Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/VBiltPLxoMTkaRqpjv9-4WJq334.roa
File: VBiltPLxoMTkaRqpjv9-4WJq334.roa (raw, json)
Hash identifier: R3jSNz/K0pheGrMKezwyJOIk+obISoLdzOlVw5aOj3w=
Subject key identifier: 54:18:A5:B4:F2:F1:A0:C4:E4:69:1A:A9:8E:FF:7E:E1:62:6A:DF:7E
Certificate issuer: /CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Certificate serial: 01857082C2B3302BDBB8EA51D855951F282C
Authority key identifier: FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/VBiltPLxoMTkaRqpjv9-4WJq334.roa
Signing time: Mon 02 Jan 2023 03:24:55 +0000
ROA not before: Mon 02 Jan 2023 03:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21412
IP address blocks: 185.198.32.0/22 maxlen: 22
77.87.8.0/21 maxlen: 21
185.26.132.0/22 maxlen: 22
80.240.0.0/20 maxlen: 20
178.250.32.0/21 maxlen: 21
37.157.144.0/21 maxlen: 21
178.16.32.0/20 maxlen: 20
5.20.0.0/21 maxlen: 32
5.20.8.0/21 maxlen: 21
5.20.16.0/20 maxlen: 20
5.20.32.0/19 maxlen: 19
212.52.32.0/19 maxlen: 19
217.77.16.0/20 maxlen: 20
87.247.64.0/18 maxlen: 18
5.20.112.0/21 maxlen: 21
5.20.120.0/21 maxlen: 21
5.20.128.0/19 maxlen: 19
87.239.112.0/21 maxlen: 21
31.209.64.0/20 maxlen: 20
5.20.64.0/19 maxlen: 19
185.54.12.0/22 maxlen: 22
5.20.96.0/21 maxlen: 21
5.20.104.0/21 maxlen: 21
46.251.32.0/19 maxlen: 19
5.20.224.0/21 maxlen: 21
5.20.232.0/21 maxlen: 21
91.187.160.0/19 maxlen: 19
5.20.240.0/20 maxlen: 20
212.117.0.0/19 maxlen: 19
79.133.224.0/19 maxlen: 19
5.20.160.0/19 maxlen: 19
81.29.16.0/20 maxlen: 20
217.17.80.0/20 maxlen: 20
80.243.16.0/20 maxlen: 20
5.20.192.0/19 maxlen: 19
77.221.64.0/19 maxlen: 19
2a00:7600::/32 maxlen: 32
2a04:eb00::/29 maxlen: 29
2a01:a1c0::/32 maxlen: 32
2a04:ce00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 31 Jul 2023 16:56:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c2:b3:30:2b:db:b8:ea:51:d8:55:95:1f:28:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Validity
Not Before: Jan 2 03:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5418a5b4f2f1a0c4e4691aa98eff7ee1626adf7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:00:92:84:a8:0d:9c:d1:5a:49:f4:67:4c:90:
c7:64:41:d9:3e:af:1c:69:7c:a0:aa:9c:1c:d7:86:
9b:f6:9c:bd:e8:e5:6e:11:0c:0b:f0:8c:f6:b7:64:
37:be:88:85:20:4d:ed:aa:3e:2b:ac:32:2d:d1:d6:
f6:d0:6b:69:94:7f:d0:cb:ac:42:51:f3:20:ea:c8:
eb:82:e3:d7:73:3b:8c:e6:67:d1:10:96:5d:9b:20:
cf:c7:69:5d:26:b6:b6:b2:1e:98:a4:86:a2:7b:56:
ea:2a:bc:35:6f:34:d9:7c:97:9e:e2:98:e0:7e:e4:
de:82:19:f6:84:e6:7b:2d:a6:51:b4:d9:b0:c2:7e:
82:23:45:1b:2d:fe:ad:50:4f:68:bd:a8:f8:9f:33:
68:db:95:83:8b:14:ca:72:0a:ff:8e:02:da:d0:91:
0c:64:4c:ae:ff:d3:31:c4:a1:83:80:29:3f:eb:d0:
e5:97:e5:c9:3d:59:ec:c4:59:0b:fc:b6:71:86:98:
a7:71:4a:35:8a:c6:2c:e4:3a:94:d6:8b:64:47:6a:
45:a3:bb:13:6a:39:89:ee:df:62:45:eb:d4:1c:cd:
73:9c:ce:3d:4a:48:ae:6c:97:ee:fc:16:3e:f9:99:
51:8a:39:59:09:d7:cd:c8:77:18:7f:64:bc:db:00:
77:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:18:A5:B4:F2:F1:A0:C4:E4:69:1A:A9:8E:FF:7E:E1:62:6A:DF:7E
X509v3 Authority Key Identifier:
keyid:FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/VBiltPLxoMTkaRqpjv9-4WJq334.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.20.0.0/16
31.209.64.0/20
37.157.144.0/21
46.251.32.0/19
77.87.8.0/21
77.221.64.0/19
79.133.224.0/19
80.240.0.0/20
80.243.16.0/20
81.29.16.0/20
87.239.112.0/21
87.247.64.0/18
91.187.160.0/19
178.16.32.0/20
178.250.32.0/21
185.26.132.0/22
185.54.12.0/22
185.198.32.0/22
212.52.32.0/19
212.117.0.0/19
217.17.80.0/20
217.77.16.0/20
IPv6:
2a00:7600::/32
2a01:a1c0::/32
2a04:ce00::/29
2a04:eb00::/29
Signature Algorithm: sha256WithRSAEncryption
7f:dd:e3:48:f1:94:6b:18:88:10:db:2b:7f:40:85:9b:87:7a:
4d:5f:fa:b4:62:00:3d:64:c3:e6:30:4e:8c:1d:bd:14:8f:ab:
15:d2:2f:c0:83:61:3d:b6:e3:ce:89:43:2d:c4:05:21:36:ed:
5d:09:71:02:19:68:ff:0a:29:dc:80:f6:2b:18:ea:90:77:d0:
c5:fc:25:a4:f9:61:2a:2a:0b:86:e2:87:b6:47:82:57:bc:78:
3f:38:c2:f7:aa:00:9c:37:27:21:5b:00:9c:b1:90:ed:53:1a:
75:2c:9d:d2:0f:95:ef:d9:a5:7c:55:bd:01:0f:ec:4c:3e:76:
2b:52:9a:78:b2:68:b5:ff:bc:10:c1:f3:d5:3d:16:40:dc:a7:
52:e4:11:c3:ee:9f:b9:aa:65:57:8f:95:d0:44:a9:1c:45:67:
a7:c3:42:05:33:3e:1a:1a:a2:76:7e:8d:77:7c:9f:38:99:cb:
14:e4:50:af:f7:b9:31:5f:6f:79:86:cb:f7:c8:23:6b:8d:78:
b9:c2:8d:96:50:eb:33:0e:e4:b5:c8:6f:6d:b6:4c:3e:4f:3d:
09:5f:82:e3:f3:94:6a:b6:54:dd:41:ad:c9:68:93:a9:31:75:
e1:c3:a3:db:25:db:20:ef:dc:b9:13:fa:29:29:e8:4e:fa:96:
24:84:89:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:38 2024 by rpki-client on console-fra.rpki-client.org