Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/o5mpf9Zq1_zkakTNP2zx5myiuDo.roa
File: o5mpf9Zq1_zkakTNP2zx5myiuDo.roa (raw, json)
Hash identifier: OI4KNHCensV8nW6V9olNo7yDPp8ZsrFVFz/v4+DtMyA=
Subject key identifier: A3:99:A9:7F:D6:6A:D7:FC:E4:6A:44:CD:3F:6C:F1:E6:6C:A2:B8:3A
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0188B1D01309B27AC5C062B179C803358972
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/o5mpf9Zq1_zkakTNP2zx5myiuDo.roa
Signing time: Mon 12 Jun 2023 22:53:03 +0000
ROA not before: Mon 12 Jun 2023 22:53:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9125
IP address blocks: 93.93.192.0/21 maxlen: 21
92.42.253.0/24 maxlen: 24
92.42.252.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
193.104.68.0/24 maxlen: 24
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
89.23.65.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.145.0/24 maxlen: 24
178.254.140.0/22 maxlen: 22
178.254.165.0/24 maxlen: 24
178.254.163.0/24 maxlen: 24
178.254.172.0/24 maxlen: 24
178.254.169.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.183.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.184.0/21 maxlen: 21
178.254.128.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.116.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
185.157.44.0/24 maxlen: 24
109.111.254.0/24 maxlen: 24
217.169.208.0/20 maxlen: 20
217.169.208.0/22 maxlen: 22
217.169.212.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.216.0/22 maxlen: 22
217.169.220.0/22 maxlen: 22
5.172.34.0/24 maxlen: 24
5.172.33.0/24 maxlen: 24
5.172.34.0/23 maxlen: 23
5.172.36.0/23 maxlen: 23
5.172.36.0/22 maxlen: 22
109.111.226.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.232.0/22 maxlen: 22
109.111.229.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.227.0/24 maxlen: 24
109.111.240.0/24 maxlen: 24
109.111.236.0/22 maxlen: 22
109.111.246.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 23
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
2a02:b58::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 12 Jun 2023 23:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b1:d0:13:09:b2:7a:c5:c0:62:b1:79:c8:03:35:89:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 12 22:53:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a399a97fd66ad7fce46a44cd3f6cf1e66ca2b83a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ef:e1:a4:64:b2:3b:68:00:1d:db:12:dc:a0:
83:53:09:59:fb:e3:1d:c3:c2:e1:e6:e4:23:f3:47:
99:63:8a:c1:74:a5:94:57:f5:55:70:99:c8:4a:37:
32:e0:ab:7e:3a:18:30:8c:bf:63:6f:8a:32:ea:20:
c3:40:b6:15:f5:5f:6f:2a:24:78:62:92:c6:4a:3d:
87:7c:7f:0a:46:c4:f9:26:12:fc:a1:aa:1d:d9:ce:
b6:1e:5b:7b:7f:91:96:c6:fa:a8:d3:55:16:6e:87:
e4:54:0e:25:7a:19:bb:a4:d5:7e:a1:0c:0e:3f:c5:
49:3c:4f:3b:e5:31:b0:35:27:ce:1d:0d:50:9f:7f:
39:d2:02:06:8a:2b:ee:00:80:bb:ca:7f:d1:f9:c9:
3a:96:a7:8f:95:c2:62:44:d1:d9:58:72:de:e1:3a:
e2:bb:e2:0d:73:74:b3:3b:a9:5b:fe:20:b6:91:99:
a1:36:d1:27:aa:de:df:20:e9:d7:73:5d:59:c7:40:
d8:d8:ae:98:6d:9c:aa:83:64:4a:01:94:69:2f:97:
db:2a:b6:24:02:c9:18:20:74:4f:41:0f:81:ce:9b:
74:c7:4f:e4:e8:81:12:87:84:80:8c:76:c2:6e:78:
c8:65:55:53:18:7d:7a:4f:db:ff:5e:9e:3b:d9:37:
d7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:99:A9:7F:D6:6A:D7:FC:E4:6A:44:CD:3F:6C:F1:E6:6C:A2:B8:3A
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/o5mpf9Zq1_zkakTNP2zx5myiuDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.39.255
89.23.65.0-89.23.70.255
89.23.75.0/24
89.23.93.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.244.255
109.111.246.0-109.111.248.255
109.111.250.0/24
109.111.252.0-109.111.254.255
178.254.128.0/19
178.254.163.0/24
178.254.165.0/24
178.254.169.0/24
178.254.172.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0-178.254.191.255
185.157.44.0/24
193.104.68.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
85:1d:d0:d3:63:d7:2d:e4:50:8a:4c:d5:e2:57:bd:9e:32:28:
e5:27:4f:b4:65:ab:96:17:9d:98:5b:b6:3f:56:de:51:ee:3d:
c0:76:76:f6:bd:fd:bc:4a:fc:38:5b:5a:77:e6:a0:61:e4:b5:
57:44:8e:b5:6d:f4:ed:ed:ff:54:69:67:46:6d:94:73:40:e3:
e4:7f:7b:57:71:8c:37:46:ca:80:4c:f6:16:63:97:5e:b6:13:
9b:2a:89:c5:17:5c:79:fe:24:6f:df:29:80:da:7e:55:2d:6d:
e8:57:0c:3a:93:41:1a:df:9d:c6:f8:7f:8b:5e:cf:22:ff:7a:
99:5c:07:cb:22:53:a2:18:24:66:78:26:64:34:4d:ab:fd:d1:
72:76:13:bc:f8:ae:fd:fb:66:de:0a:2f:5d:5a:4d:05:3e:65:
d8:44:5b:91:be:ba:8f:69:e2:cc:9e:1b:56:3e:cb:c7:f1:17:
51:55:10:09:71:cb:c0:29:63:9a:28:51:dc:bb:a6:b8:ab:de:
03:23:fc:7a:f4:54:35:04:5b:97:49:5c:7a:d2:50:41:67:98:
a0:1b:5a:3b:70:7f:bb:7a:85:0b:68:56:f9:f7:ab:8d:13:60:
00:18:73:87:a7:7d:e2:e1:6a:1b:cc:76:b1:ca:bb:47:83:c8:
c0:75:85:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org