Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/k4k2tOFHFSdZELOsUI08Qz6OvCE.roa
File: k4k2tOFHFSdZELOsUI08Qz6OvCE.roa (raw, json)
Hash identifier: ocxfvPPw82BLE7Zh+DuLwOGBRzqoR9J9xRUpPwDj9bI=
Subject key identifier: 93:89:36:B4:E1:47:15:27:59:10:B3:AC:50:8D:3C:43:3E:8E:BC:21
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 0194089B8CB601F7922A4768A6003368D110
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/k4k2tOFHFSdZELOsUI08Qz6OvCE.roa
Signing time: Fri 27 Dec 2024 14:53:19 +0000
ROA not before: Fri 27 Dec 2024 14:53:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 5.182.28.0/22 maxlen: 22
45.67.117.0/24 maxlen: 24
45.150.168.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
89.40.161.0/24 maxlen: 24
91.239.59.0/24 maxlen: 24
91.242.70.0/24 maxlen: 24
91.242.71.0/24 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.73.0/24 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.105.0/24 maxlen: 24
91.242.123.0/24 maxlen: 24
91.242.124.0/24 maxlen: 24
91.242.125.0/24 maxlen: 24
91.242.126.0/24 maxlen: 24
91.242.127.0/24 maxlen: 24
185.40.105.0/24 maxlen: 24
185.180.145.0/24 maxlen: 24
193.31.104.0/22 maxlen: 22
194.50.200.0/24 maxlen: 24
194.50.201.0/24 maxlen: 24
194.180.238.0/24 maxlen: 24
195.138.103.0/24 maxlen: 24
195.138.104.0/22 maxlen: 24
195.138.104.0/24 maxlen: 24
195.138.107.0/24 maxlen: 24
195.138.109.0/24 maxlen: 24
195.138.110.0/24 maxlen: 24
195.138.111.0/24 maxlen: 24
195.138.113.0/24 maxlen: 24
195.138.114.0/24 maxlen: 24
195.138.115.0/24 maxlen: 24
195.138.116.0/24 maxlen: 24
195.138.118.0/24 maxlen: 24
195.138.120.0/24 maxlen: 24
195.138.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:08:9b:8c:b6:01:f7:92:2a:47:68:a6:00:33:68:d1:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Dec 27 14:53:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=938936b4e14715275910b3ac508d3c433e8ebc21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:32:64:a7:96:a4:3e:1f:50:aa:ad:60:c1:8a:
34:1b:ec:67:fa:d2:21:f0:af:2b:29:2d:e0:46:7f:
4b:c6:2b:a4:77:2b:e6:15:a5:67:b6:be:a8:a0:db:
5b:e9:e8:0c:46:b0:60:ed:71:30:02:b8:e0:8d:38:
01:3b:51:88:ce:5c:44:39:c5:ab:52:d5:56:cc:6f:
26:34:41:b5:4d:7c:11:41:5d:97:b9:bd:7a:7c:52:
2d:f2:35:d7:0a:55:d3:d5:9f:de:5e:aa:05:ca:e3:
d8:f4:09:bb:66:26:09:a2:99:dc:15:11:ed:96:83:
e5:c9:d0:ee:b1:74:d8:e0:c1:38:b4:9c:e8:3e:33:
56:8a:9d:bc:1d:ec:46:91:f5:f5:00:67:ce:35:b9:
b2:3c:c5:0e:b2:ee:d3:6f:e1:30:f2:a0:c7:2a:62:
1f:cb:dd:c7:66:3b:9a:4d:27:dd:93:c1:10:3f:12:
94:52:14:89:fd:09:96:31:8e:a9:f0:7c:5d:1b:98:
16:96:52:f4:10:14:32:36:63:14:1d:46:5b:e2:26:
8e:0a:48:a9:4c:01:f1:bc:2f:0c:5c:9a:e6:09:38:
7f:02:ce:fd:b3:c0:1d:52:79:6a:8f:f1:ae:9a:47:
60:0a:6d:16:ca:8d:c3:b7:2b:f5:0b:c8:1a:2f:dd:
40:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:89:36:B4:E1:47:15:27:59:10:B3:AC:50:8D:3C:43:3E:8E:BC:21
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/k4k2tOFHFSdZELOsUI08Qz6OvCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.28.0/22
45.67.117.0/24
45.150.168.0/22
45.151.196.0/22
89.40.161.0/24
91.239.59.0/24
91.242.70.0-91.242.73.255
91.242.75.0/24
91.242.105.0/24
91.242.123.0-91.242.127.255
185.40.105.0/24
185.180.145.0/24
193.31.104.0/22
194.50.200.0/23
194.180.238.0/24
195.138.103.0-195.138.107.255
195.138.109.0-195.138.111.255
195.138.113.0-195.138.116.255
195.138.118.0/24
195.138.120.0/24
195.138.124.0/22
Signature Algorithm: sha256WithRSAEncryption
27:5e:85:bd:a4:96:f1:c5:6a:fd:9c:d2:95:e9:f9:ba:b3:86:
ca:87:2d:d4:85:7c:96:55:15:84:b7:d0:52:a5:93:48:a9:6c:
e5:09:f3:7e:74:9f:00:1a:18:98:f9:07:d5:a2:71:10:f1:76:
71:d6:41:ab:48:f2:3b:7f:83:e7:30:16:9c:2b:8e:74:6b:18:
46:ed:3a:72:97:33:af:69:84:e8:e1:7f:8a:70:b2:5f:7a:f2:
0e:30:28:2a:27:e2:b4:6a:b9:36:85:95:2f:af:8e:b9:18:2b:
2b:b6:10:a6:80:a0:6b:a2:9b:ad:bc:5f:e4:93:0e:23:cb:f5:
58:b8:c7:8d:61:97:50:f1:b8:bb:99:92:5f:01:4d:a9:29:60:
99:db:d2:e7:b6:c6:40:cc:b7:10:67:25:a4:69:7a:e3:e8:cf:
8c:9b:e5:24:7e:c0:91:96:5f:e0:87:f1:13:a3:73:42:1a:ef:
ed:83:66:80:68:36:56:13:ea:55:b5:2c:1c:2f:b4:cd:24:94:
3a:e8:bb:e7:46:46:39:d8:18:e1:ef:67:5e:ae:f2:86:5f:70:
a9:c5:46:39:c2:d9:29:80:fa:06:68:21:34:3a:17:14:4c:f6:
7b:a4:0c:c8:cd:6a:98:a7:86:eb:ca:4f:c6:f8:a5:70:8e:68:
2c:02:bb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:31:24 2025 by rpki-client