Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/6aPOzGbpV3vd1ijgtjQH_tL5iNU.roa
File: 6aPOzGbpV3vd1ijgtjQH_tL5iNU.roa (raw, json)
Hash identifier: MOT/nOXp/cb1ZlOPZacLwTZqdcvGuu1zXmGdS1lSQls=
Subject key identifier: E9:A3:CE:CC:66:E9:57:7B:DD:D6:28:E0:B6:34:07:FE:D2:F9:88:D5
Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Certificate serial: 018F38AE961C2D7D783FA5225CD09B9ADC3A
Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/6aPOzGbpV3vd1ijgtjQH_tL5iNU.roa
Signing time: Thu 02 May 2024 09:41:56 +0000
ROA not before: Thu 02 May 2024 09:41:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8359
IP address blocks: 5.144.96.0/19 maxlen: 19
31.40.112.0/20 maxlen: 20
37.208.120.0/21 maxlen: 21
62.118.0.0/16 maxlen: 24
62.168.224.0/19 maxlen: 19
80.83.237.0/24 maxlen: 24
81.91.32.0/19 maxlen: 19
81.91.41.0/24 maxlen: 24
81.195.0.0/16 maxlen: 24
82.96.192.0/18 maxlen: 18
83.237.0.0/16 maxlen: 16
85.140.0.0/15 maxlen: 24
85.235.32.0/19 maxlen: 19
89.175.0.0/16 maxlen: 16
89.175.248.0/21 maxlen: 21
91.76.0.0/14 maxlen: 14
92.43.184.0/21 maxlen: 21
93.90.224.0/20 maxlen: 20
93.90.224.0/22 maxlen: 22
94.140.128.0/19 maxlen: 19
95.169.128.0/19 maxlen: 19
109.198.224.0/19 maxlen: 19
141.105.24.0/21 maxlen: 21
176.222.17.0/24 maxlen: 24
178.141.0.0/16 maxlen: 16
178.155.0.0/17 maxlen: 17
178.159.16.0/20 maxlen: 20
185.168.236.0/22 maxlen: 22
193.104.128.0/24 maxlen: 24
195.34.0.0/19 maxlen: 19
195.34.15.0/24 maxlen: 24
195.34.32.0/19 maxlen: 19
195.34.36.0/24 maxlen: 24
195.34.38.0/24 maxlen: 24
195.34.42.0/24 maxlen: 24
212.188.0.0/17 maxlen: 17
213.87.0.0/16 maxlen: 16
213.87.64.0/22 maxlen: 22
213.87.70.0/23 maxlen: 23
213.87.76.0/23 maxlen: 23
213.87.80.0/20 maxlen: 20
213.87.98.0/23 maxlen: 23
213.87.100.0/24 maxlen: 24
213.87.104.0/24 maxlen: 24
213.87.105.0/24 maxlen: 24
213.87.106.0/23 maxlen: 23
213.87.128.0/19 maxlen: 19
213.87.160.0/22 maxlen: 22
213.87.200.0/22 maxlen: 22
213.87.204.0/22 maxlen: 22
213.87.208.0/23 maxlen: 23
213.87.210.0/23 maxlen: 23
213.87.240.0/22 maxlen: 22
213.87.244.0/23 maxlen: 23
213.87.246.0/24 maxlen: 24
213.87.248.0/22 maxlen: 22
213.147.32.0/19 maxlen: 19
213.176.228.0/22 maxlen: 22
217.74.244.0/22 maxlen: 22
217.74.248.0/21 maxlen: 21
2a00:1fa0::/29 maxlen: 29
2a00:1fa0::/33 maxlen: 33
2a00:1fa0:8000::/33 maxlen: 33
2a00:1fa2::/33 maxlen: 33
2a00:1fa3::/33 maxlen: 33
2a00:1fa3:8000::/40 maxlen: 40
2a02:28::/29 maxlen: 29
2a02:28::/32 maxlen: 32
2a02:28:1::/48 maxlen: 48
2a02:28:a::/48 maxlen: 48
2a02:29::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 06 May 2024 07:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:38:ae:96:1c:2d:7d:78:3f:a5:22:5c:d0:9b:9a:dc:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Validity
Not Before: May 2 09:41:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9a3cecc66e9577bddd628e0b63407fed2f988d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:78:94:6f:65:b3:85:2f:41:71:61:43:c7:8f:
a8:db:2e:d6:6e:23:67:1d:cc:79:7b:fb:d2:fb:6e:
cc:11:31:3c:c4:3b:97:55:1b:fb:b5:14:3b:de:ab:
ab:d6:ec:37:08:db:12:a1:3a:8c:cd:9e:10:dc:bd:
d6:0b:5b:4d:06:60:55:db:50:9c:26:cf:07:cc:8c:
08:1a:1a:60:c6:25:e8:b6:50:60:a0:87:ab:a0:f4:
bb:57:ac:fa:82:d1:7d:46:1a:68:ee:36:2b:04:67:
ad:5e:53:b6:dc:ca:32:67:70:c4:b2:b5:e3:0d:1a:
f8:26:ff:8f:26:29:ae:bc:48:96:4e:b7:b3:e4:c8:
47:dc:f2:47:15:70:e3:96:4e:0f:a0:f8:60:c5:68:
ad:0f:a2:3d:69:59:56:44:20:20:b9:e7:d1:f9:27:
74:50:11:57:63:9c:12:85:6a:95:02:f9:fb:ee:46:
ba:3a:63:2e:3e:f6:9e:1a:8a:de:2c:a6:36:cd:92:
19:37:b4:99:65:f3:c8:e6:a4:87:1d:67:7a:85:c8:
fd:4f:63:f2:85:70:44:d4:a3:dd:81:97:ca:c5:f0:
d0:e8:0b:ec:c7:14:4f:02:f4:4a:e2:f7:a3:91:cc:
6d:20:70:7b:bd:89:d7:88:2f:78:81:01:98:c6:55:
b5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A3:CE:CC:66:E9:57:7B:DD:D6:28:E0:B6:34:07:FE:D2:F9:88:D5
X509v3 Authority Key Identifier:
keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/6aPOzGbpV3vd1ijgtjQH_tL5iNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.96.0/19
31.40.112.0/20
37.208.120.0/21
62.118.0.0/16
62.168.224.0/19
80.83.237.0/24
81.91.32.0/19
81.195.0.0/16
82.96.192.0/18
83.237.0.0/16
85.140.0.0/15
85.235.32.0/19
89.175.0.0/16
91.76.0.0/14
92.43.184.0/21
93.90.224.0/20
94.140.128.0/19
95.169.128.0/19
109.198.224.0/19
141.105.24.0/21
176.222.17.0/24
178.141.0.0/16
178.155.0.0/17
178.159.16.0/20
185.168.236.0/22
193.104.128.0/24
195.34.0.0/18
212.188.0.0/17
213.87.0.0/16
213.147.32.0/19
213.176.228.0/22
217.74.244.0-217.74.255.255
IPv6:
2a00:1fa0::/29
2a02:28::/29
Signature Algorithm: sha256WithRSAEncryption
62:5f:4b:c7:dc:a1:c1:a9:fd:7f:9d:ca:46:0a:56:48:3f:a4:
bf:47:7b:08:66:4b:1b:6c:44:4f:69:7a:0f:47:05:14:46:04:
00:e0:da:ae:c2:49:45:e1:eb:bf:c1:76:e0:73:97:58:5f:1b:
c4:3f:43:67:ac:c3:3c:ec:33:80:70:4b:cf:85:86:78:a1:5d:
a7:61:b2:e5:75:2f:3a:a9:02:ed:32:c4:fc:13:5f:08:32:af:
35:96:e3:2d:d1:e6:bf:43:03:70:0d:04:cf:67:a2:11:a6:0a:
b2:3d:73:79:eb:9a:52:69:81:04:ff:94:b1:d5:5d:c4:f0:9c:
9e:e4:e6:18:a7:8d:7b:95:d7:ce:95:62:47:05:51:63:04:cf:
83:c6:33:3a:fa:b5:94:06:cd:7c:e0:f0:c8:e7:0f:c1:09:58:
02:92:78:0f:49:08:a6:d5:bd:05:12:5e:da:e1:30:3a:51:5c:
35:42:02:d9:e5:a5:52:74:72:0c:e4:f2:3e:3a:a5:88:a9:66:
bb:51:2d:6a:ad:4b:97:c8:2c:27:50:ff:c4:4f:77:c7:b6:b4:
ed:3a:66:42:0b:61:82:35:3c:2a:e9:7f:c0:eb:dd:52:6c:63:
8b:c4:b2:5b:64:46:0f:21:89:7c:a7:a7:83:23:fd:5c:62:2f:
9a:08:8c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 11:49:48 2024 by rpki-client on console-ams.rpki-client.org