Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/fVlGzlKCnyp4_0oHTc2mzEU-Py8.roa
File: fVlGzlKCnyp4_0oHTc2mzEU-Py8.roa (raw, json)
Hash identifier: 1lekSAKWV9rQqMi1YARv2R/9aiyFcOfVFv/qIqSPUeM=
Subject key identifier: 7D:59:46:CE:52:82:9F:2A:78:FF:4A:07:4D:CD:A6:CC:45:3E:3F:2F
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018EEC2D2888D98600562F6B1919268EBE62
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/fVlGzlKCnyp4_0oHTc2mzEU-Py8.roa
Signing time: Wed 17 Apr 2024 13:09:26 +0000
ROA not before: Wed 17 Apr 2024 13:09:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7489
IP address blocks: 2.56.164.0/22 maxlen: 24
45.81.20.0/22 maxlen: 24
45.90.144.0/22 maxlen: 24
45.90.145.0/24 maxlen: 24
45.90.146.0/24 maxlen: 24
45.140.220.0/22 maxlen: 24
45.154.196.0/22 maxlen: 24
77.83.240.0/22 maxlen: 24
77.83.243.0/24 maxlen: 24
78.108.216.0/22 maxlen: 24
78.108.217.0/24 maxlen: 24
83.143.116.0/22 maxlen: 24
83.143.116.0/24 maxlen: 24
85.202.160.0/22 maxlen: 24
89.190.156.0/22 maxlen: 24
178.218.144.0/22 maxlen: 24
185.185.40.0/22 maxlen: 24
185.186.64.0/22 maxlen: 24
185.227.68.0/22 maxlen: 24
185.227.71.0/24 maxlen: 24
185.234.72.0/22 maxlen: 24
185.242.224.0/22 maxlen: 24
185.242.225.0/24 maxlen: 24
193.31.28.0/22 maxlen: 24
193.31.30.0/24 maxlen: 24
193.34.76.0/22 maxlen: 24
193.34.77.0/24 maxlen: 24
193.105.184.0/24 maxlen: 24
193.105.207.0/24 maxlen: 24
193.221.192.0/22 maxlen: 24
194.31.141.0/24 maxlen: 24
194.50.16.0/22 maxlen: 24
194.56.224.0/22 maxlen: 24
194.56.226.0/24 maxlen: 24
212.107.12.0/22 maxlen: 24
212.107.14.0/24 maxlen: 24
2a0b:b82::/44 maxlen: 44
2a0b:b84::/32 maxlen: 32
2a0b:b85::/32 maxlen: 32
2a0b:b86::/40 maxlen: 48
2a0b:b87:ff12::/48 maxlen: 48
2a0b:b87:ffb4::/48 maxlen: 48
2a0b:b87:ffda::/48 maxlen: 48
2a0b:b87:ffec::/48 maxlen: 48
2a0b:b87:fff0::/44 maxlen: 44
2a0b:7080:10::/44 maxlen: 44
2a0b:7080:10::/45 maxlen: 45
2a0b:7080:10::/48 maxlen: 48
2a0b:7080:20::/44 maxlen: 48
2a0b:7080:20::/48 maxlen: 48
2a0b:7080:30::/44 maxlen: 48
2a0d:77c0::/29 maxlen: 32
Validation: Failed, certificate revoked on Fri 28 Jun 2024 18:17:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ec:2d:28:88:d9:86:00:56:2f:6b:19:19:26:8e:be:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Apr 17 13:09:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d5946ce52829f2a78ff4a074dcda6cc453e3f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a4:19:9e:33:69:f0:5c:0a:cb:49:69:f2:00:
4d:a2:16:c4:94:16:8b:15:36:2f:22:8c:d2:6b:24:
48:14:7d:20:67:4f:f3:48:7d:15:3b:d0:e3:13:be:
2f:4e:a1:76:fb:80:23:f7:c1:91:e4:db:54:16:ab:
dc:7e:8f:59:fe:1e:28:c2:12:90:11:3b:7d:81:1b:
b3:d1:28:40:38:80:60:1c:81:30:c5:0e:be:36:6c:
13:b7:cf:79:eb:d0:36:54:87:ec:cc:2d:53:7a:53:
e1:e2:97:47:02:2d:ea:27:ea:f8:81:e8:f2:be:1c:
01:24:6d:7d:ee:8d:e0:e1:45:6a:53:5b:f6:3b:8f:
67:00:30:15:9d:bd:ac:37:e7:9b:f1:c1:ef:5b:91:
1f:e1:06:a8:ec:e9:96:2e:01:1e:63:51:54:44:25:
8a:7a:45:c3:c7:67:92:3f:d1:3d:c6:98:08:7a:aa:
e3:30:ff:01:2b:5c:b2:1d:ee:3a:ea:0e:82:f5:da:
1c:b0:61:5e:ef:52:4e:b1:f6:7d:e0:43:e0:85:c8:
84:6a:57:77:e2:fd:75:d6:6d:e5:4e:e1:ee:f6:78:
51:50:72:e0:db:92:b6:48:36:1d:86:8d:81:05:8e:
cb:64:98:5f:f5:25:a3:15:8f:6e:75:89:50:d6:e2:
ea:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:59:46:CE:52:82:9F:2A:78:FF:4A:07:4D:CD:A6:CC:45:3E:3F:2F
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/fVlGzlKCnyp4_0oHTc2mzEU-Py8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.164.0/22
45.81.20.0/22
45.90.144.0/22
45.140.220.0/22
45.154.196.0/22
77.83.240.0/22
78.108.216.0/22
83.143.116.0/22
85.202.160.0/22
89.190.156.0/22
178.218.144.0/22
185.185.40.0/22
185.186.64.0/22
185.227.68.0/22
185.234.72.0/22
185.242.224.0/22
193.31.28.0/22
193.34.76.0/22
193.105.184.0/24
193.105.207.0/24
193.221.192.0/22
194.31.141.0/24
194.50.16.0/22
194.56.224.0/22
212.107.12.0/22
IPv6:
2a0b:b82::/44
2a0b:b84::-2a0b:b86:ff:ffff:ffff:ffff:ffff:ffff
2a0b:b87:ff12::/48
2a0b:b87:ffb4::/48
2a0b:b87:ffda::/48
2a0b:b87:ffec::/48
2a0b:b87:fff0::/44
2a0b:7080:10::-2a0b:7080:3f:ffff:ffff:ffff:ffff:ffff
2a0d:77c0::/29
Signature Algorithm: sha256WithRSAEncryption
91:17:fb:6e:2d:35:2b:a3:5e:2b:4b:23:fd:90:de:10:b4:d6:
34:f8:fb:5e:38:91:d0:38:81:e4:a6:26:fe:e8:63:71:13:8a:
46:58:aa:c9:0d:2e:f0:a8:2a:7e:57:c2:26:44:b7:e5:c0:8e:
e8:dd:17:88:7f:85:2b:63:03:34:cd:4d:fc:2d:ad:3f:ce:31:
5c:16:5e:78:39:f7:00:db:34:73:1b:0e:78:f0:a3:d6:32:a8:
5a:ea:b9:21:00:8b:7e:ba:36:75:44:5d:33:43:10:e9:69:b8:
51:ab:30:41:7e:15:b3:c0:a3:e1:2d:ba:b9:91:fb:64:fd:cf:
85:d2:5c:45:87:6e:9f:b8:e8:13:08:f1:e1:d4:39:54:68:4b:
ee:c9:72:16:26:27:be:37:74:78:4c:1e:8e:7d:f2:7c:5a:94:
12:29:18:a9:c5:68:95:dc:ac:ab:94:ee:1d:44:0f:4f:b9:a6:
9a:6f:0f:d7:b1:73:b4:8d:9c:c1:1b:64:8e:65:67:a9:5a:80:
ec:48:3b:17:27:f8:0f:18:76:c8:c6:5a:ba:85:53:ee:58:94:
dc:70:85:8e:11:2b:a5:5e:46:5d:f7:59:15:5c:0c:b0:32:e0:
06:39:29:43:85:40:61:01:69:97:17:d7:b5:d2:79:94:59:51:
c3:6a:3b:c5
-----BEGIN CERTIFICATE-----
MIIF/zCCBOegAwIBAgISAY7sLSiI2YYAVi9rGRkmjr5iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjQwNDE3MTMwOTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDU5NDZjZTUyODI5ZjJhNzhmZjRhMDc0ZGNkYTZjYzQ1M2UzZjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6QZnjNp8FwKy0lp8gBNohbElBaL
FTYvIozSayRIFH0gZ0/zSH0VO9DjE74vTqF2+4Aj98GR5NtUFqvcfo9Z/h4owhKQ
ETt9gRuz0ShAOIBgHIEwxQ6+NmwTt89569A2VIfszC1TelPh4pdHAi3qJ+r4gejy
vhwBJG197o3g4UVqU1v2O49nADAVnb2sN+eb8cHvW5Ef4Qao7OmWLgEeY1FURCWK
ekXDx2eSP9E9xpgIeqrjMP8BK1yyHe466g6C9docsGFe71JOsfZ94EPghciEald3
4v111m3lTuHu9nhRUHLg25K2SDYdho2BBY7LZJhf9SWjFY9udYlQ1uLqowIDAQAB
o4IDCzCCAwcwHQYDVR0OBBYEFH1ZRs5Sgp8qeP9KB03NpsxFPj8vMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvZlZsR3psS0NueXA0XzBvSFRjMm16RVUtUHk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBHwYIKwYBBQUHAQcBAf8EggEOMIIBCjCBnQQCAAEwgZYD
BAICOKQDBAItURQDBAItWpADBAItjNwDBAItmsQDBAJNU/ADBAJObNgDBAJTj3QD
BAJVyqADBAJZvpwDBAKy2pADBAK5uSgDBAK5ukADBAK540QDBAK56kgDBAK58uAD
BALBHxwDBALBIkwDBADBabgDBADBac8DBALB3cADBADCH40DBALCMhADBALCOOAD
BALUawwwaAQCAAIwYgMHBCoLC4IAADAPAwUCKgsLhAMGACoLC4YAAwcAKgsLh/8S
AwcAKgsLh/+0AwcAKgsLh//aAwcAKgsLh//sAwcEKgsLh//wMBIDBwQqC3CAABAD
BwYqC3CAAAADBQMqDXfAMA0GCSqGSIb3DQEBCwUAA4IBAQCRF/tuLTUro14rSyP9
kN4QtNY0+PteOJHQOIHkpib+6GNxE4pGWKrJDS7wqCp+V8ImRLflwI7o3ReIf4Ur
YwM0zU38La0/zjFcFl54OfcA2zRzGw548KPWMqha6rkhAIt+ujZ1RF0zQxDpabhR
qzBBfhWzwKPhLbq5kftk/c+F0lxFh26fuOgTCPHh1DlUaEvuyXIWJie+N3R4TB6O
ffJ8WpQSKRipxWiV3KyrlO4dRA9Puaaabw/XsXO0jZzBG2SOZWepWoDsSDsXJ/gP
GHbIxlq6hVPuWJTccIWOESulXkZd91kVXAywMuAGOSlDhUBhAWmXF9e10nmUWVHD
ajvF
-----END CERTIFICATE-----
Generated at Fri Jun 28 23:10:46 2024 by rpki-client on console-ams.rpki-client.org