Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-so40PBfo6-1b4JwAPwXIyYv5yQ.roa
File: 1-so40PBfo6-1b4JwAPwXIyYv5yQ.roa (raw, json)
Hash identifier: JeNYAasVHiFkBTWWhEbjNaQ2oeVs2ZUoeIY5+fybGLk=
Subject key identifier: FA:CA:38:D0:F0:5F:A3:AF:B5:6F:82:70:00:FC:17:23:26:2F:E7:24
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018C1FC214A48BB84BD3C41D8472C8D544E6
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-so40PBfo6-1b4JwAPwXIyYv5yQ.roa
Signing time: Thu 30 Nov 2023 10:24:21 +0000
ROA not before: Thu 30 Nov 2023 10:24:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9125
IP address blocks: 93.93.192.0/21 maxlen: 21
92.42.253.0/24 maxlen: 24
92.42.252.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
193.104.68.0/24 maxlen: 24
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
89.23.65.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
89.23.84.0/24 maxlen: 24
89.23.90.0/24 maxlen: 24
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.145.0/24 maxlen: 24
178.254.140.0/22 maxlen: 22
178.254.165.0/24 maxlen: 24
178.254.163.0/24 maxlen: 24
178.254.172.0/24 maxlen: 24
178.254.169.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.183.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.184.0/24 maxlen: 24
178.254.128.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.116.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
178.254.188.0/22 maxlen: 24
178.254.187.0/24 maxlen: 24
185.157.44.0/24 maxlen: 24
109.111.254.0/24 maxlen: 24
217.169.208.0/22 maxlen: 22
217.169.208.0/20 maxlen: 20
217.169.212.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.216.0/22 maxlen: 22
217.169.220.0/22 maxlen: 22
5.172.34.0/24 maxlen: 24
5.172.33.0/24 maxlen: 24
5.172.34.0/23 maxlen: 23
5.172.36.0/23 maxlen: 23
5.172.36.0/22 maxlen: 22
109.111.226.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.232.0/22 maxlen: 22
109.111.229.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.227.0/24 maxlen: 24
109.111.240.0/24 maxlen: 24
109.111.236.0/22 maxlen: 22
109.111.246.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.245.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 23
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
2a02:b58::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Dec 2023 07:58:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1f:c2:14:a4:8b:b8:4b:d3:c4:1d:84:72:c8:d5:44:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Nov 30 10:24:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=faca38d0f05fa3afb56f827000fc1723262fe724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:16:dd:e6:38:65:f0:72:1e:25:a4:f0:9c:d0:
72:63:7f:29:56:8f:31:17:1e:53:ca:be:84:59:d8:
a7:79:34:1d:2a:87:ea:5c:42:0e:ae:dc:af:3f:83:
14:30:9c:f7:a7:58:bc:07:8b:53:67:f2:6a:c6:d8:
fd:49:65:5c:a9:ce:75:92:35:33:e5:00:11:0b:ca:
d5:40:d7:aa:33:29:c7:fd:24:f8:ba:5e:1f:f3:fe:
30:60:f7:e8:51:60:47:d3:d8:39:4b:5e:36:b1:bb:
4f:30:97:fa:f0:0c:23:c3:61:f2:bd:b9:d2:4b:ea:
b3:56:61:db:5b:ae:42:34:8b:8d:0c:0e:6f:a2:1c:
58:61:ac:73:f3:33:55:68:27:32:98:8b:7e:db:4f:
5f:24:1b:f3:10:b9:d2:2d:71:f0:58:44:9b:10:01:
40:c1:b1:1a:b3:6b:e7:30:40:61:2e:fe:29:36:c1:
29:33:14:6d:98:b9:8c:f3:5a:0e:34:d3:a8:5e:db:
70:95:38:b9:c0:6c:1e:95:3f:fe:f3:fa:dd:da:9c:
09:8b:5d:a1:57:b8:91:6f:e8:2c:db:de:04:dd:e7:
de:03:eb:bd:ee:fc:74:92:67:43:39:43:22:f4:38:
f3:48:5a:32:47:a3:ec:0c:32:3d:60:0b:32:1f:81:
96:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CA:38:D0:F0:5F:A3:AF:B5:6F:82:70:00:FC:17:23:26:2F:E7:24
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-so40PBfo6-1b4JwAPwXIyYv5yQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.39.255
89.23.65.0-89.23.70.255
89.23.74.0/23
89.23.84.0/24
89.23.90.0/24
89.23.93.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.248.255
109.111.250.0/24
109.111.252.0-109.111.254.255
178.254.128.0/19
178.254.163.0/24
178.254.165.0/24
178.254.169.0/24
178.254.172.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0-178.254.184.255
178.254.187.0-178.254.191.255
185.157.44.0/24
193.104.68.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
6f:eb:29:2d:da:a5:21:6c:31:b7:18:be:9b:db:d2:89:21:ba:
38:fb:58:6c:ca:7c:89:2b:4c:f8:29:19:dc:9f:76:18:02:7d:
90:17:2b:38:a2:66:ea:0d:9a:4b:e7:8d:44:d4:d0:c2:3e:ef:
ff:1a:f8:5b:7b:3f:12:9e:90:d2:d6:52:50:4a:20:7b:ec:71:
5b:39:9c:52:4e:ed:65:e3:5a:78:47:9a:85:10:0f:ab:ad:55:
a0:cf:f7:75:8b:02:6c:c8:a7:c5:55:6d:da:af:65:13:29:00:
43:47:3f:cc:f4:33:1b:ed:d7:53:9c:20:03:95:44:53:e8:99:
37:f6:f2:db:a4:3c:f9:ad:56:48:ad:ab:2d:c3:39:4f:5e:b5:
07:76:3a:4b:32:ab:b7:e0:20:92:6c:e0:fb:3f:bd:eb:01:43:
14:02:6a:e5:b1:72:dc:17:8c:da:a0:bb:e4:96:75:1e:cf:36:
ff:76:d4:03:18:f1:b5:55:ee:1e:77:71:d6:6e:54:2d:7d:11:
87:2d:82:a1:37:5c:f6:3b:18:72:98:d0:9e:07:78:a9:91:88:
e6:a1:ad:dc:5f:66:89:b6:04:19:65:ae:de:a8:94:d2:de:74:
6d:dc:b4:22:70:6d:47:8d:7e:93:77:5a:1b:7b:4d:16:2c:0e:
54:3b:d2:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org