Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-DXHc2KTVk2zVf32fBAgjln9H3Q.roa
File: 1-DXHc2KTVk2zVf32fBAgjln9H3Q.roa (raw, json)
Hash identifier: VhkBEkRVZWIQG+Iey5TOfDsXRlKgdFJuyyaBWPZ1VrA=
Subject key identifier: F8:35:C7:73:62:93:56:4D:B3:55:FD:F6:7C:10:20:8E:59:FD:1F:74
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0190C53700A16C757C09A838063BC8F44A6F
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-DXHc2KTVk2zVf32fBAgjln9H3Q.roa
Signing time: Thu 18 Jul 2024 09:40:34 +0000
ROA not before: Thu 18 Jul 2024 09:40:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9125
IP address blocks: 5.172.33.0/24 maxlen: 24
5.172.34.0/23 maxlen: 23
5.172.34.0/24 maxlen: 24
5.172.36.0/22 maxlen: 22
5.172.36.0/23 maxlen: 23
89.23.65.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.77.0/24 maxlen: 24
89.23.78.0/24 maxlen: 24
89.23.83.0/24 maxlen: 24
89.23.84.0/24 maxlen: 24
89.23.86.0/24 maxlen: 24
89.23.88.0/24 maxlen: 24
89.23.90.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.252.0/24 maxlen: 24
92.42.253.0/24 maxlen: 24
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
93.93.192.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.116.0/22 maxlen: 22
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.226.0/24 maxlen: 24
109.111.227.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.229.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.232.0/22 maxlen: 22
109.111.236.0/22 maxlen: 22
109.111.240.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.245.0/24 maxlen: 24
109.111.246.0/24 maxlen: 24
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 23
109.111.254.0/24 maxlen: 24
178.254.128.0/21 maxlen: 21
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.140.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.145.0/24 maxlen: 24
178.254.163.0/24 maxlen: 24
178.254.165.0/24 maxlen: 24
178.254.169.0/24 maxlen: 24
178.254.172.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.183.0/24 maxlen: 24
178.254.184.0/24 maxlen: 24
178.254.187.0/24 maxlen: 24
178.254.188.0/22 maxlen: 24
185.157.44.0/24 maxlen: 24
193.104.68.0/24 maxlen: 24
217.169.208.0/20 maxlen: 20
217.169.208.0/22 maxlen: 22
217.169.212.0/22 maxlen: 22
217.169.216.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.220.0/22 maxlen: 22
2a02:b58::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 14 Nov 2024 21:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c5:37:00:a1:6c:75:7c:09:a8:38:06:3b:c8:f4:4a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jul 18 09:40:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f835c7736293564db355fdf67c10208e59fd1f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:83:7b:45:42:9a:65:38:c5:0e:69:f3:b6:c9:
6c:e9:1f:8c:ba:43:71:ca:c1:b4:a0:fe:21:a3:9e:
6d:3a:4b:80:f5:98:60:67:00:be:21:19:51:b8:85:
a9:09:14:52:cc:3e:cb:fa:f3:b1:0c:b7:e3:80:fd:
8e:13:55:bd:0b:4a:b2:c5:3e:8d:7d:6e:55:6f:bf:
36:71:cd:31:65:68:b7:79:67:23:48:8c:51:04:cf:
bd:73:df:e8:ed:d5:61:2c:32:51:01:fa:eb:bf:d0:
78:c4:ad:0d:83:b3:da:89:13:76:91:94:7d:ca:13:
7f:47:d5:a3:77:13:2a:2e:a4:ba:69:6d:5a:00:94:
d3:29:df:bc:d1:c9:f4:4f:53:0b:35:fd:e5:6d:89:
39:01:13:46:1b:13:dd:39:6d:c7:15:a7:eb:ac:4c:
f4:b4:3b:87:ac:72:2a:46:3c:a9:3b:95:6a:fa:f7:
b8:1a:98:46:e7:b7:63:01:3a:8e:71:f6:7e:12:26:
a8:01:a5:c8:fa:91:6b:b7:3b:ce:c8:89:b2:e5:d7:
b9:10:97:c3:be:aa:2e:9d:06:69:92:6a:c4:d5:fd:
d0:25:e4:0f:df:88:0e:4c:f8:78:40:5b:bb:ae:1c:
e7:90:d3:1a:80:ee:3f:ec:f2:0e:c6:35:de:35:0f:
ca:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:35:C7:73:62:93:56:4D:B3:55:FD:F6:7C:10:20:8E:59:FD:1F:74
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-DXHc2KTVk2zVf32fBAgjln9H3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.39.255
89.23.65.0-89.23.70.255
89.23.74.0/23
89.23.77.0-89.23.78.255
89.23.83.0-89.23.84.255
89.23.86.0/24
89.23.88.0/24
89.23.90.0/24
89.23.93.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.248.255
109.111.250.0/24
109.111.252.0-109.111.254.255
178.254.128.0/19
178.254.163.0/24
178.254.165.0/24
178.254.169.0/24
178.254.172.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0-178.254.184.255
178.254.187.0-178.254.191.255
185.157.44.0/24
193.104.68.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
88:e3:b1:73:5e:27:d1:6d:48:e5:8c:83:28:84:b2:1c:ca:ca:
60:98:42:07:d6:b0:c8:65:a1:53:25:32:61:66:87:11:dd:21:
bf:75:bc:eb:11:5a:c8:ed:83:40:34:f3:e4:81:e9:31:46:33:
39:4c:87:b3:d3:62:d8:d8:73:5e:db:43:d5:45:88:0b:c2:a0:
26:d3:75:37:3a:31:24:74:3f:9a:84:74:03:47:dc:23:dd:18:
c2:2c:e8:88:35:c9:8e:ef:b2:fa:2d:03:b3:c3:b8:46:d5:da:
98:6e:17:78:0b:50:20:48:b1:2e:1a:51:c9:b6:9c:f7:0a:62:
7a:bb:05:c7:98:2c:f9:b2:c8:b7:61:47:a8:8a:42:ed:35:8a:
48:32:3a:64:e7:2a:f1:a3:d6:eb:6d:01:bf:bf:84:98:e0:8f:
f3:11:06:93:84:ce:bd:1b:5e:50:5b:01:b3:5a:a2:b5:7f:8a:
ad:07:9f:f2:b0:63:bb:3b:d8:46:9e:09:ef:5e:e4:db:08:f0:
62:4f:1e:f6:f2:dd:71:32:9f:d4:a3:e8:44:27:29:2d:66:bb:
e9:3d:b6:8f:d4:e0:50:78:50:b7:a5:cb:bf:a0:5a:5b:90:9c:
a7:e1:22:0c:c6:96:21:a0:5b:7f:8f:2b:1e:a7:59:71:5c:37:
25:4b:50:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 23:17:35 2024 by rpki-client on console-fra.rpki-client.org