Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/BOdUblWE7_kNydk6mRfkXwzdLRw.roa
File: BOdUblWE7_kNydk6mRfkXwzdLRw.roa (raw, json)
Hash identifier: Y/e1SMz4xhPYKi0FWoB5Tu2cRMpNvISjLA8eN7UJFsA=
Subject key identifier: 04:E7:54:6E:55:84:EF:F9:0D:C9:D9:3A:99:17:E4:5F:0C:DD:2D:1C
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 01856B81137EBA710293A64FE4CB5401D9E5
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/BOdUblWE7_kNydk6mRfkXwzdLRw.roa
Signing time: Sun 01 Jan 2023 04:04:59 +0000
ROA not before: Sun 01 Jan 2023 04:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
141.255.128.0/21 maxlen: 24
212.114.16.0/20 maxlen: 24
46.22.192.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
46.255.200.0/21 maxlen: 24
95.178.88.0/22 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/24 maxlen: 24
193.151.84.0/22 maxlen: 24
193.151.87.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
91.224.162.0/23 maxlen: 24
176.241.120.0/21 maxlen: 24
212.18.240.0/21 maxlen: 24
82.96.128.0/18 maxlen: 24
130.180.208.0/20 maxlen: 24
78.153.224.0/19 maxlen: 24
91.226.193.0/24 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
193.189.124.0/23 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
91.203.92.0/22 maxlen: 24
37.61.240.0/21 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
149.232.160.0/20 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
88.202.236.0/22 maxlen: 24
77.246.80.0/20 maxlen: 24
185.44.88.0/22 maxlen: 24
195.128.147.0/24 maxlen: 24
2a05:6e00::/29 maxlen: 48
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:13:7e:ba:71:02:93:a6:4f:e4:cb:54:01:d9:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jan 1 04:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04e7546e5584eff90dc9d93a9917e45f0cdd2d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e2:2e:38:1d:8c:39:58:03:9f:0f:31:1a:8b:
b1:62:59:10:5e:51:c0:f4:d6:7b:4c:53:fb:2e:ad:
dd:27:ec:47:c2:de:ba:f5:d1:f0:75:ee:5f:aa:80:
0f:ad:d1:c8:0d:23:76:19:aa:3a:3b:ec:5f:dc:02:
39:39:9c:4a:08:24:d1:14:78:e7:82:91:3d:96:4d:
ad:c7:5c:07:7a:9e:ee:11:d0:43:bd:0e:ee:3d:85:
3b:15:98:8a:cd:08:06:27:2b:83:7e:de:85:4d:d5:
ce:6d:74:c3:6f:26:5a:a7:5d:75:af:4a:b8:54:a5:
1d:7f:46:6b:61:87:3e:ed:33:04:25:c3:97:92:e4:
84:f5:70:a0:96:56:ad:9d:49:31:9f:b2:63:f1:41:
c3:e0:ae:20:af:b1:b7:c1:d2:89:9e:4d:93:a8:1b:
c4:d5:1b:cd:f0:a2:bf:35:e2:b3:76:2f:e2:28:a2:
fe:cd:f0:3b:fa:e8:b6:d4:b5:d9:35:b6:06:16:bb:
d3:aa:93:99:c8:5f:21:ba:bf:ca:f2:b8:4f:0d:78:
80:7e:e0:64:33:83:2d:e6:71:85:a2:17:25:45:68:
37:31:13:7e:17:83:db:0a:6a:f4:90:86:9b:a6:87:
da:0c:e3:00:37:62:8f:5f:33:2f:90:30:a6:47:45:
fc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E7:54:6E:55:84:EF:F9:0D:C9:D9:3A:99:17:E4:5F:0C:DD:2D:1C
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/BOdUblWE7_kNydk6mRfkXwzdLRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
46.22.192.0/20
46.231.216.0/21
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.96.128.0/18
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
88.202.236.0/22
88.212.144.0-88.212.155.255
91.203.92.0/22
91.224.162.0/23
91.226.193.0/24
94.100.160.0/20
95.143.64.0/20
95.178.88.0/22
130.180.208.0/20
141.255.128.0/21
149.232.160.0/20
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.44.88.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.220.0-185.91.227.255
185.92.36.0/22
185.114.100.0/22
185.146.220.0/22
185.209.52.0/22
193.151.84.0/22
193.189.124.0/23
194.116.142.0/23
195.128.147.0/24
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
212.114.16.0/20
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a05:6e00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:40:36:8d:34:e3:68:f7:2e:74:04:18:03:d4:d8:0f:06:b2:
33:e3:95:1f:b8:41:97:16:8b:d3:c6:c2:df:0b:51:10:85:77:
83:c6:84:57:9d:d0:c3:3c:b8:9b:4b:8e:33:4f:b0:78:ca:b0:
82:00:5d:83:d8:9c:b1:05:00:01:f0:12:83:15:26:0f:b2:55:
da:63:e8:aa:4a:91:92:44:d7:ff:ff:f3:02:29:07:57:49:64:
6e:04:ea:e2:ab:ef:9c:ec:0f:c5:1e:61:c4:11:c7:60:e5:c1:
a8:f4:7e:9f:96:14:03:62:aa:65:ac:2c:7f:20:72:ff:a7:da:
e4:6f:10:d0:8e:5a:f7:00:01:45:5f:2e:da:60:90:c1:2f:b4:
4f:34:82:39:ac:62:4c:2b:2f:f5:d1:dc:d9:10:f0:0c:6c:4f:
aa:85:5d:5e:d6:cc:12:cf:d4:5f:9c:2d:97:36:b8:ea:92:e4:
75:c6:7f:a1:11:8a:d9:f9:6c:97:b8:ed:33:cb:0f:fe:ee:41:
db:6e:f7:68:00:7c:7d:35:a4:2a:c4:ac:bd:8b:a4:53:59:46:
07:37:06:56:7a:c7:f6:54:9b:55:61:26:02:2a:bf:2f:c2:9a:
c7:18:c7:c8:4a:fa:bd:3a:a3:f5:19:5c:1f:38:ce:a6:73:25:
db:20:b0:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:50 2023 by rpki-client on console-ams.rpki-client.org