Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4ekFteJ0SShJnNwHKb77zk5lYug.roa
File: 4ekFteJ0SShJnNwHKb77zk5lYug.roa (raw, json)
Hash identifier: GLmVYYU97oIWjHNgFyPq/lkHxU4nnJoE4NdMWzCVwVQ=
Subject key identifier: E1:E9:05:B5:E2:74:49:28:49:9C:DC:07:29:BE:FB:CE:4E:65:62:E8
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018A2DCCEDDC08AEDB3323DDD9318D90EFCC
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4ekFteJ0SShJnNwHKb77zk5lYug.roa
Signing time: Fri 25 Aug 2023 17:45:19 +0000
ROA not before: Fri 25 Aug 2023 17:45:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 81.161.12.0/22 maxlen: 22
176.107.64.0/20 maxlen: 24
93.120.112.0/21 maxlen: 21
93.120.124.0/22 maxlen: 22
89.46.112.0/23 maxlen: 24
91.235.166.0/24 maxlen: 24
91.235.167.0/24 maxlen: 24
195.80.142.0/23 maxlen: 24
188.213.233.0/24 maxlen: 24
93.120.64.0/21 maxlen: 21
31.133.192.0/24 maxlen: 24
193.221.82.0/23 maxlen: 24
31.133.193.0/24 maxlen: 24
31.133.195.0/24 maxlen: 24
31.133.199.0/24 maxlen: 24
93.120.76.0/22 maxlen: 22
31.133.196.0/23 maxlen: 23
31.133.194.0/24 maxlen: 24
93.120.75.0/24 maxlen: 24
93.120.72.0/23 maxlen: 23
31.133.198.0/24 maxlen: 24
93.120.84.0/24 maxlen: 24
93.120.80.0/22 maxlen: 22
93.120.85.0/24 maxlen: 24
91.234.222.0/23 maxlen: 23
91.234.220.0/23 maxlen: 23
93.120.90.0/24 maxlen: 24
93.120.88.0/23 maxlen: 23
93.120.86.0/23 maxlen: 23
93.120.94.0/23 maxlen: 23
93.120.92.0/23 maxlen: 23
91.234.150.0/23 maxlen: 23
93.120.28.0/23 maxlen: 23
93.120.27.0/24 maxlen: 24
93.120.30.0/24 maxlen: 24
93.120.33.0/24 maxlen: 24
93.120.48.0/20 maxlen: 20
171.25.223.0/24 maxlen: 24
176.112.84.0/22 maxlen: 22
91.246.188.0/22 maxlen: 22
91.246.196.0/22 maxlen: 22
91.246.201.0/24 maxlen: 24
89.45.92.0/23 maxlen: 24
178.159.152.0/21 maxlen: 21
178.159.148.0/22 maxlen: 22
91.233.202.0/23 maxlen: 23
91.240.156.0/22 maxlen: 22
77.232.192.0/23 maxlen: 24
77.232.196.0/22 maxlen: 22
185.104.196.0/22 maxlen: 24
77.232.194.0/23 maxlen: 23
77.232.204.0/22 maxlen: 22
77.232.200.0/22 maxlen: 22
77.232.208.0/21 maxlen: 21
176.124.176.0/22 maxlen: 22
86.104.132.0/23 maxlen: 24
176.124.180.0/22 maxlen: 22
176.118.88.0/22 maxlen: 22
77.232.220.0/22 maxlen: 22
176.118.92.0/22 maxlen: 22
91.239.178.0/24 maxlen: 24
176.98.56.0/22 maxlen: 22
176.98.60.0/22 maxlen: 22
91.233.2.0/23 maxlen: 23
89.44.100.0/23 maxlen: 24
91.225.35.0/24 maxlen: 24
91.231.226.0/24 maxlen: 24
91.225.34.0/24 maxlen: 24
91.231.224.0/23 maxlen: 23
91.231.223.0/24 maxlen: 24
64.43.66.0/23 maxlen: 23
64.43.68.0/22 maxlen: 22
64.43.76.0/24 maxlen: 24
64.43.80.0/21 maxlen: 21
64.43.88.0/22 maxlen: 22
77.36.52.0/23 maxlen: 23
176.110.106.0/24 maxlen: 24
77.36.80.0/21 maxlen: 21
176.110.107.0/24 maxlen: 24
77.36.90.0/23 maxlen: 23
85.204.196.0/23 maxlen: 24
77.36.89.0/24 maxlen: 24
176.110.114.0/23 maxlen: 23
77.36.96.0/20 maxlen: 20
77.36.92.0/22 maxlen: 22
91.245.176.0/21 maxlen: 21
37.97.122.0/23 maxlen: 23
185.9.240.0/22 maxlen: 22
185.9.236.0/22 maxlen: 22
176.111.4.0/22 maxlen: 22
176.111.0.0/22 maxlen: 22
91.239.0.0/22 maxlen: 22
176.97.144.0/22 maxlen: 22
176.97.148.0/22 maxlen: 22
188.191.248.0/22 maxlen: 22
91.232.16.0/23 maxlen: 23
91.232.20.0/24 maxlen: 24
31.131.12.0/22 maxlen: 22
193.36.192.0/21 maxlen: 21
193.36.202.0/24 maxlen: 24
176.96.56.0/21 maxlen: 21
91.237.194.0/23 maxlen: 23
77.36.8.0/21 maxlen: 21
176.96.176.0/22 maxlen: 22
176.96.180.0/22 maxlen: 22
77.36.30.0/24 maxlen: 24
77.36.28.0/23 maxlen: 23
77.36.32.0/22 maxlen: 22
77.36.36.0/23 maxlen: 23
89.42.232.0/23 maxlen: 24
77.36.40.0/21 maxlen: 21
77.36.38.0/23 maxlen: 23
77.36.48.0/22 maxlen: 22
176.116.40.0/21 maxlen: 21
31.135.4.0/23 maxlen: 23
31.135.1.0/24 maxlen: 24
31.135.3.0/24 maxlen: 24
31.135.4.0/24 maxlen: 24
31.135.5.0/24 maxlen: 24
31.135.7.0/24 maxlen: 24
91.229.16.0/23 maxlen: 23
91.229.31.0/24 maxlen: 24
176.121.96.0/21 maxlen: 21
193.0.190.0/24 maxlen: 24
91.229.156.0/23 maxlen: 23
91.229.159.0/24 maxlen: 24
91.229.158.0/24 maxlen: 24
89.34.74.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2d:cc:ed:dc:08:ae:db:33:23:dd:d9:31:8d:90:ef:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Aug 25 17:45:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1e905b5e2744928499cdc0729befbce4e6562e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:88:35:0f:0f:61:e8:bc:1c:b3:93:50:9c:bd:
cd:07:9e:ca:44:29:08:6c:e6:d0:ea:79:1d:6b:6f:
79:47:f7:31:48:7f:61:dd:e1:15:69:85:06:af:c7:
45:1f:d0:37:2e:d7:95:64:46:08:4d:82:8f:bf:32:
d9:41:d2:11:e2:a8:69:40:df:d9:91:54:9b:1b:52:
90:55:ce:63:74:ab:ef:98:13:65:ce:7c:f4:0e:42:
d4:f5:72:a8:a6:e8:55:11:1b:1a:56:36:f6:64:5e:
30:a9:38:d2:0b:b2:cd:20:7c:52:59:3a:cb:7b:bd:
70:42:ff:9c:1e:ce:37:43:52:64:2a:bb:5e:28:63:
f3:85:00:ce:5e:e9:22:5d:37:1a:ea:c8:0d:07:41:
56:64:ba:f6:ac:42:9e:f0:c0:7c:e2:fc:a9:f9:0f:
98:7b:a9:76:00:9d:65:70:6b:0d:3a:1a:17:d5:86:
eb:b5:bb:b5:15:bb:20:cd:c5:eb:af:25:33:8a:45:
4b:1d:24:99:e8:2d:a5:f3:79:58:d7:a2:dc:92:82:
e3:bb:a4:30:99:9c:bc:ba:40:71:d5:f7:69:82:5d:
dd:31:66:5a:87:b0:72:67:f3:62:35:6a:77:91:c8:
e7:bb:d8:35:cc:1e:12:6b:e2:32:9d:cb:17:20:bc:
14:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E9:05:B5:E2:74:49:28:49:9C:DC:07:29:BE:FB:CE:4E:65:62:E8
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4ekFteJ0SShJnNwHKb77zk5lYug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.12.0/22
31.133.192.0/21
31.135.1.0/24
31.135.3.0-31.135.5.255
31.135.7.0/24
37.97.122.0/23
64.43.66.0-64.43.71.255
64.43.76.0/24
64.43.80.0-64.43.91.255
77.36.8.0/21
77.36.28.0-77.36.30.255
77.36.32.0-77.36.53.255
77.36.80.0/21
77.36.89.0-77.36.111.255
77.232.192.0-77.232.215.255
77.232.220.0/22
81.161.12.0/22
85.204.196.0/23
86.104.132.0/23
89.34.74.0/23
89.42.232.0/23
89.44.100.0/23
89.45.92.0/23
89.46.112.0/23
91.225.34.0/23
91.229.16.0/23
91.229.31.0/24
91.229.156.0/22
91.231.223.0-91.231.226.255
91.232.16.0/23
91.232.20.0/24
91.233.2.0/23
91.233.202.0/23
91.234.150.0/23
91.234.220.0/22
91.235.166.0/23
91.237.194.0/23
91.239.0.0/22
91.239.178.0/24
91.240.156.0/22
91.245.176.0/21
91.246.188.0/22
91.246.196.0/22
91.246.201.0/24
93.120.27.0-93.120.30.255
93.120.33.0/24
93.120.48.0-93.120.73.255
93.120.75.0-93.120.90.255
93.120.92.0/22
93.120.112.0/21
93.120.124.0/22
171.25.223.0/24
176.96.56.0/21
176.96.176.0/21
176.97.144.0/21
176.98.56.0/21
176.107.64.0/20
176.110.106.0/23
176.110.114.0/23
176.111.0.0/21
176.112.84.0/22
176.116.40.0/21
176.118.88.0/21
176.121.96.0/21
176.124.176.0/21
178.159.148.0-178.159.159.255
185.9.236.0-185.9.243.255
185.104.196.0/22
188.191.248.0/22
188.213.233.0/24
193.0.190.0/24
193.36.192.0/21
193.36.202.0/24
193.221.82.0/23
195.80.142.0/23
Signature Algorithm: sha256WithRSAEncryption
98:c4:c0:ee:eb:3e:f1:49:db:08:f6:39:b4:c5:4c:d4:54:c2:
7c:fe:8b:5f:ea:a3:4e:b2:34:78:a8:53:f0:de:e0:d2:a3:64:
cb:80:4e:70:54:9d:85:69:10:b1:0e:32:7a:f2:75:19:cb:57:
e9:97:c9:cb:ac:15:bd:90:b8:ff:ee:f1:f9:74:c6:e0:f9:c2:
5e:ec:cb:96:55:7d:3f:1b:93:5b:71:fb:56:69:94:4c:1c:42:
b3:5b:80:bc:8f:0a:14:8c:9c:c0:12:6d:17:00:b0:05:90:34:
ae:e8:fa:00:10:1e:8b:61:01:43:59:3c:db:58:7f:05:46:39:
cc:26:ae:e5:c8:e6:92:ff:64:a8:5e:8f:5c:18:d8:36:81:2b:
5d:b1:b5:6c:d9:6c:e2:2c:3a:c3:9b:6d:2c:9b:30:7f:67:35:
de:cd:47:1b:4b:da:9d:67:60:cc:d4:6e:a0:51:13:28:e0:32:
95:7d:31:0c:43:a7:1e:55:18:c0:45:e3:a3:5a:dc:f6:21:cc:
ae:1d:02:a4:33:d3:ae:5c:7a:3e:84:5c:be:34:2d:26:30:f4:
7b:65:bf:8e:fe:23:54:41:d1:36:5b:e7:4c:60:6a:46:6e:40:
74:94:be:5f:37:cc:8c:50:0e:51:33:f8:1c:c0:dc:df:ad:56:
b4:0e:9f:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 31 17:09:21 2023 by rpki-client on console-fra.rpki-client.org