Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/Fr0SkxbljQCw8Yi6mYSsBWwKeko.roa
File: Fr0SkxbljQCw8Yi6mYSsBWwKeko.roa (raw, json)
Hash identifier: uwPa8w/UOk/SiQsvHOEXNXmClDNM65oEPUj41el5Zwk=
Subject key identifier: 16:BD:12:93:16:E5:8D:00:B0:F1:88:BA:99:84:AC:05:6C:0A:7A:4A
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 018B9A625062A7CE303CED04F66CFD56DEF9
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/Fr0SkxbljQCw8Yi6mYSsBWwKeko.roa
Signing time: Sat 04 Nov 2023 12:50:16 +0000
ROA not before: Sat 04 Nov 2023 12:50:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15695
IP address blocks: 195.238.244.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
86.48.218.0/24 maxlen: 24
86.48.217.0/24 maxlen: 24
86.48.216.0/24 maxlen: 24
86.48.219.0/24 maxlen: 24
86.48.223.0/24 maxlen: 24
86.48.222.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
86.48.209.0/24 maxlen: 24
86.48.208.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.88.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:971::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9a:62:50:62:a7:ce:30:3c:ed:04:f6:6c:fd:56:de:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Nov 4 12:50:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16bd129316e58d00b0f188ba9984ac056c0a7a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:82:99:38:83:e1:ba:0e:71:92:a0:74:9f:d3:
d8:48:17:ca:ef:60:f4:c5:8a:18:9d:c0:17:f5:db:
17:c8:fa:87:18:c6:65:98:d8:ad:20:63:cc:5c:d0:
ba:81:92:8b:8a:03:85:2e:2a:fb:29:f6:57:26:d8:
26:1a:a5:d8:17:3d:b5:9e:60:bf:c5:af:74:4e:74:
2c:36:9b:77:2b:67:f9:d0:3a:bd:c6:03:29:36:5d:
40:1b:3f:70:ca:df:79:0c:1f:85:e9:31:78:9f:70:
3f:f8:b0:82:2d:d2:cb:86:0a:95:e1:a7:22:cb:ef:
52:4f:f0:8c:77:60:96:9b:7b:4b:c1:1c:29:13:ea:
1b:23:0e:28:bd:ff:a4:e5:c1:1b:bb:27:db:17:cf:
56:e2:e3:c0:77:ff:2a:ae:4e:d2:27:d7:9f:27:f6:
97:72:68:1d:cf:0f:32:ef:22:6d:c5:0d:b3:05:cd:
fa:ab:58:8f:4c:7d:ec:d4:4f:c2:27:35:67:bf:85:
b4:0b:be:46:c3:1a:5c:4f:46:a3:3b:40:95:bf:46:
e1:aa:51:9d:28:e2:86:5c:e6:99:7a:76:9c:ab:7c:
b7:38:6d:9f:7d:7c:56:40:46:0c:21:bb:a3:70:aa:
3a:63:0c:94:34:bc:0b:f4:c7:e1:c8:06:61:1c:07:
06:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:BD:12:93:16:E5:8D:00:B0:F1:88:BA:99:84:AC:05:6C:0A:7A:4A
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/Fr0SkxbljQCw8Yi6mYSsBWwKeko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.208.0/23
86.48.216.0/21
86.48.240.0/24
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
Signature Algorithm: sha256WithRSAEncryption
47:ce:28:6b:b8:a6:08:f1:d0:6f:77:49:c1:0c:5b:96:d3:07:
5d:25:fa:66:cc:f9:a7:ea:37:ea:92:4d:de:f6:48:a1:48:8e:
4e:ad:ad:60:68:b3:57:07:fb:bb:82:a5:f6:29:b9:24:fd:cc:
82:d8:5f:43:eb:7d:30:5f:4a:20:5a:51:a0:e8:9a:83:ba:d7:
d1:d5:ae:ea:65:f2:a3:42:ef:89:eb:8d:8c:cc:c0:06:04:8d:
83:62:31:48:32:0f:51:0e:37:a3:3d:d3:b7:12:7b:5f:8c:cf:
e4:2d:d3:3d:45:f1:45:c6:53:79:4e:f4:69:59:6b:8b:5f:68:
60:ed:af:a7:b4:95:ac:c0:c7:d3:0c:ce:77:6f:e4:7c:98:4a:
90:8c:ea:7f:ff:e4:fe:c0:08:cb:d4:bd:b9:cd:90:53:4b:85:
e3:9d:a4:b3:51:31:a1:55:c1:cf:02:f6:ce:d2:54:08:2d:27:
e8:2d:be:48:7f:43:a4:64:d3:f8:34:e2:2d:c9:93:83:37:20:
c2:82:13:72:ca:39:06:c9:8c:32:78:e2:fc:03:ed:2c:cb:8d:
88:2f:d9:15:a4:9c:f8:8b:e5:d4:3d:9a:e1:22:27:1e:42:39:
1c:13:fb:07:dd:c8:80:61:1a:91:16:9f:ae:70:f2:1f:0d:92:
a5:c0:63:03
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:14 2024 by rpki-client on console-fra.rpki-client.org