:b3:84:62:a5:7f:
80:30:22:55:2b:48:79:68:ea:38:4d:f7:ee:9c:04:
05:19:f5:c1:4c:6d:97:6f:c6:77:63:f5:72:18:8d:
08:27:8a:33:ea:f9:c3:ae:6c:23:2d:1c:ad:2d:7e:
1f:9f:75:14:96:8d:ff:72:c3:19:92:dc:44:28:6f:
ca:79:0f:9d:cf:58:b6:9f:59:8c:09:11:9e:36:8e:
1d:50:77:ca:e1:81:73:f7:0b:c3:34:6a:3a:43:e5:
06:3e:28:c3:04:71:5c:04:8a:65:d1:99:87:26:81:
a5:3b:15:d7:9a:97:db:c1:4e:cc:38:3e:55:9f:64:
c3:51:ce:2f:d6:78:5f:1e:42:93:d3:70:db:cb:4e:
41:2c:1d:95:0f:cf:67:98:66:eb:27:dc:7a:d6:04:
c3:b5:5a:68:ec:b9:11:f1:b7:18:bf:ef:7b:24:a0:
6c:f6:6e:70:0e:fe:25:72:f5:d5:25:10:79:b3:6d:
31:59:f9:b5:49:30:9e:05:5f:a3:b1:11:b6:2e:c1:
b8:a3:f4:97:9f:aa:0b:66:43:29:af:a1:7c:0f:8a:
52:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:00:68:81:C2:D4:98:25:2F:AD:47:9B:65:6B:2E:4F:75:AD:D4:CF
X509v3 Authority Key Identifier:
keyid:F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/fABogcLUmCUvrUebZWsuT3Wt1M8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.212.0/22
31.14.238.0/24
31.222.229.0/24
45.137.148.0/22
45.153.184.0/22
62.3.32.0/24
86.105.252.0/24
86.106.181.0/24
86.107.197.0/24
89.38.128.0/22
89.38.135.0/24
89.43.33.0/24
91.227.40.0/23
91.250.248.0/23
93.114.128.0/24
93.114.133.0/24
93.115.16.0/21
94.176.182.0/24
178.157.82.0/24
178.157.90.0/23
185.96.163.0/24
185.170.212.0/22
185.234.52.0/24
185.243.214.0/23
188.212.124.0/23
193.201.15.0/24
194.26.213.0/24
194.32.76.0/22
194.99.20.0/22
IPv6:
2a05:8280::/32
2a09:cd40::/30
2a09:cd45::-2a09:cd46:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:b9c0::/31
Signature Algorithm: sha256WithRSAEncryption
0c:d6:52:49:31:eb:2a:23:2d:23:60:eb:c5:f4:76:e2:2e:c5:
01:8e:27:31:c6:25:35:6d:35:76:98:09:86:10:55:38:22:f5:
f4:f8:50:24:b4:fb:77:ef:7e:3e:2d:80:79:3b:6b:61:57:90:
59:ee:2f:ad:5f:a2:b2:31:ff:19:26:c2:74:8d:ca:58:b8:6c:
3c:af:67:bf:8c:91:e8:c8:3c:8e:e4:b3:2f:d5:99:78:7d:cd:
f2:4e:b2:b1:e7:e8:8b:b7:77:ae:7a:e7:4f:fa:7e:c2:e5:87:
f1:d4:bb:7b:5f:99:09:95:61:5d:01:6d:37:2d:5d:e8:a8:de:
7f:38:25:67:b8:83:f2:fe:1e:63:f6:5c:c3:b3:61:a0:cf:78:
af:25:2a:5c:b4:31:1c:1e:fd:90:10:dd:c9:bf:9b:0b:55:6a:
bc:56:b9:a1:82:79:a6:9a:14:9d:b9:e8:e6:3e:77:d9:71:0d:
6d:b9:e7:95:fc:b3:ea:24:fb:b6:14:18:d0:65:40:a1:f2:0d:
18:76:9d:ef:31:e3:f6:1f:d0:72:02:e2:09:49:55:91:34:39:
a0:2e:35:7e:54:09:30:cf:66:87:73:9f:ba:8e:e9:3c:46:00:
42:3a:51:57:7c:8e:c3:0a:b3:c9:64:ee:fb:4f:8c:25:5b:30:
92:54:93:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:23 2024 by rpki-client on console-ams.rpki-client.org