Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/2E6sjwKXDBgNhzkaSYVlX2-FWEw.roa
File: 2E6sjwKXDBgNhzkaSYVlX2-FWEw.roa (raw, json)
Hash identifier: FkprmJerE6cfGQPx8umF7bT8FtmSCg09y1AABd3pvMI=
Subject key identifier: D8:4E:AC:8F:02:97:0C:18:0D:87:39:1A:49:85:65:5F:6F:85:58:4C
Certificate issuer: /CN=63444210ea08ac529878d51917e3b30054d620d1
Certificate serial: 018857BC17915959A8A494697E4CD602526B
Authority key identifier: 63:44:42:10:EA:08:AC:52:98:78:D5:19:17:E3:B3:00:54:D6:20:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/2E6sjwKXDBgNhzkaSYVlX2-FWEw.roa
Signing time: Fri 26 May 2023 11:05:24 +0000
ROA not before: Fri 26 May 2023 11:05:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30722
IP address blocks: 91.80.64.0/18 maxlen: 18
109.114.0.0/15 maxlen: 19
176.242.0.0/15 maxlen: 15
91.80.0.0/19 maxlen: 19
93.144.0.0/16 maxlen: 20
2.43.0.0/16 maxlen: 16
93.70.0.0/16 maxlen: 18
91.80.32.0/21 maxlen: 21
83.225.0.0/16 maxlen: 16
91.80.46.0/24 maxlen: 24
91.80.48.0/20 maxlen: 24
93.148.0.0/16 maxlen: 20
93.151.128.0/17 maxlen: 20
2.40.0.0/16 maxlen: 20
91.80.128.0/17 maxlen: 17
83.224.64.0/20 maxlen: 20
83.224.81.0/24 maxlen: 24
83.224.80.0/24 maxlen: 24
83.224.86.0/23 maxlen: 23
93.66.0.0/15 maxlen: 17
2.32.0.0/16 maxlen: 20
93.150.0.0/16 maxlen: 20
2.36.0.0/14 maxlen: 18
31.26.0.0/16 maxlen: 16
188.218.0.0/15 maxlen: 18
37.117.0.0/16 maxlen: 19
93.147.0.0/16 maxlen: 20
83.224.128.0/17 maxlen: 17
2.46.0.0/15 maxlen: 20
37.176.0.0/13 maxlen: 20
37.119.0.0/17 maxlen: 19
109.119.0.0/16 maxlen: 16
31.156.0.0/14 maxlen: 19
93.146.0.0/16 maxlen: 20
37.159.128.0/17 maxlen: 20
109.115.192.0/19 maxlen: 19
2.45.0.0/16 maxlen: 20
109.115.96.0/19 maxlen: 19
109.112.0.0/15 maxlen: 15
188.152.128.0/17 maxlen: 20
31.27.224.0/19 maxlen: 19
93.65.0.0/16 maxlen: 18
37.116.0.0/16 maxlen: 19
109.116.0.0/15 maxlen: 20
176.244.0.0/14 maxlen: 14
2.42.0.0/16 maxlen: 20
37.119.128.0/17 maxlen: 20
93.69.0.0/16 maxlen: 16
109.115.224.0/19 maxlen: 19
188.153.0.0/16 maxlen: 20
130.25.0.0/16 maxlen: 18
2.44.0.0/16 maxlen: 19
93.71.0.0/16 maxlen: 18
2.34.0.0/15 maxlen: 20
93.64.0.0/16 maxlen: 18
31.27.0.0/18 maxlen: 18
37.118.0.0/16 maxlen: 16
109.118.0.0/16 maxlen: 16
91.81.0.0/17 maxlen: 19
93.145.0.0/16 maxlen: 20
5.88.0.0/13 maxlen: 20
93.68.0.0/16 maxlen: 16
91.81.128.0/17 maxlen: 24
37.159.0.0/17 maxlen: 17
31.27.192.0/19 maxlen: 19
93.149.0.0/16 maxlen: 20
188.152.0.0/17 maxlen: 20
31.27.96.0/20 maxlen: 20
188.216.0.0/15 maxlen: 17
130.0.128.0/18 maxlen: 21
31.27.128.0/17 maxlen: 19
2.41.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 10 Oct 2023 08:42:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:bc:17:91:59:59:a8:a4:94:69:7e:4c:d6:02:52:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63444210ea08ac529878d51917e3b30054d620d1
Validity
Not Before: May 26 11:05:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d84eac8f02970c180d87391a4985655f6f85584c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b5:35:8f:b5:04:99:b9:5a:f4:fc:62:aa:25:
ec:7a:ef:97:3f:c1:2c:58:60:c3:36:6e:8d:8f:77:
14:26:73:24:85:90:29:07:e5:fd:f5:28:73:b9:7e:
78:d2:f5:46:22:7f:16:25:54:40:75:24:4d:01:66:
fe:65:d4:4e:36:ec:65:43:05:2c:6a:8b:48:5b:0c:
46:f5:5b:6d:43:f8:75:8e:db:a6:23:d5:9a:c2:66:
20:5d:19:1c:58:82:1e:3b:90:42:f9:3b:37:31:1a:
1d:25:1a:f5:39:75:40:45:31:cb:5e:33:9d:83:5d:
50:57:78:d0:49:67:57:09:d9:54:21:b4:07:02:c7:
63:a9:b9:1d:cf:fd:3a:04:ef:ab:0f:91:16:8a:04:
6f:33:1e:61:83:2b:5c:d4:d9:6b:92:01:ff:38:c5:
bd:42:36:86:fa:4a:32:34:15:d7:3d:a3:80:b1:6f:
f7:85:f4:00:d7:ec:4e:20:3c:a4:55:2d:cb:03:98:
d8:d2:73:b2:ed:ab:79:8d:e0:ca:a2:87:6d:72:a8:
45:09:96:76:6b:ba:34:a3:eb:2f:f6:78:ac:77:00:
97:43:5f:cb:d7:d7:6f:f8:ec:26:1a:1e:b3:23:84:
83:dc:88:fe:35:2f:a5:98:86:46:b3:ae:26:a4:a8:
c9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4E:AC:8F:02:97:0C:18:0D:87:39:1A:49:85:65:5F:6F:85:58:4C
X509v3 Authority Key Identifier:
keyid:63:44:42:10:EA:08:AC:52:98:78:D5:19:17:E3:B3:00:54:D6:20:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/2E6sjwKXDBgNhzkaSYVlX2-FWEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/Y0RCEOoIrFKYeNUZF-OzAFTWINE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.32.0.0/16
2.34.0.0-2.47.255.255
5.88.0.0/13
31.26.0.0-31.27.63.255
31.27.96.0/20
31.27.128.0/17
31.156.0.0/14
37.116.0.0/14
37.159.0.0/16
37.176.0.0/13
83.224.64.0-83.224.81.255
83.224.86.0/23
83.224.128.0-83.225.255.255
91.80.0.0-91.80.39.255
91.80.46.0/24
91.80.48.0-91.81.255.255
93.64.0.0/13
93.144.0.0-93.150.255.255
93.151.128.0/17
109.112.0.0/13
130.0.128.0/18
130.25.0.0/16
176.242.0.0-176.247.255.255
188.152.0.0/15
188.216.0.0/14
Signature Algorithm: sha256WithRSAEncryption
89:97:56:0e:4c:f7:50:71:c8:f2:d3:22:af:ad:22:c3:e0:19:
24:cd:92:ac:7a:d8:77:ba:0b:98:cc:88:51:ce:e7:e3:02:46:
2a:44:9e:eb:39:02:ad:43:81:5e:b5:72:b4:ec:20:9d:9b:68:
f1:c7:d8:3a:d5:33:f1:2c:b1:35:29:bd:9e:83:7a:96:12:3b:
c8:f5:43:41:4a:83:9b:c6:fb:9e:19:54:e2:4f:7a:34:e9:a4:
cf:a6:5c:c3:84:54:62:a1:63:7e:37:f2:8d:a2:19:80:f1:98:
2a:a3:bb:94:98:e5:f5:95:cf:83:f0:82:57:d3:21:8f:6b:9b:
cc:9a:c2:a9:f8:e9:45:e4:fb:8a:4c:04:a2:a6:4c:a9:e7:02:
54:60:0f:6e:95:bb:e2:1f:72:db:7f:5e:4e:39:f2:0d:4c:93:
70:b9:53:f2:a5:8c:5f:0f:3f:8e:ed:d1:01:c6:b5:46:a4:7b:
e1:33:6b:32:ad:1c:74:37:99:47:9e:a7:8f:06:15:2d:f8:00:
5f:2c:1f:7f:f4:f9:b1:af:6d:c7:b9:90:dd:04:9d:74:1d:91:
c1:fe:a3:85:1b:8a:fb:96:b2:33:34:70:4a:d1:59:5b:6b:cb:
e8:e3:cd:22:be:69:ef:a2:02:16:35:89:8c:b7:16:c7:08:fc:
0b:7b:e8:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org