Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4IIsvUEulpLINRJ-tY0hDvbrD5Y.roa
File: 4IIsvUEulpLINRJ-tY0hDvbrD5Y.roa (raw, json)
Hash identifier: BON9ba0KCD4kRunKwdmhNCHHOF95pEY/673nmD+70Lw=
Subject key identifier: E0:82:2C:BD:41:2E:96:92:C8:35:12:7E:B5:8D:21:0E:F6:EB:0F:96
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018FE8AEE8938A8AB5146A0D00F0CB28926A
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4IIsvUEulpLINRJ-tY0hDvbrD5Y.roa
Signing time: Wed 05 Jun 2024 13:55:27 +0000
ROA not before: Wed 05 Jun 2024 13:55:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3257
IP address blocks: 2.56.0.0/22 maxlen: 22
5.180.4.0/22 maxlen: 22
5.182.28.0/22 maxlen: 22
45.67.117.0/24 maxlen: 24
45.86.16.0/21 maxlen: 21
45.88.124.0/22 maxlen: 22
45.143.44.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
85.159.117.0/24 maxlen: 24
89.39.242.0/24 maxlen: 24
89.40.161.0/24 maxlen: 24
91.239.59.0/24 maxlen: 24
91.242.70.0/24 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.74.0/23 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.94.0/24 maxlen: 24
91.242.95.0/24 maxlen: 24
91.242.103.0/24 maxlen: 24
91.242.123.0/24 maxlen: 24
91.242.124.0/24 maxlen: 24
91.242.125.0/24 maxlen: 24
91.242.126.0/24 maxlen: 24
91.242.127.0/24 maxlen: 24
94.231.198.0/24 maxlen: 24
176.126.223.0/24 maxlen: 24
178.175.176.0/22 maxlen: 22
185.40.105.0/24 maxlen: 24
185.173.244.0/24 maxlen: 24
185.173.247.0/24 maxlen: 24
185.180.145.0/24 maxlen: 24
185.212.11.0/24 maxlen: 24
193.46.204.0/24 maxlen: 24
194.50.200.0/23 maxlen: 24
194.50.201.0/24 maxlen: 24
194.50.206.0/23 maxlen: 24
195.138.103.0/24 maxlen: 24
195.138.104.0/24 maxlen: 24
195.138.105.0/24 maxlen: 24
195.138.106.0/24 maxlen: 24
195.138.107.0/24 maxlen: 24
195.138.108.0/24 maxlen: 24
195.138.111.0/24 maxlen: 24
195.138.112.0/24 maxlen: 24
195.138.114.0/24 maxlen: 24
195.138.116.0/24 maxlen: 24
195.138.118.0/24 maxlen: 24
195.138.120.0/24 maxlen: 24
195.138.122.0/23 maxlen: 23
195.138.124.0/22 maxlen: 22
195.216.156.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 05 Jun 2024 16:40:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:ae:e8:93:8a:8a:b5:14:6a:0d:00:f0:cb:28:92:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jun 5 13:55:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0822cbd412e9692c835127eb58d210ef6eb0f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b9:b1:38:2d:51:7c:64:7e:c7:d4:0c:ea:5c:
86:34:15:94:f7:d3:d7:4a:d7:9b:29:08:0a:b3:f3:
c4:42:5a:0e:2b:5b:ff:fa:5b:10:70:87:50:b6:91:
14:f5:09:24:4b:46:cb:a5:b2:9d:38:3c:a4:c6:08:
5a:84:db:e2:26:5a:88:c8:f2:eb:fd:af:c2:85:fc:
31:07:b1:c9:2f:e0:a9:b3:3a:6f:99:d3:5e:06:8e:
09:18:56:5d:05:59:95:39:2f:d1:34:24:00:3f:e4:
ae:ad:df:5d:2a:0e:55:0d:7e:cb:39:00:7b:16:1b:
0a:8b:6c:90:dd:33:74:39:04:e6:6a:2c:0a:85:92:
bd:03:5a:28:cb:98:7b:7d:ee:a2:c7:18:64:3b:28:
ea:67:51:fe:d0:53:1a:2f:9c:59:2b:ce:9b:57:59:
c4:b7:e9:ab:8b:ec:41:c3:67:6e:6f:e2:c3:65:7a:
bf:b3:08:bb:df:ab:8d:1c:19:56:f5:cd:5e:0c:36:
81:91:ce:59:c2:2c:66:c4:46:45:a8:e1:07:25:9e:
e8:bd:76:1d:83:b8:22:1e:22:f2:8d:a8:ac:d8:2b:
f1:c8:c9:8a:44:4f:09:d0:93:78:52:1b:23:d3:f9:
49:35:2d:6d:78:7c:52:90:a6:e7:64:ae:13:3a:db:
dd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:82:2C:BD:41:2E:96:92:C8:35:12:7E:B5:8D:21:0E:F6:EB:0F:96
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4IIsvUEulpLINRJ-tY0hDvbrD5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.0.0/22
5.180.4.0/22
5.182.28.0/22
45.67.117.0/24
45.86.16.0/21
45.88.124.0/22
45.143.44.0/22
45.151.196.0/22
85.159.117.0/24
89.39.242.0/24
89.40.161.0/24
91.239.59.0/24
91.242.70.0/24
91.242.72.0/22
91.242.94.0/23
91.242.103.0/24
91.242.123.0-91.242.127.255
94.231.198.0/24
176.126.223.0/24
178.175.176.0/22
185.40.105.0/24
185.173.244.0/24
185.173.247.0/24
185.180.145.0/24
185.212.11.0/24
193.46.204.0/24
194.50.200.0/23
194.50.206.0/23
195.138.103.0-195.138.108.255
195.138.111.0-195.138.112.255
195.138.114.0/24
195.138.116.0/24
195.138.118.0/24
195.138.120.0/24
195.138.122.0-195.138.127.255
195.216.156.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:35:5d:3f:cb:4e:de:79:61:4d:66:51:ca:5c:32:c5:11:e7:
99:e3:a1:cd:96:84:42:e4:e6:11:d6:0f:30:a2:38:6a:d3:f1:
76:43:c9:4e:d9:97:4e:76:b0:6a:c3:26:1c:0c:8d:98:ca:5b:
35:9a:71:f4:8d:37:1c:a5:ba:15:59:b7:4a:de:2e:9e:b2:ed:
60:16:7e:40:9c:07:6e:3f:29:74:ff:75:b0:a4:39:27:37:3e:
fd:49:96:a0:38:24:3d:9b:88:24:d8:c4:e9:29:93:8c:19:75:
c8:99:84:9d:34:0b:b4:63:73:28:94:4b:4f:61:04:27:b1:8b:
66:c3:92:59:e8:fa:70:05:ea:40:82:e3:85:ca:1a:ed:32:c0:
5e:9e:bc:45:a2:e9:75:64:61:57:7a:65:bc:92:19:5d:b9:38:
84:53:89:e1:fb:1b:58:fb:26:da:56:30:ca:a0:97:a7:f6:7a:
16:2b:00:fa:83:59:69:a2:ef:31:82:1f:1d:b1:a8:90:5b:f9:
46:af:2a:41:e6:f9:fa:43:ae:24:83:8b:8a:ac:27:f8:95:61:
c7:f5:08:2c:ed:61:fe:b2:80:e3:26:f4:41:4a:d3:46:91:94:
cd:c5:0d:b8:2b:3a:c7:06:9b:76:b8:f4:5a:7e:ee:f2:b0:3f:
01:ec:9c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:25 2024 by rpki-client on console-ams.rpki-client.org