Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/gPyxqE8PuhKh9r86-7YXd2dfNLI.roa
File: gPyxqE8PuhKh9r86-7YXd2dfNLI.roa (raw, json)
Hash identifier: 33Z9E1aVwJQYJKYhGBYiGkhVCfM9dc6i5+7+/8idCi0=
Subject key identifier: 80:FC:B1:A8:4F:0F:BA:12:A1:F6:BF:3A:FB:B6:17:77:67:5F:34:B2
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 018D0C52AAA609FE689993D6D2ABD50B0689
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/gPyxqE8PuhKh9r86-7YXd2dfNLI.roa
Signing time: Mon 15 Jan 2024 08:52:40 +0000
ROA not before: Mon 15 Jan 2024 08:52:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15695
IP address blocks: 195.238.244.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
86.48.218.0/24 maxlen: 24
86.48.217.0/24 maxlen: 24
86.48.216.0/24 maxlen: 24
86.48.219.0/24 maxlen: 24
86.48.223.0/24 maxlen: 24
86.48.222.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
86.48.241.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
86.48.210.0/24 maxlen: 24
86.48.209.0/24 maxlen: 24
86.48.208.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.88.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:971::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 Apr 2024 14:34:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:52:aa:a6:09:fe:68:99:93:d6:d2:ab:d5:0b:06:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Jan 15 08:52:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80fcb1a84f0fba12a1f6bf3afbb61777675f34b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:50:1f:ac:15:17:20:f1:7a:d8:41:5e:84:e3:
08:fc:fe:cc:91:b0:b9:7f:30:4f:c4:6b:8c:f4:b2:
2a:8e:e8:ee:ed:73:1e:03:46:77:51:55:3b:ea:29:
fd:a3:2f:f2:f4:2d:95:ab:ec:25:b7:1f:aa:8e:fd:
5c:ba:de:d7:9c:bf:58:36:90:9d:f9:f0:e0:a4:c4:
f8:1e:87:46:5f:b4:2e:e2:d4:2e:0d:9c:03:ab:37:
ba:c6:c0:ee:6b:f7:a8:bc:87:ce:8f:ed:38:0c:78:
c8:5e:7b:af:ac:4c:54:9f:85:49:b4:27:14:f7:07:
50:bd:b4:7f:fe:bf:32:bc:97:8a:63:f0:5d:bf:8f:
ef:47:b0:39:e8:2b:30:05:61:70:fb:10:fb:4f:00:
36:af:84:4b:3a:cc:e1:08:ae:9c:b4:8a:28:b9:04:
08:15:db:27:db:d3:2d:93:33:38:71:14:10:cf:b3:
85:ba:a6:75:07:74:27:3c:00:66:56:93:61:41:1b:
cc:36:98:cd:f6:65:b2:50:fd:23:37:4e:3a:ff:a1:
03:69:a2:99:2e:32:69:5f:d8:8a:3d:37:0e:56:dc:
7d:e4:a4:64:26:0c:27:22:20:84:ea:2d:68:51:50:
93:99:8e:dc:5a:ec:78:56:d5:11:c6:b4:5a:3d:92:
40:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FC:B1:A8:4F:0F:BA:12:A1:F6:BF:3A:FB:B6:17:77:67:5F:34:B2
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/gPyxqE8PuhKh9r86-7YXd2dfNLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.208.0-86.48.210.255
86.48.216.0/21
86.48.240.0/23
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
Signature Algorithm: sha256WithRSAEncryption
6d:57:8f:ea:b2:d4:79:b4:67:d2:0d:e3:91:dd:6c:27:62:20:
d0:3a:34:72:d1:23:4c:3d:97:80:53:69:a7:80:c6:ff:38:34:
12:f2:bb:52:be:9a:67:15:70:d2:d3:b2:4e:b1:8e:24:70:db:
4a:58:5c:de:9d:c4:a3:9c:f1:21:7f:36:18:5b:d6:42:76:6f:
48:de:57:19:1b:0b:cc:6a:70:20:49:e0:85:eb:90:74:cc:3a:
75:5e:70:7b:75:7e:bc:d0:9b:1e:af:ec:e1:29:06:7a:26:da:
a5:44:38:b4:9e:26:ee:51:ed:88:95:2e:fd:b9:2b:b9:2b:5a:
d2:31:27:0e:e5:1f:6a:a4:a9:a7:27:04:04:cb:0e:09:b7:18:
ff:5e:f8:8f:5f:35:ce:07:70:33:a6:29:5a:9b:87:8e:2a:3e:
3d:d7:93:2a:80:09:f7:73:8d:da:b1:16:1f:77:83:94:d5:2f:
ab:96:d7:14:1e:bb:75:ed:e2:0f:ed:06:af:b1:1e:16:32:36:
24:57:f1:0f:73:fb:41:25:ab:32:a1:16:8c:91:18:e5:5c:b1:
d3:f3:69:43:d1:ee:2a:13:c6:36:52:5f:11:93:75:f3:bf:b7:
01:b3:08:68:35:90:63:dc:14:28:d4:3f:4f:15:ff:49:20:56:
94:dc:d7:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 16:56:22 2024 by rpki-client on console-fra.rpki-client.org