Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/sy2HXO7Die3h2iYQiARQS1z0Vfw.roa
File: sy2HXO7Die3h2iYQiARQS1z0Vfw.roa (raw, json)
Hash identifier: TcgdWWhxWUAEXtzF5v2ZgjHrEOKN+eCFlTvCQf4no2Q=
Subject key identifier: B3:2D:87:5C:EE:C3:89:ED:E1:DA:26:10:88:04:50:4B:5C:F4:55:FC
Certificate issuer: /CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Certificate serial: 0185710C0F1CB9C10EE049690DEEE48FA582
Authority key identifier: BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/sy2HXO7Die3h2iYQiARQS1z0Vfw.roa
Signing time: Mon 02 Jan 2023 05:54:53 +0000
ROA not before: Mon 02 Jan 2023 05:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204170
IP address blocks: 178.20.17.0/24 maxlen: 24
178.20.16.0/24 maxlen: 24
178.20.16.0/21 maxlen: 21
178.20.18.0/24 maxlen: 24
178.20.19.0/24 maxlen: 24
178.20.22.0/24 maxlen: 24
178.20.23.0/24 maxlen: 24
178.20.20.0/24 maxlen: 24
178.20.21.0/24 maxlen: 24
84.242.37.0/24 maxlen: 24
84.242.35.0/24 maxlen: 24
84.242.36.0/24 maxlen: 24
84.242.33.0/24 maxlen: 24
84.242.32.0/20 maxlen: 20
84.242.34.0/24 maxlen: 24
84.242.32.0/24 maxlen: 24
84.242.38.0/24 maxlen: 24
84.242.44.0/24 maxlen: 24
84.242.42.0/24 maxlen: 24
84.242.43.0/24 maxlen: 24
84.242.40.0/24 maxlen: 24
84.242.41.0/24 maxlen: 24
84.242.39.0/24 maxlen: 24
84.242.47.0/24 maxlen: 24
84.242.45.0/24 maxlen: 24
84.242.46.0/24 maxlen: 24
206.167.33.0/24 maxlen: 24
141.105.172.0/24 maxlen: 24
141.105.171.0/24 maxlen: 24
185.112.104.0/24 maxlen: 24
141.105.169.0/24 maxlen: 24
185.112.104.0/22 maxlen: 22
141.105.170.0/24 maxlen: 24
141.105.168.0/24 maxlen: 24
141.105.168.0/21 maxlen: 21
185.112.105.0/24 maxlen: 24
185.112.107.0/24 maxlen: 24
141.105.174.0/24 maxlen: 24
141.105.175.0/24 maxlen: 24
141.105.173.0/24 maxlen: 24
185.112.106.0/24 maxlen: 24
78.111.40.0/24 maxlen: 24
78.111.39.0/24 maxlen: 24
78.111.43.0/24 maxlen: 24
78.111.44.0/24 maxlen: 24
78.111.41.0/24 maxlen: 24
78.111.42.0/24 maxlen: 24
78.111.47.0/24 maxlen: 24
78.111.45.0/24 maxlen: 24
78.111.46.0/24 maxlen: 24
96.9.131.0/24 maxlen: 24
96.9.132.0/24 maxlen: 24
96.9.129.0/24 maxlen: 24
96.9.130.0/24 maxlen: 24
96.9.128.0/19 maxlen: 19
96.9.128.0/24 maxlen: 24
96.9.136.0/24 maxlen: 24
96.9.137.0/24 maxlen: 24
96.9.134.0/24 maxlen: 24
96.9.135.0/24 maxlen: 24
96.9.133.0/24 maxlen: 24
96.9.138.0/24 maxlen: 24
96.9.139.0/24 maxlen: 24
96.9.143.0/24 maxlen: 24
96.9.144.0/24 maxlen: 24
96.9.141.0/24 maxlen: 24
96.9.142.0/24 maxlen: 24
96.9.140.0/24 maxlen: 24
96.9.145.0/24 maxlen: 24
96.9.150.0/24 maxlen: 24
96.9.151.0/24 maxlen: 24
96.9.148.0/24 maxlen: 24
96.9.149.0/24 maxlen: 24
96.9.147.0/24 maxlen: 24
96.9.146.0/24 maxlen: 24
96.9.152.0/24 maxlen: 24
96.9.157.0/24 maxlen: 24
96.9.158.0/24 maxlen: 24
96.9.155.0/24 maxlen: 24
96.9.156.0/24 maxlen: 24
96.9.154.0/24 maxlen: 24
96.9.153.0/24 maxlen: 24
96.9.159.0/24 maxlen: 24
185.29.141.0/24 maxlen: 24
185.29.140.0/22 maxlen: 22
185.29.142.0/24 maxlen: 24
185.29.140.0/24 maxlen: 24
185.29.143.0/24 maxlen: 24
78.111.32.0/24 maxlen: 24
78.111.33.0/24 maxlen: 24
78.111.34.0/24 maxlen: 24
78.111.32.0/20 maxlen: 20
78.111.38.0/24 maxlen: 24
78.111.36.0/24 maxlen: 24
78.111.37.0/24 maxlen: 24
78.111.35.0/24 maxlen: 24
199.48.224.0/24 maxlen: 24
94.176.17.0/24 maxlen: 24
94.176.16.0/20 maxlen: 20
94.176.16.0/24 maxlen: 24
94.176.20.0/24 maxlen: 24
94.176.21.0/24 maxlen: 24
94.176.18.0/24 maxlen: 24
94.176.19.0/24 maxlen: 24
94.176.24.0/24 maxlen: 24
94.176.22.0/24 maxlen: 24
94.176.23.0/24 maxlen: 24
94.176.27.0/24 maxlen: 24
94.176.28.0/24 maxlen: 24
94.176.25.0/24 maxlen: 24
94.176.26.0/24 maxlen: 24
94.176.31.0/24 maxlen: 24
94.176.29.0/24 maxlen: 24
94.176.30.0/24 maxlen: 24
5.102.179.0/24 maxlen: 24
5.102.176.0/21 maxlen: 21
5.102.178.0/24 maxlen: 24
5.102.176.0/24 maxlen: 24
5.102.177.0/24 maxlen: 24
5.102.181.0/24 maxlen: 24
5.102.182.0/24 maxlen: 24
5.102.180.0/24 maxlen: 24
5.102.183.0/24 maxlen: 24
2a0a:c740:100::/48 maxlen: 48
2a0a:c740:8::/48 maxlen: 48
2a0a:c740:5::/48 maxlen: 48
2a0a:c740:2::/48 maxlen: 48
2a0a:c740:7::/48 maxlen: 48
2a0a:c740:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:0f:1c:b9:c1:0e:e0:49:69:0d:ee:e4:8f:a5:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Validity
Not Before: Jan 2 05:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b32d875ceec389ede1da26108804504b5cf455fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d3:58:e5:24:a3:7e:b9:32:5f:b6:d9:ac:32:
d6:21:3d:ce:d6:b9:9a:54:24:d0:4e:af:b1:68:8a:
82:bf:9e:ec:72:34:f0:21:7d:35:46:eb:fe:49:00:
51:48:55:9b:51:ac:e5:86:38:0b:15:19:72:8e:c5:
cd:30:40:96:18:99:4e:81:f8:a4:92:f3:f9:7a:c4:
53:24:fc:14:3c:9f:34:67:6a:62:3f:89:db:27:f1:
d5:3d:6c:34:65:24:fb:0c:17:47:56:44:0c:56:96:
03:96:47:1b:53:64:67:7c:3b:6a:09:45:cf:80:f7:
d5:09:b8:c7:bc:1e:e5:00:e3:75:8a:94:2f:0d:a5:
15:10:da:7e:35:d0:2b:74:35:5a:37:77:0d:67:32:
3f:b4:9d:8c:00:10:b0:f4:08:65:f6:36:67:e8:53:
04:f4:c5:f3:37:64:ac:2c:b8:2c:f2:79:9f:52:38:
13:f5:a3:ad:a6:68:69:54:95:c5:45:ab:be:f3:4b:
0a:14:d1:8a:c2:8a:bc:32:ca:92:02:e7:1d:0f:01:
4c:bd:d4:17:9c:4a:5d:7d:7c:0f:7f:5f:c7:af:45:
96:62:ef:05:22:28:2b:0b:b1:63:e1:55:9a:b5:78:
11:9a:2d:73:a1:5e:df:5d:54:c0:a8:82:74:57:4b:
31:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2D:87:5C:EE:C3:89:ED:E1:DA:26:10:88:04:50:4B:5C:F4:55:FC
X509v3 Authority Key Identifier:
keyid:BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/sy2HXO7Die3h2iYQiARQS1z0Vfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/vlULjv-QzM7p-NMTS2Q4mWt9J80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.176.0/21
78.111.32.0/20
84.242.32.0/20
94.176.16.0/20
96.9.128.0/19
141.105.168.0/21
178.20.16.0/21
185.29.140.0/22
185.112.104.0/22
199.48.224.0/24
206.167.33.0/24
IPv6:
2a0a:c740:2::/48
2a0a:c740:4::/47
2a0a:c740:7::-2a0a:c740:8:ffff:ffff:ffff:ffff:ffff
2a0a:c740:100::/48
Signature Algorithm: sha256WithRSAEncryption
45:a1:16:04:f8:a2:db:f3:65:1f:e2:72:b3:b7:03:17:87:38:
8f:b7:0c:4f:4d:b0:c7:3b:bb:21:5e:dc:71:be:aa:e2:4c:28:
e4:db:56:17:05:67:4d:33:9c:a1:25:ce:bd:31:05:b7:c9:e2:
e7:77:bf:3f:50:d7:46:f7:aa:a4:0a:6f:49:f0:88:b9:f0:65:
8c:34:0b:7a:66:59:13:a7:f9:cc:93:0b:b5:71:89:de:f8:6f:
28:e0:05:68:7e:8e:a1:75:98:4f:2e:d8:fe:72:a9:38:fd:e9:
a5:90:52:cd:0b:ce:c8:87:d9:87:b5:33:24:31:e6:77:ae:86:
85:db:06:9f:ac:ba:7c:31:58:55:6d:d2:3a:c3:76:08:56:c2:
be:84:6d:d5:55:b9:65:89:e4:13:e4:5c:f4:bb:15:dd:57:f0:
71:a7:86:14:9b:8b:dc:fc:39:76:5f:d4:bf:f0:11:e6:fd:d4:
7c:a7:4e:53:8d:d8:5f:a4:1c:da:bc:71:da:25:7d:0b:03:66:
6e:db:5b:1b:3f:8d:31:cc:61:b0:ba:0c:a8:4b:be:c0:86:5b:
43:24:4c:a8:be:b9:09:16:6a:be:c6:c2:4d:2b:bf:c0:c5:10:
67:d9:ce:fe:50:1e:0b:ff:0d:8a:8d:6c:c9:eb:18:05:a0:2e:
57:18:ff:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:40 2024 by rpki-client on console-fra.rpki-client.org