Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/7LRGBRpC6Xa96NIbRjXLL3dG2eU.roa
File: 7LRGBRpC6Xa96NIbRjXLL3dG2eU.roa (raw, json)
Hash identifier: Ub2GJ0erh33bZwGNyXclZLHd2yCzIWrtO0lPxoO4fzc=
Subject key identifier: EC:B4:46:05:1A:42:E9:76:BD:E8:D2:1B:46:35:CB:2F:77:46:D9:E5
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018A23D8B73AC10A631C623B2700190D9F18
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/7LRGBRpC6Xa96NIbRjXLL3dG2eU.roa
Signing time: Wed 23 Aug 2023 19:21:59 +0000
ROA not before: Wed 23 Aug 2023 19:21:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28964
IP address blocks: 178.253.212.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
188.255.205.0/24 maxlen: 24
188.255.207.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.2.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
109.121.55.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
188.255.253.0/24 maxlen: 24
212.69.5.0/24 maxlen: 24
178.253.232.0/24 maxlen: 24
178.253.238.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.244.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
178.253.250.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.195.0/24 maxlen: 24
79.175.120.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
178.219.4.0/22 maxlen: 22
178.219.12.0/23 maxlen: 23
178.219.15.0/24 maxlen: 24
77.105.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Aug 2023 07:58:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:23:d8:b7:3a:c1:0a:63:1c:62:3b:27:00:19:0d:9f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Aug 23 19:21:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecb446051a42e976bde8d21b4635cb2f7746d9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:20:5b:d5:a0:7d:ec:13:ec:cc:ae:c9:e9:3c:
eb:9c:6a:5f:12:b7:02:96:d6:c6:52:53:b4:01:ca:
c8:35:12:91:d7:c2:ac:eb:18:6e:18:33:c3:d7:16:
98:4a:aa:53:24:aa:27:39:53:37:cd:c2:3f:be:2c:
c2:b2:00:fc:27:0d:d2:4a:0b:12:c6:d1:e9:5e:57:
ba:4a:63:a1:bf:25:77:cf:95:b8:b9:70:f1:6f:f3:
cd:69:3e:a9:ae:2e:2d:d1:a3:bd:29:cd:44:ed:5e:
39:f9:53:c6:bb:48:96:4d:78:1a:6a:7d:6b:31:b1:
16:e2:7a:b9:b9:56:11:b4:cb:00:5d:41:56:e9:41:
7f:ff:a6:0a:90:a8:66:aa:a4:51:6d:0a:5e:f0:71:
43:4e:c8:f2:d1:43:7c:16:22:fb:a4:43:2f:24:f3:
c3:c7:37:82:31:8b:fa:81:a4:99:45:75:1d:2d:e5:
20:44:e9:76:cd:2a:60:71:05:f5:28:d9:17:6f:08:
67:60:ef:9a:3a:18:9c:e2:f3:32:ea:6e:4d:cb:80:
4f:9a:86:a4:44:5b:9e:65:fb:17:43:f5:f7:a9:cc:
70:4b:97:65:61:a4:fa:e4:6a:b7:ac:0e:05:13:ec:
c0:46:6f:d3:bf:af:bf:ac:d2:88:eb:7f:59:03:a0:
1b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B4:46:05:1A:42:E9:76:BD:E8:D2:1B:46:35:CB:2F:77:46:D9:E5
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/7LRGBRpC6Xa96NIbRjXLL3dG2eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.39.0/24
79.175.120.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
109.121.55.0/24
109.233.188.0/24
178.219.2.0/24
178.219.4.0/22
178.219.12.0/23
178.219.15.0/24
178.253.212.0/24
178.253.216.0-178.253.218.255
178.253.220.0/23
178.253.232.0/24
178.253.238.0/24
178.253.244.0-178.253.246.255
178.253.250.0/24
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.199.255
188.255.205.0/24
188.255.207.0/24
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.2.0-212.69.5.255
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:47:55:fd:0a:b9:5d:1f:09:d7:b7:65:28:e0:0f:42:5f:26:
19:20:3b:ac:2e:a3:fa:c0:ea:7a:b4:a1:ab:5f:dd:00:f5:63:
36:f5:cd:26:5a:aa:88:3c:1f:01:2c:1d:29:94:0e:0d:83:41:
f1:44:d7:8b:8a:a8:77:f8:ad:79:55:1e:ff:3e:57:52:cd:fc:
24:85:41:84:33:f1:76:95:fe:57:f1:92:80:d0:17:e0:7f:61:
23:e2:74:ad:e4:e2:e3:0b:90:d8:c3:12:a3:bc:99:2e:e6:63:
c8:65:bc:7a:8e:da:d9:25:6d:6b:af:19:60:03:7a:30:d2:8f:
c1:d9:00:ae:ac:4a:14:87:9f:bf:b9:88:c8:e8:1f:98:b2:06:
17:bd:f2:f8:61:41:d8:2e:86:2b:dc:2c:40:0e:81:78:b9:56:
33:c7:5e:dd:53:b7:0e:cb:e5:96:c1:dc:05:53:5e:89:1d:d7:
ec:da:60:d2:c9:5d:44:82:a4:64:ad:de:b8:c0:cb:2c:b1:db:
31:0e:9d:4b:75:3a:75:84:f6:19:aa:2a:8b:50:69:63:d3:e6:
1c:29:8f:c3:a3:95:1b:3b:6c:ba:24:a8:c0:af:12:5f:74:58:
71:7d:2a:70:72:18:05:e7:53:83:5e:74:83:b5:be:d8:86:91:
a3:af:36:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:25 2024 by rpki-client on console-fra.rpki-client.org