Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/4-OJfrvXE0TaGYTTjs0ihHk3WGk.roa
File: 4-OJfrvXE0TaGYTTjs0ihHk3WGk.roa (raw, json)
Hash identifier: mhQKgYBOmYliZK4S3omOL3x0LqQYpKGpciKaRmMpO5w=
Subject key identifier: E3:E3:89:7E:BB:D7:13:44:DA:19:84:D3:8E:CD:22:84:79:37:58:69
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018EF565623D2B6AD7DDD5F7642297B59A34
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/4-OJfrvXE0TaGYTTjs0ihHk3WGk.roa
Signing time: Fri 19 Apr 2024 08:07:25 +0000
ROA not before: Fri 19 Apr 2024 08:07:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9125
IP address blocks: 5.172.33.0/24 maxlen: 24
5.172.34.0/23 maxlen: 23
5.172.34.0/24 maxlen: 24
5.172.36.0/22 maxlen: 22
5.172.36.0/23 maxlen: 23
89.23.65.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.77.0/24 maxlen: 24
89.23.78.0/24 maxlen: 24
89.23.83.0/24 maxlen: 24
89.23.84.0/24 maxlen: 24
89.23.86.0/24 maxlen: 24
89.23.90.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.252.0/24 maxlen: 24
92.42.253.0/24 maxlen: 24
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
93.93.192.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.116.0/22 maxlen: 22
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.226.0/24 maxlen: 24
109.111.227.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.229.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.232.0/22 maxlen: 22
109.111.236.0/22 maxlen: 22
109.111.240.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.245.0/24 maxlen: 24
109.111.246.0/24 maxlen: 24
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 23
109.111.254.0/24 maxlen: 24
178.254.128.0/21 maxlen: 21
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.140.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.145.0/24 maxlen: 24
178.254.163.0/24 maxlen: 24
178.254.165.0/24 maxlen: 24
178.254.169.0/24 maxlen: 24
178.254.172.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.183.0/24 maxlen: 24
178.254.184.0/24 maxlen: 24
178.254.187.0/24 maxlen: 24
178.254.188.0/22 maxlen: 24
185.157.44.0/24 maxlen: 24
193.104.68.0/24 maxlen: 24
217.169.208.0/20 maxlen: 20
217.169.208.0/22 maxlen: 22
217.169.212.0/22 maxlen: 22
217.169.216.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.220.0/22 maxlen: 22
2a02:b58::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 18 Jul 2024 09:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f5:65:62:3d:2b:6a:d7:dd:d5:f7:64:22:97:b5:9a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Apr 19 08:07:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3e3897ebbd71344da1984d38ecd228479375869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:61:86:f3:30:87:4a:05:95:92:8e:42:ce:6a:
8c:2d:f3:4b:1c:82:64:3a:26:46:f6:62:2b:d4:15:
14:a5:fe:bd:9e:af:b1:93:4a:3d:fd:df:83:b4:9f:
fa:e5:15:7c:e7:ff:7e:1f:20:8a:94:23:ec:38:19:
73:45:8c:b5:00:fc:53:ee:57:50:67:de:25:ce:7e:
ca:9c:65:e0:19:ac:09:25:82:0a:b9:9e:c1:a9:80:
ce:7b:3c:22:95:a4:1e:67:78:8e:1c:03:c1:56:89:
51:4b:81:96:bf:52:d4:cf:5d:e1:7f:36:80:35:80:
26:40:b8:5c:aa:b6:c2:f5:2c:c8:c7:3a:08:52:27:
1e:cb:14:4d:96:0c:c1:db:30:4c:02:c3:84:29:c7:
25:71:68:55:40:0d:b4:56:db:58:1d:fa:51:26:b4:
b2:71:18:e5:f1:90:90:40:0c:49:e3:19:46:18:33:
e8:f5:61:6a:7b:95:6f:c7:d3:1e:7d:c7:67:69:17:
4e:b4:21:63:51:01:79:19:ce:1b:4a:48:dc:78:2f:
2c:6e:04:16:32:ca:05:09:d0:1f:ce:7a:7f:c8:85:
f9:34:60:b7:49:9e:82:20:7c:c8:d0:bf:e2:c4:2a:
9e:07:ec:32:18:6b:72:4d:cb:9f:75:cd:f8:a6:2b:
aa:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E3:89:7E:BB:D7:13:44:DA:19:84:D3:8E:CD:22:84:79:37:58:69
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/4-OJfrvXE0TaGYTTjs0ihHk3WGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.39.255
89.23.65.0-89.23.70.255
89.23.74.0/23
89.23.77.0-89.23.78.255
89.23.83.0-89.23.84.255
89.23.86.0/24
89.23.90.0/24
89.23.93.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.248.255
109.111.250.0/24
109.111.252.0-109.111.254.255
178.254.128.0/19
178.254.163.0/24
178.254.165.0/24
178.254.169.0/24
178.254.172.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0-178.254.184.255
178.254.187.0-178.254.191.255
185.157.44.0/24
193.104.68.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
2d:79:d7:5a:6f:f4:b6:9f:66:7d:07:2e:3b:2f:a4:33:6f:d0:
85:75:a9:aa:c2:1e:b2:88:24:06:70:41:bd:22:42:77:38:24:
c8:2e:2a:2b:7e:66:b9:ed:33:5f:42:43:4b:fb:de:48:40:8d:
63:54:cd:b2:5d:48:7c:cb:6e:ef:56:3d:01:d9:e8:51:d5:ac:
2e:7c:72:75:55:e7:07:15:8e:28:18:c2:83:0c:d7:57:0d:cb:
44:26:70:f7:a4:93:76:22:df:26:f9:aa:95:3d:2c:86:b2:07:
7e:d0:55:61:86:61:d5:ae:b6:37:c0:c2:29:34:ff:3a:6b:87:
d6:66:16:24:b7:00:1d:35:ca:fb:a1:e3:cc:74:12:2d:e0:ba:
1c:bd:d6:5e:88:e9:0a:0c:91:ca:92:d5:1d:6d:2c:59:f2:98:
66:b7:99:10:78:de:d8:cb:0c:29:64:da:ff:d9:77:da:b9:a6:
05:42:e6:aa:3c:f5:a1:56:9f:5f:86:d8:e5:94:a4:61:36:c4:
25:8c:eb:b1:0e:ab:e0:6e:29:a4:e9:26:4e:e8:a9:16:5f:ef:
b5:71:15:a7:09:53:2b:a2:ff:5f:e3:cc:fd:8e:f6:15:aa:3f:
ff:83:4e:a3:59:4a:f9:9f:9b:8c:41:6c:bb:e8:52:aa:3c:b6:
fb:33:13:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 12:56:39 2024 by rpki-client on console-ams.rpki-client.org