Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Ap3T5arfK42SbAuQc2xUXRTfvMM.roa
File: Ap3T5arfK42SbAuQc2xUXRTfvMM.roa (raw, json)
Hash identifier: 2ki8cJbL9qhngyEQ1SEfwV/IzVWaqGapaXixYrdjl9w=
Subject key identifier: 02:9D:D3:E5:AA:DF:2B:8D:92:6C:0B:90:73:6C:54:5D:14:DF:BC:C3
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0188B1D93A88F6FD6E5E13D83807C3440AA0
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Ap3T5arfK42SbAuQc2xUXRTfvMM.roa
Signing time: Mon 12 Jun 2023 23:03:03 +0000
ROA not before: Mon 12 Jun 2023 23:03:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9125
IP address blocks: 93.93.192.0/21 maxlen: 21
92.42.253.0/24 maxlen: 24
92.42.252.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
193.104.68.0/24 maxlen: 24
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
89.23.65.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.145.0/24 maxlen: 24
178.254.140.0/22 maxlen: 22
178.254.165.0/24 maxlen: 24
178.254.163.0/24 maxlen: 24
178.254.172.0/24 maxlen: 24
178.254.169.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.183.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.184.0/21 maxlen: 21
178.254.128.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.116.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
185.157.44.0/24 maxlen: 24
109.111.254.0/24 maxlen: 24
217.169.208.0/20 maxlen: 20
217.169.208.0/22 maxlen: 22
217.169.212.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.216.0/22 maxlen: 22
217.169.220.0/22 maxlen: 22
5.172.34.0/24 maxlen: 24
5.172.33.0/24 maxlen: 24
5.172.34.0/23 maxlen: 23
5.172.36.0/23 maxlen: 23
5.172.36.0/22 maxlen: 22
109.111.226.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.232.0/22 maxlen: 22
109.111.229.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.227.0/24 maxlen: 24
109.111.240.0/24 maxlen: 24
109.111.236.0/22 maxlen: 22
109.111.246.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 23
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
2a02:b58::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 29 Jul 2023 12:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b1:d9:3a:88:f6:fd:6e:5e:13:d8:38:07:c3:44:0a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 12 23:03:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=029dd3e5aadf2b8d926c0b90736c545d14dfbcc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e0:8c:cd:1d:d6:03:ff:56:a0:53:1d:61:c9:
61:3a:52:82:9d:6d:f4:fb:f1:9a:9c:32:ee:d6:b3:
7a:2f:6e:53:39:6c:c3:1b:31:2c:11:90:bc:45:0d:
4d:92:a6:54:15:58:76:3b:47:65:8c:72:21:95:ee:
1f:95:43:1e:16:3f:c8:9c:6b:ce:1c:da:d7:4b:1d:
4b:04:56:e2:8d:97:83:6d:5f:a2:5d:3e:df:ed:c7:
c9:46:16:13:de:45:f7:fc:87:5a:17:0a:bf:35:87:
d0:2c:7c:84:02:73:b6:e1:84:25:8b:95:d3:93:e5:
e5:65:24:3c:f2:a5:57:99:00:a1:fc:af:09:9e:c9:
14:41:bd:b1:a9:6c:2a:6a:ff:99:58:c6:4e:55:ff:
f6:84:e9:1b:82:fa:ab:cd:d8:27:21:0f:20:47:36:
d7:59:bf:94:f7:c9:23:0e:09:4d:96:2b:a2:72:d3:
e3:bf:32:90:00:a0:4b:b3:d2:ed:db:c1:f3:08:1c:
80:bb:38:d7:a8:34:c0:54:03:c4:33:77:d8:68:6e:
3b:50:e4:5d:d0:b3:c1:ba:87:9c:e7:09:36:6a:b9:
d7:4d:26:dd:85:b7:17:be:4a:d8:81:0f:79:bf:95:
3f:81:b4:8a:82:95:a9:48:9a:e6:c0:f9:f6:0b:df:
65:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9D:D3:E5:AA:DF:2B:8D:92:6C:0B:90:73:6C:54:5D:14:DF:BC:C3
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Ap3T5arfK42SbAuQc2xUXRTfvMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.39.255
89.23.65.0-89.23.70.255
89.23.75.0/24
89.23.93.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.244.255
109.111.246.0-109.111.248.255
109.111.250.0/24
109.111.252.0-109.111.254.255
178.254.128.0/19
178.254.163.0/24
178.254.165.0/24
178.254.169.0/24
178.254.172.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0-178.254.191.255
185.157.44.0/24
193.104.68.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
8b:b4:5e:49:e1:79:b2:0e:6b:bd:bf:ba:5f:45:d0:59:a7:ca:
f4:eb:db:ef:d3:aa:73:03:34:fc:38:78:3e:4e:a6:f7:6b:72:
78:04:a9:e7:8c:3c:25:5d:9d:6f:7c:d4:7a:68:ad:1f:78:90:
73:65:c0:69:d6:a2:f1:9e:3c:a4:32:2c:c4:94:ac:5a:b2:0b:
ed:89:11:d5:a4:47:62:3b:91:41:24:55:e9:40:e0:ac:0c:1f:
6b:0b:8a:8a:5f:9a:dc:a5:48:46:f8:ea:0a:1a:a4:14:c6:e1:
68:bb:84:19:5c:63:db:d6:a3:39:c7:fd:15:37:4d:56:5b:1f:
6b:4f:41:59:27:d9:ef:f3:b9:9e:64:2f:48:38:02:01:56:3b:
d3:1e:d9:cc:a0:f7:75:28:60:76:ce:7e:a8:df:ea:22:cf:53:
79:fd:aa:76:c0:77:1a:63:da:24:49:73:88:ec:77:21:ac:9b:
60:73:90:94:77:02:c2:32:b8:ca:fb:75:a7:5e:d0:61:cb:0c:
1f:5a:8d:f1:9d:e1:13:25:7c:25:58:88:1f:a7:04:02:a8:25:
e6:b1:1e:68:a8:5e:d1:de:a9:ba:48:b0:14:09:71:d2:ee:62:
2b:55:c5:3f:70:cf:e9:7c:66:f8:d8:43:59:3a:e1:2e:7a:79:
7b:bc:4f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org