Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/AVGEg1cisvGQ66gkaWWoiKspeyo.roa
File: AVGEg1cisvGQ66gkaWWoiKspeyo.roa (raw, json)
Hash identifier: 636+Wv5r/zZhnackdWU7H9pNS0t9HRYk+cPjtCPMTGE=
Subject key identifier: 01:51:84:83:57:22:B2:F1:90:EB:A8:24:69:65:A8:88:AB:29:7B:2A
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 018CC64B53E724713736C3C08766006B542C
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/AVGEg1cisvGQ66gkaWWoiKspeyo.roa
Signing time: Mon 01 Jan 2024 18:31:14 +0000
ROA not before: Mon 01 Jan 2024 18:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
46.22.192.0/20 maxlen: 24
46.255.200.0/21 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/22 maxlen: 24
193.151.84.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
193.151.87.0/24 maxlen: 24
37.156.226.0/24 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
176.241.120.0/21 maxlen: 24
91.224.162.0/23 maxlen: 24
212.18.240.0/21 maxlen: 24
82.96.128.0/18 maxlen: 24
78.153.224.0/19 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
91.226.193.0/24 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
193.189.124.0/23 maxlen: 24
31.172.160.0/22 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
46.247.128.0/22 maxlen: 24
37.61.240.0/21 maxlen: 24
46.102.116.0/24 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
149.232.160.0/20 maxlen: 24
87.121.136.0/21 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
77.246.80.0/20 maxlen: 24
89.44.77.0/24 maxlen: 24
195.128.147.0/24 maxlen: 24
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jan 2024 09:38:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:53:e7:24:71:37:36:c3:c0:87:66:00:6b:54:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jan 1 18:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=015184835722b2f190eba8246965a888ab297b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:12:7c:66:9a:07:2c:fa:ec:fd:9b:96:a3:00:
e9:18:b1:0c:05:83:a5:9b:1a:a0:cb:8b:47:ae:0e:
21:50:a2:be:ca:bc:4a:6c:4c:8c:79:5c:b5:43:12:
d5:82:bb:17:59:25:8a:7e:50:01:18:12:3e:da:08:
bc:42:a7:7d:96:34:31:e2:ea:d1:4c:3b:b8:4f:a2:
e5:e3:03:41:96:c7:87:9d:4c:7c:6f:92:b1:f2:58:
79:b2:56:dd:68:1c:be:e9:dd:bf:6d:54:23:7b:46:
30:37:54:89:ce:44:4e:bd:21:e2:50:88:24:ba:6a:
29:42:df:25:e8:88:d9:c1:b6:b9:44:9e:93:13:2b:
1c:ea:26:0e:ff:13:8e:99:2f:16:22:30:89:d0:3c:
0e:c1:dd:c6:66:7f:80:c9:94:66:f0:2a:4a:e0:b9:
11:d5:2c:dc:b3:c5:fb:cc:60:31:89:5c:7d:26:b8:
e5:00:99:e3:8a:02:a1:26:78:fb:a6:ed:b8:24:92:
cc:c4:81:ec:1f:68:2e:a8:f7:a7:6b:86:77:f7:d4:
28:2d:96:8f:fa:75:c6:99:3b:4b:c0:c2:16:2f:f4:
d7:8e:65:68:86:dc:21:94:13:9a:37:85:52:e1:37:
cf:42:ec:a1:dc:dd:a4:6c:f1:8b:15:28:e7:df:a4:
a7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:51:84:83:57:22:B2:F1:90:EB:A8:24:69:65:A8:88:AB:29:7B:2A
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/AVGEg1cisvGQ66gkaWWoiKspeyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
37.156.226.0/24
46.22.192.0/20
46.102.116.0/24
46.231.216.0/21
46.247.128.0/22
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.96.128.0/18
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
87.121.136.0/21
88.212.144.0/21
89.44.77.0/24
91.224.162.0/23
91.226.193.0/24
94.100.160.0/20
95.143.64.0/20
149.232.160.0/20
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.224.0/22
185.92.36.0/22
185.114.100.0/22
185.209.52.0/22
193.151.84.0/22
193.189.124.0/23
194.116.142.0/23
195.128.147.0/24
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
9c:12:10:aa:7d:43:25:14:34:c4:54:c5:00:84:cd:83:57:4d:
0a:3e:af:84:40:ac:2f:fc:40:33:be:cb:7f:01:7a:80:a1:85:
e4:46:8d:df:78:40:d9:15:83:b6:c7:71:25:bd:44:4e:d1:b3:
45:76:dc:63:d7:9a:77:14:a6:09:88:0e:b5:a2:d2:93:07:df:
fe:99:1a:fb:3b:2b:a8:f4:d0:b0:22:52:c4:a9:db:83:43:3c:
ad:f1:42:ec:13:8e:cb:d8:1b:8a:17:89:69:ab:ae:ff:ff:87:
88:29:62:1f:81:8d:d4:77:c1:f9:6e:2f:ee:53:33:07:a6:b3:
83:2e:41:63:10:6f:d7:ad:be:bb:25:cc:e6:be:d7:82:20:e6:
67:91:27:1c:15:3d:c6:f0:82:73:ff:78:62:2c:9e:8a:3f:df:
22:9a:a5:f7:49:1b:8c:4a:d7:76:82:a4:f5:81:d8:60:bb:41:
cc:5c:1b:e6:16:a1:04:35:05:5b:e7:eb:24:e8:a6:11:f4:ac:
20:a9:fb:3c:ca:f0:d3:ce:97:90:27:d1:62:14:ae:69:df:1a:
44:ac:d0:43:cb:b6:5a:00:b2:59:98:1b:6c:f9:ad:73:b0:f9:
c9:c0:f0:d1:8e:13:f2:f1:dc:ad:9e:a6:0e:ea:7c:6d:a2:7f:
23:47:b2:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org