Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/AchhgqsKCg7tZ3hHbybYhR5AXUg.roa
File: AchhgqsKCg7tZ3hHbybYhR5AXUg.roa (raw, json)
Hash identifier: Ri32zXe5c/D5fwT19yUx1uFShZhDwAG3oQxmcVtWZrY=
Subject key identifier: 01:C8:61:82:AB:0A:0A:0E:ED:67:78:47:6F:26:D8:85:1E:40:5D:48
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7D4D60AF69812C10BFBF51AB2EFD4
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/AchhgqsKCg7tZ3hHbybYhR5AXUg.roa
Signing time: Mon 02 Jan 2023 09:37:28 +0000
ROA not before: Mon 02 Jan 2023 09:37:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52116
IP address blocks: 178.253.207.0/24 maxlen: 24
188.255.130.0/24 maxlen: 24
178.253.210.0/24 maxlen: 24
178.253.213.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.214.0/24 maxlen: 24
178.253.222.0/24 maxlen: 24
93.186.64.0/24 maxlen: 24
93.186.67.0/24 maxlen: 24
93.186.71.0/24 maxlen: 24
93.186.72.0/24 maxlen: 24
188.255.208.0/24 maxlen: 24
188.255.213.0/24 maxlen: 24
188.255.219.0/24 maxlen: 24
188.255.238.0/24 maxlen: 24
188.255.246.0/24 maxlen: 24
188.255.244.0/23 maxlen: 23
212.69.6.0/24 maxlen: 24
212.69.7.0/24 maxlen: 24
188.255.248.0/24 maxlen: 24
188.255.252.0/24 maxlen: 24
188.255.247.0/24 maxlen: 24
188.255.250.0/23 maxlen: 23
178.253.236.0/24 maxlen: 24
178.253.240.0/24 maxlen: 24
81.18.49.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
81.18.55.0/24 maxlen: 24
81.18.52.0/23 maxlen: 23
81.18.61.0/24 maxlen: 24
188.255.190.0/24 maxlen: 24
79.175.103.0/24 maxlen: 24
79.175.116.0/24 maxlen: 24
79.175.118.0/24 maxlen: 24
79.175.115.0/24 maxlen: 24
188.255.254.0/24 maxlen: 24
212.69.12.0/24 maxlen: 24
188.255.255.0/24 maxlen: 24
178.219.11.0/24 maxlen: 24
178.219.8.0/23 maxlen: 23
185.47.88.0/24 maxlen: 24
185.47.89.0/24 maxlen: 24
185.47.90.0/24 maxlen: 24
77.105.31.0/24 maxlen: 24
80.74.173.0/24 maxlen: 24
77.105.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 19:58:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:d4:d6:0a:f6:98:12:c1:0b:fb:f5:1a:b2:ef:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01c86182ab0a0a0eed6778476f26d8851e405d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6b:d6:b3:6d:f4:77:72:ed:18:16:7e:dd:55:
40:92:39:fc:2a:8a:5c:61:b7:c3:c8:be:a6:40:77:
12:3b:01:ed:2a:c0:2d:14:30:3a:95:b4:cf:7b:81:
c1:d5:48:a1:0c:54:64:52:12:fa:22:71:74:93:e2:
fd:3c:f0:45:8a:23:79:e8:6c:5e:9b:99:8f:2a:ac:
fe:02:d1:c2:d5:3f:b8:4d:19:f3:55:6f:a5:64:66:
3b:12:bc:68:df:68:b2:ad:21:f6:b7:aa:7b:91:fa:
16:66:5a:08:c5:9e:0c:01:63:84:5a:10:f5:fd:a4:
8a:a4:08:db:0c:e5:7a:9d:a1:6d:ea:19:d4:66:ba:
95:da:26:4c:f3:b9:26:59:e2:47:af:b4:c2:85:ee:
30:42:9c:61:d0:3d:ad:ac:4d:5b:c6:2d:69:35:aa:
02:d8:96:a5:43:ad:a3:00:cc:f1:aa:63:4b:38:14:
83:a8:1a:1d:25:89:a8:c6:76:9f:ff:bf:bd:3d:99:
ff:67:01:b5:08:d1:8d:d0:9d:41:fa:f4:23:cd:59:
5c:6b:e5:52:e4:24:84:09:69:d5:09:55:f5:ce:e1:
e7:99:2c:96:db:26:10:50:c2:45:c2:05:8c:a9:cc:
b0:ef:96:4b:92:a6:30:52:bb:3f:3a:61:58:29:e5:
91:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C8:61:82:AB:0A:0A:0E:ED:67:78:47:6F:26:D8:85:1E:40:5D:48
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/AchhgqsKCg7tZ3hHbybYhR5AXUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.11.0/24
77.105.31.0/24
79.175.103.0/24
79.175.115.0-79.175.116.255
79.175.118.0/24
80.74.173.0/24
81.18.49.0-81.18.50.255
81.18.52.0/23
81.18.55.0/24
81.18.61.0/24
93.186.64.0/24
93.186.67.0/24
93.186.71.0-93.186.72.255
178.219.8.0/23
178.219.11.0/24
178.253.207.0/24
178.253.210.0/24
178.253.213.0-178.253.214.255
178.253.219.0/24
178.253.222.0/24
178.253.236.0/24
178.253.240.0/24
185.47.88.0-185.47.90.255
188.255.130.0/24
188.255.190.0/24
188.255.208.0/24
188.255.213.0/24
188.255.219.0/24
188.255.238.0/24
188.255.244.0-188.255.248.255
188.255.250.0-188.255.252.255
188.255.254.0/23
212.69.6.0/23
212.69.12.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:53:f4:17:0f:fb:40:35:18:e8:30:e7:5f:0e:ea:4a:9e:4a:
53:9f:9b:20:9c:fa:7f:dc:f0:ca:4f:8f:75:02:3a:6b:e3:57:
ee:89:f8:a7:47:62:32:cf:8c:fc:74:9f:aa:ac:99:c7:d7:d7:
36:71:79:50:d7:6d:96:15:10:7a:4b:2c:bc:b5:bf:65:ec:5f:
13:ad:c2:67:2e:93:2d:87:47:c3:61:02:18:5d:e6:06:44:6a:
50:f5:07:8d:15:30:51:1e:9c:6e:04:39:e4:0d:6e:2d:1e:64:
67:22:58:de:84:c0:9d:a2:2a:60:a2:30:c5:e9:78:15:8e:62:
a7:61:5a:e1:dc:1a:88:5c:8a:e9:57:80:9a:1e:3d:0f:19:29:
64:ab:6d:61:2c:98:96:e3:0c:fe:dd:c0:7d:50:20:2c:8e:3e:
71:de:34:7c:62:26:78:86:15:e0:4d:d6:fd:13:e9:72:58:68:
47:69:ef:a5:e8:8d:68:27:c2:49:dd:c1:4a:96:26:5e:1f:00:
d0:07:1c:e9:23:e6:a0:b1:51:2b:92:56:b6:81:ad:e4:5f:e9:
df:20:29:19:28:d1:62:d0:bf:c7:e4:f5:8c:0f:ea:df:52:c0:
73:a3:1b:5f:21:55:70:07:12:30:ed:34:8c:a6:55:e4:94:7d:
b1:b2:06:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:03 2024 by rpki-client on console-ams.rpki-client.org