Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/CPpjD90bZjw5KrQDyj08mfdFLcc.roa
File: CPpjD90bZjw5KrQDyj08mfdFLcc.roa (raw, json)
Hash identifier: igJ5ljuxn58lvMO7WJ0NF4nzljhD7y8Vb/oS5z9o3gQ=
Subject key identifier: 08:FA:63:0F:DD:1B:66:3C:39:2A:B4:03:CA:3D:3C:99:F7:45:2D:C7
Certificate issuer: /CN=22c7cda75f4e15e486dee5a6501cbe2018bc0e0f
Certificate serial: 018BECD23775C90AD310EED9A3025A50BFDC
Authority key identifier: 22:C7:CD:A7:5F:4E:15:E4:86:DE:E5:A6:50:1C:BE:20:18:BC:0E:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/CPpjD90bZjw5KrQDyj08mfdFLcc.roa
Signing time: Mon 20 Nov 2023 13:01:21 +0000
ROA not before: Mon 20 Nov 2023 13:01:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16030
IP address blocks: 185.184.151.0/24 maxlen: 24
185.184.150.0/24 maxlen: 24
185.184.149.0/24 maxlen: 24
185.184.148.0/22 maxlen: 24
77.75.176.0/24 maxlen: 24
77.75.179.0/24 maxlen: 24
77.75.178.0/24 maxlen: 24
77.75.177.0/24 maxlen: 24
77.75.183.0/24 maxlen: 24
77.75.182.0/24 maxlen: 24
77.75.181.0/24 maxlen: 24
212.121.229.0/24 maxlen: 24
213.148.218.0/24 maxlen: 24
212.121.232.0/24 maxlen: 24
213.148.219.0/24 maxlen: 24
213.148.217.0/24 maxlen: 24
212.121.231.0/24 maxlen: 24
213.148.216.0/24 maxlen: 24
213.148.214.0/24 maxlen: 24
213.148.215.0/24 maxlen: 24
212.121.230.0/24 maxlen: 24
212.121.233.0/24 maxlen: 24
212.121.228.0/24 maxlen: 24
212.121.227.0/24 maxlen: 24
212.121.235.0/24 maxlen: 24
212.121.239.0/24 maxlen: 24
212.121.238.0/24 maxlen: 24
213.148.223.0/24 maxlen: 24
212.121.237.0/24 maxlen: 24
212.121.240.0/24 maxlen: 24
213.148.222.0/24 maxlen: 24
212.121.236.0/24 maxlen: 24
213.148.221.0/24 maxlen: 24
213.148.220.0/24 maxlen: 24
212.121.234.0/24 maxlen: 24
212.121.246.0/24 maxlen: 24
212.121.245.0/24 maxlen: 24
212.121.244.0/24 maxlen: 24
212.121.243.0/24 maxlen: 24
212.121.242.0/24 maxlen: 24
212.121.241.0/24 maxlen: 24
212.121.250.0/24 maxlen: 24
212.121.249.0/24 maxlen: 24
212.121.248.0/24 maxlen: 24
212.121.247.0/24 maxlen: 24
212.121.253.0/24 maxlen: 24
212.121.252.0/24 maxlen: 24
212.121.251.0/24 maxlen: 24
212.121.255.0/24 maxlen: 24
212.121.254.0/24 maxlen: 24
213.148.192.0/24 maxlen: 24
213.148.198.0/24 maxlen: 24
213.148.197.0/24 maxlen: 24
213.148.196.0/24 maxlen: 24
213.148.199.0/24 maxlen: 24
213.148.195.0/24 maxlen: 24
213.148.194.0/24 maxlen: 24
213.148.193.0/24 maxlen: 24
213.148.205.0/24 maxlen: 24
213.148.204.0/24 maxlen: 24
213.148.203.0/24 maxlen: 24
213.148.202.0/24 maxlen: 24
213.148.206.0/24 maxlen: 24
213.148.201.0/24 maxlen: 24
213.148.200.0/24 maxlen: 24
213.148.208.0/24 maxlen: 24
213.148.207.0/24 maxlen: 24
213.148.212.0/24 maxlen: 24
213.148.211.0/24 maxlen: 24
212.121.225.0/24 maxlen: 24
213.148.210.0/24 maxlen: 24
213.148.213.0/24 maxlen: 24
212.121.224.0/24 maxlen: 24
213.148.209.0/24 maxlen: 24
212.121.226.0/24 maxlen: 24
2001:4d10::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:d2:37:75:c9:0a:d3:10:ee:d9:a3:02:5a:50:bf:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c7cda75f4e15e486dee5a6501cbe2018bc0e0f
Validity
Not Before: Nov 20 13:01:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08fa630fdd1b663c392ab403ca3d3c99f7452dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:66:ac:db:9d:d2:e2:b4:09:67:dc:6c:4f:18:
cb:21:ed:4b:06:e7:4a:8f:2c:22:e1:e3:23:cd:80:
0b:dd:69:5e:af:f1:98:f6:72:78:bf:86:73:76:b2:
2d:55:62:94:9c:9b:50:b5:b1:de:f5:b6:39:4b:95:
a9:62:7e:ef:52:d3:a7:59:5f:e4:d7:51:9b:54:f5:
cf:f4:21:4d:e4:43:60:13:ac:52:30:a2:0e:6d:a5:
23:93:25:da:6b:10:60:76:09:bc:53:74:4b:95:f1:
40:08:12:db:d6:37:1b:38:bd:30:04:e3:b0:80:c5:
38:1f:76:f0:e1:65:d9:bd:dc:70:92:36:6d:b8:5a:
b5:64:42:7f:68:c3:b9:83:ed:99:e5:6d:3a:49:db:
f7:0f:50:09:9d:0b:d1:ca:92:8c:8d:d0:eb:44:db:
2d:8f:fd:ad:06:0c:2a:68:7c:4e:f0:a4:e1:6e:5a:
08:be:d1:07:9c:89:94:91:b2:fd:d2:de:9a:52:0f:
07:01:6b:d1:63:c7:fc:2f:99:cb:5e:74:41:99:2d:
0e:a1:db:fd:49:2a:59:9e:5a:a5:b1:8a:8c:c6:c9:
5c:c6:be:18:cf:4e:12:c6:9e:f0:a8:ed:e0:7b:2e:
b9:0d:33:28:22:77:c4:39:7a:57:80:93:ec:3a:3a:
6d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:FA:63:0F:DD:1B:66:3C:39:2A:B4:03:CA:3D:3C:99:F7:45:2D:C7
X509v3 Authority Key Identifier:
keyid:22:C7:CD:A7:5F:4E:15:E4:86:DE:E5:A6:50:1C:BE:20:18:BC:0E:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/CPpjD90bZjw5KrQDyj08mfdFLcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/IsfNp19OFeSG3uWmUBy-IBi8Dg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.176.0/22
77.75.181.0-77.75.183.255
185.184.148.0/22
212.121.224.0/19
213.148.192.0/19
IPv6:
2001:4d10::/32
Signature Algorithm: sha256WithRSAEncryption
04:54:8c:84:14:b4:96:fe:43:50:c1:53:8f:64:40:a3:7b:80:
7d:7a:92:82:48:0b:88:d2:49:ea:ee:6e:b4:00:77:2c:ca:5b:
7f:f8:b4:1e:b3:a5:d1:36:8b:5e:dc:09:25:55:bd:be:c0:fd:
10:ea:cd:52:e6:26:f9:a2:e6:3a:48:ff:22:ec:82:44:e7:aa:
53:1a:83:68:41:a2:f1:85:2b:fa:b5:c6:ee:9e:b7:1c:a7:b4:
6e:65:bc:bf:23:a7:55:69:5b:07:31:61:bc:fe:65:a6:79:88:
b2:ea:02:25:0d:5b:7d:13:85:ae:1d:62:4e:be:76:77:dc:19:
b1:91:4e:36:a6:d8:9f:29:af:0a:09:fc:64:13:27:aa:95:c4:
ec:5d:32:97:f3:c5:69:8d:22:45:60:c8:81:51:1c:76:26:b9:
cd:e3:c7:c4:91:58:bd:0b:86:dd:b3:8e:5e:1f:5e:20:0e:22:
8a:57:2b:3e:59:6a:5a:48:32:e8:ea:02:da:0a:f2:91:5e:2e:
6f:ed:34:28:bc:f3:fa:91:6e:25:62:e9:73:0f:78:b1:46:e9:
b0:4a:c8:51:c9:2a:05:b3:04:8b:1a:9b:7d:b4:7c:73:a6:7c:
6b:df:01:7f:52:bb:06:69:ac:a0:a2:f8:60:36:c3:e4:a3:6b:
80:78:90:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 15:43:51 2023 by rpki-client on console-ams.rpki-client.org