Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/7i7cXk54Z0p6oQXB4AQWdCuKwGk.roa
File: 7i7cXk54Z0p6oQXB4AQWdCuKwGk.roa (raw, json)
Hash identifier: 1DpolbRFwLtZQcfvJOtesttE+UXgjYrUBUf2DEPYnac=
Subject key identifier: EE:2E:DC:5E:4E:78:67:4A:7A:A1:05:C1:E0:04:16:74:2B:8A:C0:69
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 01892B2EA7D541D202D6620E9901FC3155F3
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/7i7cXk54Z0p6oQXB4AQWdCuKwGk.roa
Signing time: Thu 06 Jul 2023 12:30:25 +0000
ROA not before: Thu 06 Jul 2023 12:30:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15695
IP address blocks: 195.238.244.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
86.48.222.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.88.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:971::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2b:2e:a7:d5:41:d2:02:d6:62:0e:99:01:fc:31:55:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Jul 6 12:30:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee2edc5e4e78674a7aa105c1e00416742b8ac069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f2:da:ad:b1:e9:27:d0:da:56:d7:9c:d9:84:
ce:4a:91:76:51:09:8c:22:72:83:8e:75:7a:85:54:
46:19:8d:8d:e4:0f:9f:c3:67:57:46:c7:de:5f:ed:
47:90:1b:84:c3:e6:40:cd:fb:bf:2b:83:98:1d:91:
46:f4:4c:b2:be:fd:01:2c:f5:87:be:16:1d:5c:c2:
e1:a4:f3:e4:96:bc:96:98:50:90:0c:d0:66:1b:ff:
91:d5:c6:f6:e6:d2:cd:94:a9:e3:66:24:70:65:ad:
3e:f0:fa:e3:00:f5:a2:c8:b3:3e:73:2b:f6:72:85:
bd:cc:0b:5d:b1:77:f9:40:3e:ab:6d:bb:26:5a:01:
71:9f:b1:02:8d:77:22:7f:4a:00:b0:63:32:08:9a:
85:3e:64:a3:75:0b:4c:a3:92:1b:37:20:e9:86:87:
01:c9:c9:f4:48:cf:3d:6d:a1:63:38:cc:4a:56:2f:
6a:a7:b9:ff:f4:90:85:c8:71:b6:16:27:65:ba:6c:
72:ca:ab:3a:00:be:a1:1d:eb:58:a9:12:eb:a7:2d:
82:d1:34:95:23:2e:05:d8:2f:ce:11:2f:7b:72:42:
c6:82:f7:f0:bd:0c:d0:00:a0:ae:0a:8c:41:5e:ff:
a0:7f:18:44:2c:bd:01:ee:49:cf:d8:03:5e:dc:fd:
2d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:2E:DC:5E:4E:78:67:4A:7A:A1:05:C1:E0:04:16:74:2B:8A:C0:69
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/7i7cXk54Z0p6oQXB4AQWdCuKwGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.220.0-86.48.222.255
86.48.240.0/24
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
Signature Algorithm: sha256WithRSAEncryption
a1:02:71:27:ba:92:70:9e:c7:bb:50:4f:46:ba:3c:14:b4:35:
9c:8a:a2:5e:09:6a:8e:c5:7e:8a:8f:e2:af:42:7d:bb:48:d5:
c6:23:5a:b1:8c:04:47:d7:6a:1a:0b:89:bd:60:34:b3:62:f4:
9e:7e:a5:b0:b0:70:8f:5c:a2:f4:d6:58:1f:80:74:ce:18:c2:
6d:d0:28:f7:61:6b:35:89:49:bf:39:5e:fb:d1:e9:4f:2c:a3:
85:4f:8f:88:64:83:3a:f9:51:a3:d1:d4:46:75:15:cb:1b:8b:
39:37:75:95:23:c8:69:14:d5:ab:a6:10:b8:37:cd:35:92:93:
b9:bc:98:b6:87:7d:b4:b1:5f:4c:7d:e0:95:d7:c4:af:4b:ae:
36:82:83:6e:5b:77:63:77:8f:1f:f5:59:59:c0:28:41:7f:b9:
2e:24:66:44:50:38:1c:38:95:cf:8d:ee:c5:8c:c7:4d:41:bf:
d9:3a:f4:49:a3:d3:83:a1:51:11:10:b2:58:b8:b5:52:e8:e0:
3f:6f:e0:0b:4d:cf:83:04:46:3d:ab:70:43:22:52:ed:42:df:
39:d0:ff:a0:8f:c8:86:5e:5a:ed:d6:e0:cb:a5:9d:35:0c:57:
1b:d4:e7:22:f7:bc:bd:8f:08:85:d6:83:72:aa:59:25:fd:33:
ff:fb:64:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 21 08:35:55 2023 by rpki-client on console-fra.rpki-client.org