Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/b3Kj7VQ2IsqtClpfn_mBwDmk9jw.roa
File: b3Kj7VQ2IsqtClpfn_mBwDmk9jw.roa (raw, json)
Hash identifier: RyU7F9yGs49ImOeYoCPGgj1md1yJn9kRcZ97LP7T7Hg=
Subject key identifier: 6F:72:A3:ED:54:36:22:CA:AD:0A:5A:5F:9F:F9:81:C0:39:A4:F6:3C
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 018BB3B708D76BE7E9098F9C98E54D5D8D4E
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/b3Kj7VQ2IsqtClpfn_mBwDmk9jw.roa
Signing time: Thu 09 Nov 2023 10:53:18 +0000
ROA not before: Thu 09 Nov 2023 10:53:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
46.22.192.0/20 maxlen: 24
46.255.200.0/21 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/22 maxlen: 24
193.151.84.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
193.151.87.0/24 maxlen: 24
37.156.226.0/24 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
176.241.120.0/21 maxlen: 24
91.224.162.0/23 maxlen: 24
212.18.240.0/21 maxlen: 24
82.96.128.0/18 maxlen: 24
78.153.224.0/19 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
91.226.193.0/24 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
193.189.124.0/23 maxlen: 24
31.172.160.0/22 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
46.247.128.0/22 maxlen: 24
37.61.240.0/21 maxlen: 24
46.102.116.0/24 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
149.232.160.0/20 maxlen: 24
87.121.136.0/21 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
77.246.80.0/20 maxlen: 24
89.44.77.0/24 maxlen: 24
195.128.147.0/24 maxlen: 24
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b3:b7:08:d7:6b:e7:e9:09:8f:9c:98:e5:4d:5d:8d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Nov 9 10:53:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f72a3ed543622caad0a5a5f9ff981c039a4f63c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e2:fd:9f:a5:38:f5:42:87:76:6f:08:1c:fb:
1d:13:6c:92:19:34:c9:e1:69:30:63:a7:c4:51:13:
84:03:a7:c5:89:be:7c:95:65:23:7d:62:ab:07:61:
a6:63:e8:92:b7:39:f8:01:91:d2:fd:c8:e2:5e:e9:
a8:10:c4:97:6e:b8:73:99:34:d2:43:e7:9f:f0:bd:
31:01:5d:36:b2:84:92:20:2f:68:88:ed:91:55:dd:
45:ee:23:98:60:cf:f1:3a:2a:7f:53:05:f8:bd:b1:
2b:5c:02:17:ae:93:89:b3:8d:f8:7c:93:2c:08:41:
c5:10:bc:42:35:03:fc:e0:18:25:c1:b2:b6:28:c8:
5b:2a:30:d5:a0:2f:63:14:e2:c6:d3:03:e0:c5:57:
69:b1:d9:b6:e2:e8:99:7d:83:7c:df:84:18:47:dc:
af:b1:ed:4e:63:c2:48:a7:76:c9:c1:f6:a8:15:21:
5b:09:14:36:62:6b:5d:dc:90:91:c2:57:2f:89:75:
a0:61:93:17:62:3a:ef:75:40:e8:98:6a:f6:54:bc:
43:eb:fd:cf:2c:09:00:d7:c1:02:a0:01:34:54:f3:
c9:7c:3c:36:18:f6:1b:16:0a:99:b0:20:ea:2b:bf:
e2:c7:5e:31:4f:2d:b4:ac:be:be:79:6d:46:3c:f7:
f7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:72:A3:ED:54:36:22:CA:AD:0A:5A:5F:9F:F9:81:C0:39:A4:F6:3C
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/b3Kj7VQ2IsqtClpfn_mBwDmk9jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
37.156.226.0/24
46.22.192.0/20
46.102.116.0/24
46.231.216.0/21
46.247.128.0/22
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.96.128.0/18
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
87.121.136.0/21
88.212.144.0/21
89.44.77.0/24
91.224.162.0/23
91.226.193.0/24
94.100.160.0/20
95.143.64.0/20
149.232.160.0/20
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.224.0/22
185.92.36.0/22
185.114.100.0/22
185.209.52.0/22
193.151.84.0/22
193.189.124.0/23
194.116.142.0/23
195.128.147.0/24
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
6e:75:df:bb:ff:db:a7:d6:e7:ec:f2:7a:c4:f7:b1:69:b6:dd:
e9:2a:ea:9f:b9:05:c8:ed:d1:b1:0f:90:39:41:53:2d:77:2b:
d0:0a:6d:67:7c:9d:f3:6b:75:00:aa:c7:b7:85:0a:9e:d7:4b:
71:05:00:2e:c4:e8:a9:d9:de:64:83:45:2d:1a:5a:87:8b:0d:
9d:67:25:77:e8:fb:56:91:a9:3f:27:9c:8e:f7:12:9a:3b:21:
ea:0e:87:cb:78:b7:bf:bc:c4:aa:43:6b:1d:56:89:1e:58:aa:
1a:ea:7e:41:41:27:be:56:0a:1c:e5:d0:fe:30:6a:5c:fb:f3:
e1:a5:9d:01:c9:60:f3:8a:6b:cf:35:b7:93:1f:69:73:1c:67:
e3:64:b4:08:64:02:ba:84:fc:3c:70:20:24:68:73:5e:f8:9c:
9a:72:8b:6e:ef:43:7d:61:78:41:7b:da:89:6e:f6:36:3a:00:
0f:ca:7c:d8:46:b9:49:99:97:47:6a:6a:f6:f2:2a:fe:14:77:
37:4c:79:2d:cd:04:65:3b:3a:3c:cd:a5:6e:77:e9:24:3b:87:
46:30:50:4e:eb:6a:67:3c:ce:af:ca:cd:b3:5e:ce:ac:77:93:
a4:b5:a3:50:01:c4:5d:c9:af:4b:8b:c0:4e:2f:23:97:50:e5:
73:82:82:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:52 2024 by rpki-client on console-ams.rpki-client.org